avon.kz
- Avon Products Inc -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0d:4c:8c:6e:f1:4c:bd:80:25:d5:a7:69:bb:8a:9f:eb was issued on by DigiCert Inc.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Avon Products Inc
Organization:
Avon Products Inc
State / Province:
New York
Locality: Suffern
Country: US
Locality: Suffern
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:4c:8c:6e:f1:4c:bd:80:25:d5:a7:69:bb:8a:9f:ebSerial Number (int): 17677426833573601670863943809400217579
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 96:d4:d0:95:ce:e6:e7:79:2d:15:40:15:89:48:1d:4e:dc:04:e3:37
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 41:d6:90:2d:a0:6f:a9:9a:16:39:79:57:f5:a3:44:6a:c9:71:b0:b1
Fingerprint (sha256): 09:cb:dc:db:e5:df:f1:57:77:b4:7f:d5:05:b2:d0:bd:0f:29:08:c7:dd:a9:38:5d:08:fd:e1:ce:ef:52:19:1e
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate avon.kz
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for avon.kz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
avon.kz
kz.avon.com
www.kz.avon.com
www.avon.kz
kz.avon.com
www.kz.avon.com
www.avon.kz
Other certificates including the domain name avon.kz
(limited to 100 certificates)
tools.avon.kz
io.avon.kz
go.avon.kz
qaf.office.avon.kz
tools.avon.kz
tools.avon.kz
static1.br.avon.com
avon.kz
tools.avon.kz
static1.br.avon.com
promo.avon.kz
my.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
dnevniki.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
www.avon.kz
qaf.office.avon.kz
avon.kz
kz.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
www.avon.kz
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
my.avon.kz
qaf.office.avon.kz
qaf.office.avon.kz
static1.br.avon.com
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
io.avon.kz
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
promo.avon.kz
www.avon.kz
static1.br.avon.com
dnevniki.avon.kz
tools.avon.kz
dnevniki.avon.kz
go.avon.kz
static1.br.avon.com
static1.br.avon.com
www.avon.kz
static1.br.avon.com
*.avon.kz
promo.avon.kz
go.avon.kz
*.office.avon.kz
static1.br.avon.com
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
avon.com
my.avon.kz
promo.avon.kz
io.avon.kz
go.avon.kz
qaf.office.avon.kz
tools.avon.kz
tools.avon.kz
static1.br.avon.com
avon.kz
tools.avon.kz
static1.br.avon.com
promo.avon.kz
my.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
dnevniki.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
www.avon.kz
qaf.office.avon.kz
avon.kz
kz.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
www.avon.kz
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
my.avon.kz
qaf.office.avon.kz
qaf.office.avon.kz
static1.br.avon.com
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
io.avon.kz
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
promo.avon.kz
www.avon.kz
static1.br.avon.com
dnevniki.avon.kz
tools.avon.kz
dnevniki.avon.kz
go.avon.kz
static1.br.avon.com
static1.br.avon.com
www.avon.kz
static1.br.avon.com
*.avon.kz
promo.avon.kz
go.avon.kz
*.office.avon.kz
static1.br.avon.com
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
avon.com
my.avon.kz
promo.avon.kz
Certificate
The complete raw certificate details for avon.kz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGzjCCBbagAwIBAgIQDUyMbvFMvYAl1adpu4qf6zANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMzAyMTMwMDAwMDBa Fw0yNDAzMTMyMzU5NTlaMGAxCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhOZXcgWW9y azEQMA4GA1UEBxMHU3VmZmVybjEaMBgGA1UEChMRQXZvbiBQcm9kdWN0cyBJbmMx EDAOBgNVBAMTB2F2b24ua3owggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQlRecqgO0Sgj/BbhIMeQqssPWAjlw6mgTtL8btMKslNwKIj6tRBdSfT36B+5s TUFC7kU0/YHEGVBx4fTvViquALqv9JsmcGBxNQJe1uRb13CeJ1KGq61Sqz+xDJv/ LHXod/gYuWjM4DHGdym5z4CaRNepLxKeQmwnHrWW84g49zP8Wvc88mi7TUahmtC6 pZln5omnsDZbZIbqFDjkifgojfN6Mx3C4fq52zQetwqY1bFCojPx8TggiNxUW+Wj Lg+nXiBh4zEnz4/DTDyCCi+avFQpJIIn6RGhBiXxWUnp0Jhe1ECPd+rrsmbK9IwK k0OBtxgSVLYocDuehbcLZ9jXAgMBAAGjggOTMIIDjzAfBgNVHSMEGDAWgBS3a6Lq qKqEjHnqtNoPmLLFlXa59DAdBgNVHQ4EFgQUltTQlc7m53ktFUAViUgdTtwE4zcw PQYDVR0RBDYwNIIHYXZvbi5reoILa3ouYXZvbi5jb22CD3d3dy5rei5hdm9uLmNv bYILd3d3LmF2b24ua3owDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjCBjwYDVR0fBIGHMIGEMECgPqA8hjpodHRwOi8vY3JsMy5k aWdpY2VydC5jb20vRGlnaUNlcnRUTFNSU0FTSEEyNTYyMDIwQ0ExLTQuY3JsMECg PqA8hjpodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGlnaUNlcnRUTFNSU0FTSEEy NTYyMDIwQ0ExLTQuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkwJwYIKwYBBQUH AgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzB/BggrBgEFBQcBAQRzMHEw JAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBJBggrBgEFBQcw AoY9aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hB MjU2MjAyMENBMS0xLmNydDAJBgNVHRMEAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8E ggFrAWkAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYZKhSAA AAAEAwBHMEUCIAugPxKr7JTLwpfnZ/UQs9qKf0zsLJJ3iNXUhOUPOp/hAiEAvyn6 dQZfwlWugW7o/sden22EmP5S88o0PDExl8SaF/IAdgBz2Z6JG0yWeKAgfUed5rLG HNBRXnEZKoxrgBB6wXdytQAAAYZKhSAcAAAEAwBHMEUCIDeEY9c+rQgZxvnZAcm3 56NByipOYNCmeIhviwEr/LHoAiEAtG5fhFDF3hzkKgU7X1lRSciIJWl6zX83JzbD T09dkwUAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYZKhR/s AAAEAwBIMEYCIQCLzGjRPTjtftLqjEGo6H6iZM/gXXeGaH7d3VPBFBT7oQIhAOGa eCrUmzYUtelaHUMuBCJUlX4GNZxCuObjJFXA6Q34MA0GCSqGSIb3DQEBCwUAA4IB AQCP6lC39JZiEmUXUtL8Q+pWRESX2DzAALfOjTv2+g1GxQ/Ru3BdcsHj83ohCXSY 6aRsv8TnK4iAZm/iIdVZ2wZz2u/Nh4I5hg7uSmJRVDOS1fxPgi3YSvYCll3SR/uJ KpF9AatNp7Vvqsm3SBj3BUePjRkScfBG0mCLHe3NfQHNV2Przm7BymeeKa5RYxtR PUmlcSats1R+k1k1s/GE86U2ue1mUbZDiir4cGcvtgbaXF0fRE6OCNTY13OetgyB UKC6n+xl5kijo17qjhdeRCL6aIiFBp+RLlXHNy6/YEEk4hTe/K4DOUddZcvpmKOQ uRvZeQ0bPPgxSBmflzqqJbpV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JUXnKoDtEoI/wW4SDHk KrLD1gI5cOpoE7S/G7TCrJTcCiI+rUQXUn09+gfubE1BQu5FNP2BxBlQceH071Yq rgC6r/SbJnBgcTUCXtbkW9dwnidShqutUqs/sQyb/yx16Hf4GLlozOAxxncpuc+A mkTXqS8SnkJsJx61lvOIOPcz/Fr3PPJou01GoZrQuqWZZ+aJp7A2W2SG6hQ45In4 KI3zejMdwuH6uds0HrcKmNWxQqIz8fE4IIjcVFvloy4Pp14gYeMxJ8+Pw0w8ggov mrxUKSSCJ+kRoQYl8VlJ6dCYXtRAj3fq67JmyvSMCpNDgbcYElS2KHA7noW3C2fY 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17677426833573601670863943809400217579 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Suffern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Avon Products Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'avon.kz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26331087553783637398305734187264807379357732602987698702772994242502512097287413021326666101851890123094172683426240596267869187888715125139800179665984646620794015844175724482142505030812021641233249633086734701069443093048218881467965620403684223473260971936615163543469186998140927150883796391634078292176819306180901199057967381857444566759093061650914516233168509874435147412045068976461472625350042459675289837177436550949261851636825726647496195354720956671116068850229725885451807355109417118030580444989283219445878549138441232708113700784684689222344589469506075201407525712960970715033918487995091973036247 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 96d4d095cee6e7792d15401589481d4edc04e337 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.kz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kz.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kz.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.kz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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