ushwebstore.nbcuni.com
- Universal City Studios -
Issued by GeoTrust SSL CA - G3
About this certificate
This digital certificate with serial number 66:a3:25:71:dd:5b:29:47:e0:dd:17:93:da:46:db:f7 was issued on by GeoTrust Inc..
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Universal City Studios
Organization:
Universal City Studios
Organization unit: Universal City Studios
Organization unit: Universal City Studios
State / Province:
California
Locality: Universal City
Country: US
Locality: Universal City
Country: US
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 66:a3:25:71:dd:5b:29:47:e0:dd:17:93:da:46:db:f7Serial Number (int): 136428359428446689526364576459067415543
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d2:6f:f7:96:f4:85:3f:72:3c:30:7d:23:da:85:78:9b:a3:7c:5a:7c
Fingerprint (sha1): 01:fb:5c:ea:99:73:ac:16:73:88:6a:76:aa:c0:6f:53:f0:27:60:ed
Fingerprint (sha256): 0a:3e:31:e5:af:4f:88:b6:ce:15:fa:ad:0e:18:d7:da:58:89:ad:e3:42:11:b5:a5:01:4d:68:f8:b3:9c:c9:81
Issuing Certificate URL: http://gn.symcb.com/gn.crt
Revocation information
OCSP Server: http://gn.symcd.comCRL Distribution Point: http://gn.symcb.com/gn.crl
Check the revocation status for certificate ushwebstore.nbcuni.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ushwebstore.nbcuni.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stage.universalstudioshollywood.com
storestg.universalstudioshollywood.com
stage.info.universalstudioshollywood.com
stage.espanol.universalstudioshollywood.com
ticketsstg.universalstudioshollywood.com
www.ushticketsstg.nbcuni.com
ushwebstorestg.nbcuni.com
ushwebstore.nbcuni.com
storestg.universalstudioshollywood.com
stage.info.universalstudioshollywood.com
stage.espanol.universalstudioshollywood.com
ticketsstg.universalstudioshollywood.com
www.ushticketsstg.nbcuni.com
ushwebstorestg.nbcuni.com
ushwebstore.nbcuni.com
Other certificates including the domain name nbcuni.com
(limited to 100 certificates)
nexusdev.nbcuni.com
www.universalorlando.com
stratastaging2.nbcuni.com
solar.nbcuni.com
atsc-ba-prod.nextgentv.nbcuni.com
vod-media-validator.summer-dev.nbcuni.com
solarstg.nbcuni.com
*.nbcuni.com
fcc-vera.nbcuni.com
cp.stg.inbcu.com
dev.showsystem.nbcuni.com
stage.idxapiexplorer.nbcuni.com
nimbus.nbcuni.com
sharedpartnerushdr.nbcuni.com
icreative-stg.nbcuni.com
earth-prod.nbcuni.com
schedulesstg.nbcuni.com
adminprod-nbcuaffiliate.nbcuni.com
score.nbcuni.com
www.seeso.com
www.stillonyourside.com
www.stillonyourside.com
dev.showsystem.nbcuni.com
vod-media-validator.earth-dev.nbcuni.com
prod.tvecms.nbcuni.com
dashboard.lightbox.nbcuni.com
stage.idxapi.nbcuni.com
int-grafana-us-east-2.nowtv-dev.nbcuni.com
usz.nbcuni.com
*.apps.nbcuni.com
api.vms.nbcuni.com
ad-tech.nbcuni.com
phoenix-ingest.next1-dev.nbcuni.com
ushwebstorestg.nbcuni.com
ermpoc.nbcuni.com
FilmEntMstr11DR.nbcuni.com
ssoapp.stg.inbcu.com
www.universalorlando.com
config-mgmt-tool-api.mssai-dev.nbcuni.com
showsystem.nbcuni.com
sst-moe-reports.summer-prod.nbcuni.com
stagingbenefits.nbcuni.com
ssl867936.cloudflaressl.com
tellystg.nbcuni.com
nbcuni.com
sportsevents.nbcuni.com
atsc-ba-qa.nextgentv.nbcuni.com
prod.tvecms.nbcuni.com
*.k8s.apps.nbcuni.com
msppm-ssrsPROD.nbcuni.com
www.stillonyourside.com
www.universalorlando.com
snasadmin.nbcuni.com
nonprod-test.origin-nonprod-commerce.nbcuni.com
mail.inbcu.com
*.apps.nbcuni.com
cp.nbcuni.com
phoenix-data-gold.vod-dev.nbcuni.com
www.colonytv.com
nbcuni.com
transworks.nbcuni.com
gateworks.nbcuni.com
qa-coding.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
nbcuni.com
www.stillonyourside.com
4help.nbcuni.com
stratastaging2.nbcuni.com
anywherelon.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
api.lxt.nbcuni.com
www.universalorlando.com
www.colonytv.com
perforceswarm.nbcuni.com
apps.devsysusz.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
licensing.nbcuni.com
qa-coding.nbcuni.com
stratastaging2.nbcuni.com
4help.nbcuni.com
cosmos.nbcuni.com
www.colonytv.com
phoenix-delivery.next1-prod.nbcuni.com
adc-vera.nbcuni.com
slate.nbcuni.com
qaapi.newsconnect.nbcuni.com
usgresearch.nbcuni.com
stage-mps.nbcuni.com
jp.travel.nbcuni.com
prod-longform.moe.nbcuni.com
myhrqa2.nbcuni.com
www.colonytv.com
slemanager-lem-synchronizer.vod-dev.nbcuni.com
www.stillonyourside.com
ushwebstore.nbcuni.com
fss.external.nbcuni.com
devfmaatmapi.nbcuni.com
dropbox.nbcuni.com
flexpay.nbcuni.com
www.colonytv.com
www.universalorlando.com
stratastaging2.nbcuni.com
solar.nbcuni.com
atsc-ba-prod.nextgentv.nbcuni.com
vod-media-validator.summer-dev.nbcuni.com
solarstg.nbcuni.com
*.nbcuni.com
fcc-vera.nbcuni.com
cp.stg.inbcu.com
dev.showsystem.nbcuni.com
stage.idxapiexplorer.nbcuni.com
nimbus.nbcuni.com
sharedpartnerushdr.nbcuni.com
icreative-stg.nbcuni.com
earth-prod.nbcuni.com
schedulesstg.nbcuni.com
adminprod-nbcuaffiliate.nbcuni.com
score.nbcuni.com
www.seeso.com
www.stillonyourside.com
www.stillonyourside.com
dev.showsystem.nbcuni.com
vod-media-validator.earth-dev.nbcuni.com
prod.tvecms.nbcuni.com
dashboard.lightbox.nbcuni.com
stage.idxapi.nbcuni.com
int-grafana-us-east-2.nowtv-dev.nbcuni.com
usz.nbcuni.com
*.apps.nbcuni.com
api.vms.nbcuni.com
ad-tech.nbcuni.com
phoenix-ingest.next1-dev.nbcuni.com
ushwebstorestg.nbcuni.com
ermpoc.nbcuni.com
FilmEntMstr11DR.nbcuni.com
ssoapp.stg.inbcu.com
www.universalorlando.com
config-mgmt-tool-api.mssai-dev.nbcuni.com
showsystem.nbcuni.com
sst-moe-reports.summer-prod.nbcuni.com
stagingbenefits.nbcuni.com
ssl867936.cloudflaressl.com
tellystg.nbcuni.com
nbcuni.com
sportsevents.nbcuni.com
atsc-ba-qa.nextgentv.nbcuni.com
prod.tvecms.nbcuni.com
*.k8s.apps.nbcuni.com
msppm-ssrsPROD.nbcuni.com
www.stillonyourside.com
www.universalorlando.com
snasadmin.nbcuni.com
nonprod-test.origin-nonprod-commerce.nbcuni.com
mail.inbcu.com
*.apps.nbcuni.com
cp.nbcuni.com
phoenix-data-gold.vod-dev.nbcuni.com
www.colonytv.com
nbcuni.com
transworks.nbcuni.com
gateworks.nbcuni.com
qa-coding.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
nbcuni.com
www.stillonyourside.com
4help.nbcuni.com
stratastaging2.nbcuni.com
anywherelon.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
api.lxt.nbcuni.com
www.universalorlando.com
www.colonytv.com
perforceswarm.nbcuni.com
apps.devsysusz.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
licensing.nbcuni.com
qa-coding.nbcuni.com
stratastaging2.nbcuni.com
4help.nbcuni.com
cosmos.nbcuni.com
www.colonytv.com
phoenix-delivery.next1-prod.nbcuni.com
adc-vera.nbcuni.com
slate.nbcuni.com
qaapi.newsconnect.nbcuni.com
usgresearch.nbcuni.com
stage-mps.nbcuni.com
jp.travel.nbcuni.com
prod-longform.moe.nbcuni.com
myhrqa2.nbcuni.com
www.colonytv.com
slemanager-lem-synchronizer.vod-dev.nbcuni.com
www.stillonyourside.com
ushwebstore.nbcuni.com
fss.external.nbcuni.com
devfmaatmapi.nbcuni.com
dropbox.nbcuni.com
flexpay.nbcuni.com
www.colonytv.com
Certificate
The complete raw certificate details for ushwebstore.nbcuni.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGOTCCBSGgAwIBAgIQZqMlcd1bKUfg3ReT2kbb9zANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UEAxMU R2VvVHJ1c3QgU1NMIENBIC0gRzMwHhcNMTcxMTE2MDAwMDAwWhcNMTkwMjE1MjM1 OTU5WjCBnjELMAkGA1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExFzAVBgNV BAcMDlVuaXZlcnNhbCBDaXR5MR8wHQYDVQQKDBZVbml2ZXJzYWwgQ2l0eSBTdHVk aW9zMR8wHQYDVQQLDBZVbml2ZXJzYWwgQ2l0eSBTdHVkaW9zMR8wHQYDVQQDDBZ1 c2h3ZWJzdG9yZS5uYmN1bmkuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA8r5SetOaHav7KQmPNdUjRGGoal35NtzQH/lfrg/9h0CLUrErFiyfFoks zXGGujUUZS5k1y72nqhrQVU+SUk52J9/347Q4ko0sN6cbO2PqGqHjt65U6C7TJ13 5ofY2f2fCyS1xwWlTJ58LItzchalNe/4dmdBdlJ4xnvYfh5FSGJo/Hji3ChpX08Z cXfwTyqO3gs9QUbEi/6j7zCkVaDvRsgQpNrKKGNe9ho2dKCq4/Ghi+MZ3mcVmoi/ pYqTTkQRPbqn3ZKwEVd6vO/KuiK+mPYqlVuqE0XcVMtHeOXFp2UDS0rjFVM7uG8N 3XTeM70KB49MtGShBual56g3QRgEcwIDAQABo4ICyjCCAsYwggEsBgNVHREEggEj MIIBH4Ijc3RhZ2UudW5pdmVyc2Fsc3R1ZGlvc2hvbGx5d29vZC5jb22CJnN0b3Jl c3RnLnVuaXZlcnNhbHN0dWRpb3Nob2xseXdvb2QuY29tgihzdGFnZS5pbmZvLnVu aXZlcnNhbHN0dWRpb3Nob2xseXdvb2QuY29tgitzdGFnZS5lc3Bhbm9sLnVuaXZl cnNhbHN0dWRpb3Nob2xseXdvb2QuY29tgih0aWNrZXRzc3RnLnVuaXZlcnNhbHN0 dWRpb3Nob2xseXdvb2QuY29tghx3d3cudXNodGlja2V0c3N0Zy5uYmN1bmkuY29t ghl1c2h3ZWJzdG9yZXN0Zy5uYmN1bmkuY29tghZ1c2h3ZWJzdG9yZS5uYmN1bmku Y29tMAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMCsGA1UdHwQkMCIwIKAeoByG Gmh0dHA6Ly9nbi5zeW1jYi5jb20vZ24uY3JsMIGdBgNVHSAEgZUwgZIwgY8GBmeB DAECAjCBhDA/BggrBgEFBQcCARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jl c291cmNlcy9yZXBvc2l0b3J5L2xlZ2FsMEEGCCsGAQUFBwICMDUMM2h0dHBzOi8v d3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdhbDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAU0m/3lvSFP3I8 MH0j2oV4m6N8WnwwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8v Z24uc3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vZ24uc3ltY2IuY29tL2du LmNydDATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEApvae Ans/dazZaDYeP8Kb4ClNGcUaqfUFk6oa9EZuZlGUC/CGjhbsX81c/HnPHP6GB9TA QPmz36rz1LJIsxFRAb0irY0KiWTi7vVfbNvzjwvCPq1DIX+uEAGQ5iwLGfkjeuVy MgJblKVVWPuVcTehJn8lnKB2FyalOROoy4VBteJlWicJmGE3E8B6DPzQUgvQG8iA 8LxTFKHk7/ukBb9AE7ju5kyweDmwqS6lOFcoGVpd+JCUzFYM3MFTUZaOrlJHyMSu 1256g14k1L4tt5XMqCjCancTBYIY+nPUFr0XrgIEFvXi/oZbNRFK6hcK3WREPwxE +UCy59KtZPbZPV1hiw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8r5SetOaHav7KQmPNdUj RGGoal35NtzQH/lfrg/9h0CLUrErFiyfFokszXGGujUUZS5k1y72nqhrQVU+SUk5 2J9/347Q4ko0sN6cbO2PqGqHjt65U6C7TJ135ofY2f2fCyS1xwWlTJ58LItzchal Ne/4dmdBdlJ4xnvYfh5FSGJo/Hji3ChpX08ZcXfwTyqO3gs9QUbEi/6j7zCkVaDv RsgQpNrKKGNe9ho2dKCq4/Ghi+MZ3mcVmoi/pYqTTkQRPbqn3ZKwEVd6vO/KuiK+ mPYqlVuqE0XcVMtHeOXFp2UDS0rjFVM7uG8N3XTeM70KB49MtGShBual56g3QRgE cwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 136428359428446689526364576459067415543 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Universal City' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Universal City Studios' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Universal City Studios' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ushwebstore.nbcuni.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30643521169928819041505526183994900172750796761200961151078772534648118153095947241960554316940674487688155279132903897087641428508053070522564265787552604844066394779947187525418228315677700631236616647288017196074160530786414681187848734270097224403321154971189902753951708747281606391364867803978311336098508386577743652935495429432379661705579625687455773282884267394072462018242567156262575068995817462887078340580208651612350662375460220981259815156110115550009164048849705928550792518793857311527462296131198554599223321816372417450610010538845355775522106422934918076565750094403563769122020164283875542434931 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (291 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.universalstudioshollywood.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'storestg.universalstudioshollywood.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.info.universalstudioshollywood.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.espanol.universalstudioshollywood.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ticketsstg.universalstudioshollywood.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ushticketsstg.nbcuni.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ushwebstorestg.nbcuni.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ushwebstore.nbcuni.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d26ff796f4853f723c307d23da85789ba37c5a7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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