*.geico.com
- GEICO -
Issued by Viking Cloud Organization Validation CA, Level 1
About this certificate
This digital certificate with serial number 07:ab:df:a3:ee:d5:f7:62:54:0c:1d:5c:9e:ce:ec:63:37:57:8b was issued on by Viking Cloud, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
GEICO
Organization:
GEICO
State / Province:
Maryland
Locality: Chevy Chase
Country: US
Locality: Chevy Chase
Country: US
Viking Cloud, Inc.
Organization:
Viking Cloud, Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:ab:df:a3:ee:d5:f7:62:54:0c:1d:5c:9e:ce:ec:63:37:57:8bSerial Number (int): 171077518156138451750108076630241593513170827
Serial Number lenght: 147 bits, 19 octets
SubjectKeyId: 96:3d:10:dc:be:a0:13:04:c7:07:7f:f8:97:53:c3:e0:93:c3:7c:da
AuthorityKeyId: 84:f7:19:ce:7b:40:54:50:42:4e:0c:d2:32:50:dc:7a:2f:72:56:6c
Fingerprint (sha1): 67:0c:05:ab:06:a1:36:5b:fe:53:cc:ae:f0:15:4c:53:be:51:22:d4
Fingerprint (sha256): 0a:92:cd:62:ee:32:4e:a5:8c:18:23:ae:a5:6f:6c:44:a1:96:dd:74:4c:2c:f7:ce:6a:69:50:84:70:3f:f8:42
Issuing Certificate URL: http://certs.securetrust.com/issuers/VCOVCA_L1.crt
Revocation information
OCSP Server: http://ocsp.vikingcloud.com/CRL Distribution Point: http://crl.vikingcloud.com/VCOVCA_L1.crl
Check the revocation status for certificate *.geico.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.geico.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.geico.com
geico.com
geico.com
Other certificates including the domain name geico.com
(limited to 100 certificates)
copart.geico.com
Arbitration.geico.com
Ivanticsa6.private.geico.com
tierb2b-test.geico.com
partnersgateway-tt.geico.com
imperva.com
imperva.com
hive.geico.com
docusigneo-ut1.geico.com
imperva.com
docusigneo-EU1.geico.com
claims.geico.com
partnersgateway001-tr.geico.com
mstage2.service-ft.geico.com
service-ft.geico.com
mts-ut1.geico.com
psfthr-dr.oci.geico.com
awpocseg365.private.geico.com
imperva.com
isotest1.geico.com
imperva.com
billingreportsapi-eu1.geico.com
Plazamail2016.geico.net
gragwns.private.geico.com
homeowners.geico.com
Ivanticsa12.private.geico.com
partnersgateway005-in.geico.com
tier2-int2.geico.com
ecams.geico.com
sales.geico.com
boat-user.geico.com
dmvtest.geico.com
partnersgateway-tr.geico.com
partners.geico.com
umbrella-user.geico.com
awprodsegv2.private.geico.com
sig-ft.geico.com
*.geico.com
edgein-tr.geico.com
claimsdr.geico.com
anbcui-prod.geico.com
tier.geico.com
ecams.geico.com
mts.geico.com
imperva.com
atlastest.geico.com
vdipd1external.private.geico.com
propertysales.geico.com
polcomexpressvue-eu1.geico.com
imperva.com
commercial-in1.geico.com
auto-buy-tr1.geico.com
imperva.com
optout.geico.com
capsales-test.geico.com
partnersgateway002-dv.geico.com
adestimatetest.geico.com
blaster.geico.com
umbrella-c-load.geico.com
edsinbound-trng.geico.com
FredMail2016.geico.net
salesb2b2-int.geico.com
telpdchvg01.anc.geico.net
cvshealth.geico.com
imperva.com
*.geico.com
ivrpl.private.geico.com
edsinbound-load.geico.com
CHWS7104.geico.net
auto-buy-GZ-ftrack1.geico.com
PartnersTest.geico.com
auto-kate-fn1.geico.com
imperva.com
polcomexpressvue-ed1.geico.com
AWPRODCN.private.geico.com
edsinbound-intg.geico.com
msales3-int.geico.com
isotest.geico.com
imperva.com
Ivanticsa10.private.geico.com
dmvtest.geico.com
imperva.com
incapsula.com
imperva.com
NewIntTest1.geico.com
*.geico.com
portfolio-eu.geico.com
commercial-in1.geico.com
edgemobile.geico.com
*.azvd.private.geico.com
renters-kate.geico.com
media.geico.com
ecams-lt.geico.com
salesb2b.geico.com
eistwiliocrm-lt.geico.com
CHWS7103.geico.net
imperva.com
cycle.geico.com
billingbbs-ut1.geico.com
umbrella-c.geico.com
Arbitration.geico.com
Ivanticsa6.private.geico.com
tierb2b-test.geico.com
partnersgateway-tt.geico.com
imperva.com
imperva.com
hive.geico.com
docusigneo-ut1.geico.com
imperva.com
docusigneo-EU1.geico.com
claims.geico.com
partnersgateway001-tr.geico.com
mstage2.service-ft.geico.com
service-ft.geico.com
mts-ut1.geico.com
psfthr-dr.oci.geico.com
awpocseg365.private.geico.com
imperva.com
isotest1.geico.com
imperva.com
billingreportsapi-eu1.geico.com
Plazamail2016.geico.net
gragwns.private.geico.com
homeowners.geico.com
Ivanticsa12.private.geico.com
partnersgateway005-in.geico.com
tier2-int2.geico.com
ecams.geico.com
sales.geico.com
boat-user.geico.com
dmvtest.geico.com
partnersgateway-tr.geico.com
partners.geico.com
umbrella-user.geico.com
awprodsegv2.private.geico.com
sig-ft.geico.com
*.geico.com
edgein-tr.geico.com
claimsdr.geico.com
anbcui-prod.geico.com
tier.geico.com
ecams.geico.com
mts.geico.com
imperva.com
atlastest.geico.com
vdipd1external.private.geico.com
propertysales.geico.com
polcomexpressvue-eu1.geico.com
imperva.com
commercial-in1.geico.com
auto-buy-tr1.geico.com
imperva.com
optout.geico.com
capsales-test.geico.com
partnersgateway002-dv.geico.com
adestimatetest.geico.com
blaster.geico.com
umbrella-c-load.geico.com
edsinbound-trng.geico.com
FredMail2016.geico.net
salesb2b2-int.geico.com
telpdchvg01.anc.geico.net
cvshealth.geico.com
imperva.com
*.geico.com
ivrpl.private.geico.com
edsinbound-load.geico.com
CHWS7104.geico.net
auto-buy-GZ-ftrack1.geico.com
PartnersTest.geico.com
auto-kate-fn1.geico.com
imperva.com
polcomexpressvue-ed1.geico.com
AWPRODCN.private.geico.com
edsinbound-intg.geico.com
msales3-int.geico.com
isotest.geico.com
imperva.com
Ivanticsa10.private.geico.com
dmvtest.geico.com
imperva.com
incapsula.com
imperva.com
NewIntTest1.geico.com
*.geico.com
portfolio-eu.geico.com
commercial-in1.geico.com
edgemobile.geico.com
*.azvd.private.geico.com
renters-kate.geico.com
media.geico.com
ecams-lt.geico.com
salesb2b.geico.com
eistwiliocrm-lt.geico.com
CHWS7103.geico.net
imperva.com
cycle.geico.com
billingbbs-ut1.geico.com
umbrella-c.geico.com
Certificate
The complete raw certificate details for *.geico.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcDCCBVigAwIBAgITB6vfo+7V92JUDB1cns7sYzdXizANBgkqhkiG9w0BAQsF ADBlMQswCQYDVQQGEwJVUzEbMBkGA1UEChMSVmlraW5nIENsb3VkLCBJbmMuMTkw NwYDVQQDEzBWaWtpbmcgQ2xvdWQgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gQ0Es IExldmVsIDEwHhcNMjQwMzE4MDkxOTQxWhcNMjUwMzE4MDkxODQxWjBcMQswCQYD VQQGEwJVUzERMA8GA1UECBMITWFyeWxhbmQxFDASBgNVBAcTC0NoZXZ5IENoYXNl MQ4wDAYDVQQKEwVHRUlDTzEUMBIGA1UEAwwLKi5nZWljby5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfTmv0Bm7cv8CUqW5vCOZpmAydC0jyS/PV +FcGa23h8FjPr8ChA8ZoP4oe+6ZCoSjfCgxRNbI17KfI1RbYCwnFCFzFCn6hQ/FN BMh2vxNEp0i5GGXJq2+oDA01IfbvDx8Xz55WSkRhypKMJ65CPwL59M8WQs3TP8qd ACRWJw+4hz6FSnM7ij9jMkmNELU+utSeoIb2vlR3eBV3BRn09K6ymCc+FIczw7Bz ha+cM1cxsBOezJ5qeX6EtXX4lakUTGX+x8R1ml4MGmsqznPyZwqrc+3BxdC5U2vG NKUs/yxj9yTzfiyBteJO3XOWyw//sMi4OZPVDf+NdfRVchgE+vwvAgMBAAGjggMg MIIDHDAMBgNVHRMBAf8EAjAAMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAgYIKwYBBQUHAwEwHQYDVR0OBBYEFJY9ENy+oBMExwd/+JdTw+CTw3za MB8GA1UdIwQYMBaAFIT3Gc57QFRQQk4M0jJQ3HovclZsMEMGA1UdIAQ8MDowOAYG Z4EMAQICMC4wLAYIKwYBBQUHAgEWIGh0dHBzOi8vY2VydHMuc2VjdXJldHJ1c3Qu Y29tL0NBMCEGA1UdEQQaMBiCCyouZ2VpY28uY29tgglnZWljby5jb20wOQYDVR0f BDIwMDAuoCygKoYoaHR0cDovL2NybC52aWtpbmdjbG91ZC5jb20vVkNPVkNBX0wx LmNybDB4BggrBgEFBQcBAQRsMGowKAYIKwYBBQUHMAGGHGh0dHA6Ly9vY3NwLnZp a2luZ2Nsb3VkLmNvbS8wPgYIKwYBBQUHMAKGMmh0dHA6Ly9jZXJ0cy5zZWN1cmV0 cnVzdC5jb20vaXNzdWVycy9WQ09WQ0FfTDEuY3J0MIIBfgYKKwYBBAHWeQIEAgSC AW4EggFqAWgAdgBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAY5S JaaLAAAEAwBHMEUCIBLEyr7HItUkL4JtpLi3QIhi8mIEkBFua1b4ahx6cbPDAiEA l/56ZBokjb+RlwPqiHjR6Q3DgiUdjJ9LZ+LDmooTtmUAdgBOdaMnXJoQwzhbbNTf P1LrHfDgjhuNacCx+mSxYpo53wAAAY5SJckVAAAEAwBHMEUCIQCzuUvMSe97GMNj qYSZw7+wvZe9hys+pOn7g7AG44cB6gIgEoqt2PkYs/PJPqwSX6AC+bULAwucdHyJ qAZVuibzHngAdgDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAY5S JaQbAAAEAwBHMEUCIQCwsGHc0WAoDqXaoSW9wo/BrCyMrIJm7KBLsbCmY6JEiAIg R2vVIKDQfuaLfsfQimmfnHF68tmLWwQyGoJG3z/ZzKkwDQYJKoZIhvcNAQELBQAD ggEBAFsK6sQm4byNi7iXhCl/SnWaRL+jfGkOSZe8Um71xD5tRH5km2njjHulhmA0 6eK1HxdSyyYtI8zFKCnhtBhik6m08RbqAkBdPyvQSa0V5pvfU/V0Kd70pU3Ryu1+ Hiu0MaHOpydaDQjq/2RLHNkzOOCddjgGUzOdCNJMnG9CViHBMKQ8YA1nQtUntVZW 1JF5sylm5APHg3pWjnkpz37KhZsKdubEorILHbO+MdcU9i0gfwI0FMs08TQ5R/fF i3YPcdzVdEAMaZs3GXfiYgP8nuYdB3lkOZyf7o8QXCNA67BaSiYe7MSOV5tyW8LV PZVfhSgDlI8y+pP57uk1mqnqvXA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn05r9AZu3L/AlKlubwjm aZgMnQtI8kvz1fhXBmtt4fBYz6/AoQPGaD+KHvumQqEo3woMUTWyNeynyNUW2AsJ xQhcxQp+oUPxTQTIdr8TRKdIuRhlyatvqAwNNSH27w8fF8+eVkpEYcqSjCeuQj8C +fTPFkLN0z/KnQAkVicPuIc+hUpzO4o/YzJJjRC1PrrUnqCG9r5Ud3gVdwUZ9PSu spgnPhSHM8Owc4WvnDNXMbATnsyeanl+hLV1+JWpFExl/sfEdZpeDBprKs5z8mcK q3PtwcXQuVNrxjSlLP8sY/ck834sgbXiTt1zlssP/7DIuDmT1Q3/jXX0VXIYBPr8 LwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 171077518156138451750108076630241593513170827 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Viking Cloud, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Viking Cloud Organization Validation CA, Level 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-18 09:19:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-18 09:18:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chevy Chase' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEICO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.geico.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20110561667360121488966548419401772488631874079548890647957946337938858367322706052255606206809456279814258044072780574227140003015676681228882538585573368296493051763363153666702545733189742423401934286965226830272788568432994154079891826363559800590677127659885484741729541208688355026791654077975367417337971088422853253494833859281900412033652483251766909477858184868708940339512347058484413623331498419914169019615014219423422723776875103296926993983352644954827757728557768973677107328357973368921134031190818959042857317106069470742279966176556728178465685973456640743331036594541046292949143695652488514042927 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 963d10dcbea01304c7077ff89753c3e093c37cda . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 84f719ce7b405450424e0cd23250dc7a2f72566c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certs.securetrust.com/CA' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.geico.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geico.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.vikingcloud.com/VCOVCA_L1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.vikingcloud.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certs.securetrust.com/issuers/VCOVCA_L1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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