habile-challenges.klm.com
- Koninklijke Luchtvaart Maatschappij N.V. -
Issued by COMODO RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 43:cd:58:e4:96:17:dc:fb:ec:6f:aa:97:8a:12:9d was issued on by COMODO CA Limited.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Koninklijke Luchtvaart Maatschappij N.V.
Organization:
Koninklijke Luchtvaart Maatschappij N.V.
Organization unit: WebSystems
Organization unit: WebSystems
Address:
Amsterdamseweg 55
Postal code: 1182 GP
State / Province: Noord-Holland
Locality: Amstelveen
Country: NL
Postal code: 1182 GP
State / Province: Noord-Holland
Locality: Amstelveen
Country: NL
COMODO CA Limited
Organization:
COMODO CA Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 43:cd:58:e4:96:17:dc:fb:ec:6f:aa:97:8a:12:9dSerial Number (int): 352048826312917101884839912337445533
Serial Number lenght: 119 bits, 15 octets
SubjectKeyId: a7:9e:f6:3b:73:60:5b:ab:54:97:d0:8d:94:81:95:8c:69:1b:dc:7b
AuthorityKeyId: 9a:f3:2b:da:cf:ad:4f:b6:2f:bb:2a:48:48:2a:12:b7:1b:42:c1:24
Fingerprint (sha1): f9:52:ce:25:bf:54:05:39:76:ab:c7:67:e8:6d:72:a1:41:d4:ea:49
Fingerprint (sha256): 0a:86:63:f7:56:d4:1c:48:b1:2d:1e:ee:bf:d4:2e:05:cd:5b:08:d2:85:99:9b:c2:1f:91:a8:b9:c4:70:43:62
Issuing Certificate URL: http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.comodoca.comCRL Distribution Point: http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate habile-challenges.klm.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for habile-challenges.klm.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
habile-challenges.klm.com
habile-diag-tls.klm.com
habile-fps.klm.com
habile-pws.klm.com
habile-diag-tls.klm.com
habile-fps.klm.com
habile-pws.klm.com
Other certificates including the domain name klm.com
(limited to 100 certificates)
vanity-ae.klm.com
gofuel-acc-ute.klm.com
origin.api.ee1.klm.com
nieuws.klm.com
imperva.com
airlines.api.amadeus.com
kiosk.ute2.klm.com
origin.api.klm.com
*.cf.devnet.klm.com
travel-with-kids.klm.com
campaigndesigner.klm.com
www.iseatz.com
campagnes.klm.com
werelddeal.klm.com
ba.ite2.klm.com
flightguide.klm.com
sustainability.klm.com
materials.klm.com
api.ee1.klm.com
origin.api.ae3.klm.com
flightoffers.klm.com
werelddeal.klm.com
china.klm.com
werelddeal.klm.com
flightoffers.klm.com
getaways.klm.com
flexfares.klm.com
evenweg.klm.com
san1.klmonline.com
flexfares.klm.com
payments.klm.com
flyforward.klm.com
www.klm.com
services2.klm.com
aefederation.klm.com
services.ae1.klm.com
fes-dev.klm.com
flightbundle.klm.com
fes.klm.com
houses.klm.com
evenweg.klm.com
china.klm.com
packyourdestination.klm.com
co2.ehn.klm.com
ehn.klm.com
kiosk.klm.com
san1.klmonline.com
san1.klmonline.com
services.ite2.klm.com
md11farewellflight.klm.com
upgradeyourself.klm.com
bb.klm.com
services.ave1.klm.com
ba.ee.klm.com
caretag.klm.com
developer-test.klm.com
www.se2.klm.com
partsofaperfectjourney.klm.com
www.iseatz.com
habile-challenges.klm.com
imperva.com
transactions.klm.com
destinationmatch.klm.com
services.ute2.klm.com
klm.com
evenweg.klm.com
connect.klm.com
cuba.klm.com
campaigndesigner2.klm.com
san1.klmonline.com
san1.klmonline.com
fes-acc.klm.com
werelddeal.klm.com
services.ae2.klm.com
federation.klm.com
escapades.klm.com
klpl03.klm.com
*.ams.cloud.klm.com
campagnes.klm.com
csr.klm.com
www3.ute1.klm.com
blog-origin.klm.com
flightbundle.klm.com
san1.klmonline.com
*.klm.com
daytripper.klm.com
mysteryticket.klm.com
flightbundle.klm.com
ers.klm.com
secure.klm.com
imperva.com
webmail.klm.com
flyforward.klm.com
payments.test.klm.com
digital.publications.klm.com
aend.klm.com
destinationmatch.klm.com
china.klm.com
evenweg.klm.com
mysteryticket.klm.com
gofuel-acc-ute.klm.com
origin.api.ee1.klm.com
nieuws.klm.com
imperva.com
airlines.api.amadeus.com
kiosk.ute2.klm.com
origin.api.klm.com
*.cf.devnet.klm.com
travel-with-kids.klm.com
campaigndesigner.klm.com
www.iseatz.com
campagnes.klm.com
werelddeal.klm.com
ba.ite2.klm.com
flightguide.klm.com
sustainability.klm.com
materials.klm.com
api.ee1.klm.com
origin.api.ae3.klm.com
flightoffers.klm.com
werelddeal.klm.com
china.klm.com
werelddeal.klm.com
flightoffers.klm.com
getaways.klm.com
flexfares.klm.com
evenweg.klm.com
san1.klmonline.com
flexfares.klm.com
payments.klm.com
flyforward.klm.com
www.klm.com
services2.klm.com
aefederation.klm.com
services.ae1.klm.com
fes-dev.klm.com
flightbundle.klm.com
fes.klm.com
houses.klm.com
evenweg.klm.com
china.klm.com
packyourdestination.klm.com
co2.ehn.klm.com
ehn.klm.com
kiosk.klm.com
san1.klmonline.com
san1.klmonline.com
services.ite2.klm.com
md11farewellflight.klm.com
upgradeyourself.klm.com
bb.klm.com
services.ave1.klm.com
ba.ee.klm.com
caretag.klm.com
developer-test.klm.com
www.se2.klm.com
partsofaperfectjourney.klm.com
www.iseatz.com
habile-challenges.klm.com
imperva.com
transactions.klm.com
destinationmatch.klm.com
services.ute2.klm.com
klm.com
evenweg.klm.com
connect.klm.com
cuba.klm.com
campaigndesigner2.klm.com
san1.klmonline.com
san1.klmonline.com
fes-acc.klm.com
werelddeal.klm.com
services.ae2.klm.com
federation.klm.com
escapades.klm.com
klpl03.klm.com
*.ams.cloud.klm.com
campagnes.klm.com
csr.klm.com
www3.ute1.klm.com
blog-origin.klm.com
flightbundle.klm.com
san1.klmonline.com
*.klm.com
daytripper.klm.com
mysteryticket.klm.com
flightbundle.klm.com
ers.klm.com
secure.klm.com
imperva.com
webmail.klm.com
flyforward.klm.com
payments.test.klm.com
digital.publications.klm.com
aend.klm.com
destinationmatch.klm.com
china.klm.com
evenweg.klm.com
mysteryticket.klm.com
Certificate
The complete raw certificate details for habile-challenges.klm.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGMDCCBRigAwIBAgIPQ81Y5JYX3Pvsb6qXihKdMA0GCSqGSIb3DQEBCwUAMIGW MQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYD VQQHEwdTYWxmb3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDE8MDoGA1UE AxMzQ09NT0RPIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2Vy dmVyIENBMB4XDTE4MDQyNDAwMDAwMFoXDTIwMDcwNjIzNTk1OVowgdQxCzAJBgNV BAYTAk5MMRAwDgYDVQQREwcxMTgyIEdQMRYwFAYDVQQIEw1Ob29yZC1Ib2xsYW5k MRMwEQYDVQQHEwpBbXN0ZWx2ZWVuMRowGAYDVQQJExFBbXN0ZXJkYW1zZXdlZyA1 NTExMC8GA1UEChMoS29uaW5rbGlqa2UgTHVjaHR2YWFydCBNYWF0c2NoYXBwaWog Ti5WLjETMBEGA1UECxMKV2ViU3lzdGVtczEiMCAGA1UEAxMZaGFiaWxlLWNoYWxs ZW5nZXMua2xtLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAO7J DiHjXNHIrWmM6q+OVqExYiljcUbc9dETnR4ok9np8g2ynbWXaj6X9ijD9pYs+w8g IQVLSf2RZUGRp5hP0VP3Mm6Jq6Ke/MU6yF4SV+QWZbDXBLf/zNG0oAl+9KsyGOkX jzF7ITDFYu/DL/owgPTUswbwlT7enSHcw34flONhoWhG5tnQWCnfoSr1Yj7OfMMy LzwjRQugAhMrph1DyLw0+8vaM9t9kRiUEekb0SO9/nRnHfwPqsVCCoDld12zqMeZ rDj0Whlvd9GxTz3ukbmhHvBbH/hl9O4SoYGy0DrAGeWMzAkjgzADlerfBikgk+wF UcQrbRo6GfXxrzBGjGUCAwEAAaOCAjkwggI1MB8GA1UdIwQYMBaAFJrzK9rPrU+2 L7sqSEgqErcbQsEkMB0GA1UdDgQWBBSnnvY7c2Bbq1SX0I2UgZWMaRvcezAOBgNV HQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwUAYDVR0gBEkwRzA7BgwrBgEEAbIxAQIBAwQwKzApBggrBgEFBQcC ARYdaHR0cHM6Ly9zZWN1cmUuY29tb2RvLmNvbS9DUFMwCAYGZ4EMAQICMFoGA1Ud HwRTMFEwT6BNoEuGSWh0dHA6Ly9jcmwuY29tb2RvY2EuY29tL0NPTU9ET1JTQU9y Z2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcmwwgYsGCCsGAQUF BwEBBH8wfTBVBggrBgEFBQcwAoZJaHR0cDovL2NydC5jb21vZG9jYS5jb20vQ09N T0RPUlNBT3JnYW5pemF0aW9uVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNydDAk BggrBgEFBQcwAYYYaHR0cDovL29jc3AuY29tb2RvY2EuY29tMBMGCisGAQQB1nkC BAMBAf8EAgUAMGUGA1UdEQReMFyCGWhhYmlsZS1jaGFsbGVuZ2VzLmtsbS5jb22C F2hhYmlsZS1kaWFnLXRscy5rbG0uY29tghJoYWJpbGUtZnBzLmtsbS5jb22CEmhh YmlsZS1wd3Mua2xtLmNvbTANBgkqhkiG9w0BAQsFAAOCAQEAMoNjvYZEN1DN2ahz t1rCNd+DCmWgdhfZ7YQea2qJVsu5GG9xIEoD12Myrw7xDla1+PlzzMiomCVT2/Jo HdeXDMToycc6PrxNpF31QqzK1dePFgk2jW4SOo3y3ciCiuqSYdHNlifMWN01e2fC FldEAs6+eb6dDr2Izp1lhO3gOy585KJuCyBDfdfA8NPHgTaAcPMM6Kh+YRfpJzQd HrC+sEKPgYvBAu3I+9pE/zNcx/3PTnto79tnrlCbhYvIw9Wf6bzS0JzDggyonkbb sBECWlieYxh/GPN/+I4xM8pYNjSJ9tg5IGUAzW+SoTYuF/u3BqMuLeDEklZNCqdk Jmm37g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7skOIeNc0citaYzqr45W oTFiKWNxRtz10ROdHiiT2enyDbKdtZdqPpf2KMP2liz7DyAhBUtJ/ZFlQZGnmE/R U/cybomrop78xTrIXhJX5BZlsNcEt//M0bSgCX70qzIY6RePMXshMMVi78Mv+jCA 9NSzBvCVPt6dIdzDfh+U42GhaEbm2dBYKd+hKvViPs58wzIvPCNFC6ACEyumHUPI vDT7y9oz232RGJQR6RvRI73+dGcd/A+qxUIKgOV3XbOox5msOPRaGW930bFPPe6R uaEe8Fsf+GX07hKhgbLQOsAZ5YzMCSODMAOV6t8GKSCT7AVRxCttGjoZ9fGvMEaM ZQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 352048826312917101884839912337445533 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1182 GP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amstelveen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdamseweg 55' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Koninklijke Luchtvaart Maatschappij N.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WebSystems' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'habile-challenges.klm.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30143860598454319944489070028272127284189441259612293378817799270690035348865354503762562725897936777331380548249326532126586746911470674222841473085654229382706409986841214339485006024492438433016129827561618630686528116166564963604826173252653307372918980664269282364560196978818631833121573103929387301521593721582096767955826450591127176744892983150505895329008590644972316913726991174647809138658130071459699344294377857045016131863465965368466645184221704829062720500042111233043068794566871021599764045881230948557361331551628312473041075174453093529471566428285829342010117608566677416744431854039028497550437 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9af32bdacfad4fb62fbb2a48482a12b71b42c124 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a79ef63b73605bab5497d08d9481958c691bdc7b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (127 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'habile-challenges.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'habile-diag-tls.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'habile-fps.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'habile-pws.klm.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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