*.ig.com
- IG Group Limited -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 93:67:98:8d:fc:45:c8:a2:48:10:0c:ac:9a:78:54:78 was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
IG Group Limited
Organization:
IG Group Limited
Organization unit: IT
Organization unit: IT
Address:
25 Dowgate Hill
Address: Cannon Bridge House
Postal code: EC4R 2YA
State / Province: London
Locality: London
Country: GB
Address: Cannon Bridge House
Postal code: EC4R 2YA
State / Province: London
Locality: London
Country: GB
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 93:67:98:8d:fc:45:c8:a2:48:10:0c:ac:9a:78:54:78Serial Number (int): 195934416132316975951168464562526114936
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 68:92:01:6e:fc:67:74:f9:c5:bc:a3:49:06:77:7a:0b:b1:8e:6c:c5
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 9f:56:eb:cd:e4:49:77:a1:2a:93:c8:9b:7a:4e:68:2b:97:f2:9d:3c
Fingerprint (sha256): 0a:9f:26:7a:fd:81:3c:22:58:72:91:3d:d1:ca:a8:3c:7c:8f:e5:b1:67:cd:c2:3c:25:91:6b:9b:93:a6:e8:93
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate *.ig.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.ig.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.ig.com
ig.com
ig.com
Other certificates including the domain name ig.com
(limited to 100 certificates)
pages.chartsdtu.ig.com
statuspage.io
private-cloud.status.ovhcloud.dev
affiliates.ig.com
incapsula.com
affiliates.ig.com
statuspage.io
statuspage.io
status-media.bucketeer.jp
status-media.bucketeer.jp
etfscreener.ig.com
statuspage.io
router-ext-covg.ig.com
affiliates.ig.com
investments.ig.com
trade.ig.com
*.raf.ig.com
secure05.stage.lithium.com
community.ig.com
*.test.client-onboarding.ig.com
statuspage.io
mybranch.staging.tradedtu.ig.com
sbc2.ig.com
secure05.stage.lithium.com
sfbaccessuk1.ig.com
sepsbe.status.symantec.com
sepsbe.status.symantec.com
test-staging-branch-hoist.webshell.tradedtu.ig.com
edge.dtu.iggroup.net
statuspage.io
statuspage.io
autodiscover.ig.com
statuspage.io
autodiscover.ig.com
statuspage.io
payments.ig.com
status-media.bucketeer.jp
community.ig.com
statuspage.io
statuspage.io
chartsprd.ig.com
igamerica.ig.com
statuspage.io
web.ig.com
sitca.ig.com
status-media.bucketeer.jp
status-media.bucketeer.jp
affiliates.ig.com
test.chartsdtu.ig.com
statuspage.io
academy-api.ig.com
statuspage.io
statuspage.io
web.ig.com
statuspage.io
statuspage.io
web.ig.com
pages.chartsdtu.ig.com
*.dtu-dealing.mobile.ig.com
net-cpm.marketdatasystems.com
statuspage.io
dgs.ig.com
uat.webshell.tradedtu.ig.com
sts.iggroup.net
academy-api.ig.com
imperva.com
web.ig.com
statuspage.io
igamerica.ig.com
labgroup.ig.com
private-cloud.status.ovhcloud.dev
statuspage.io
secure05.stage.lithium.com
*.ig.com
statuspage.io
statuspage.io
statuspage.io
services.ig.com
investments-api.ig.com
igamerica.ig.com
statuspage.io
staging-branch-hoist.staging.tradedtu.ig.com
access.ig.com
statuspage.io
sepsbe.status.symantec.com
sfbaccessuk1.ig.com
status-media.bucketeer.jp
web-ca.ig.com
localhost.ig.com
affiliates.ig.com
incapsula.com
sepsbe.status.symantec.com
uat.screener.ig.com
academy-api.ig.com
uat.webshell.tradedtu.ig.com
affiliates.ig.com
investments.ig.com
secure05.stage.lithium.com
private-cloud.status.ovhcloud.dev
web.ig.com
statuspage.io
private-cloud.status.ovhcloud.dev
affiliates.ig.com
incapsula.com
affiliates.ig.com
statuspage.io
statuspage.io
status-media.bucketeer.jp
status-media.bucketeer.jp
etfscreener.ig.com
statuspage.io
router-ext-covg.ig.com
affiliates.ig.com
investments.ig.com
trade.ig.com
*.raf.ig.com
secure05.stage.lithium.com
community.ig.com
*.test.client-onboarding.ig.com
statuspage.io
mybranch.staging.tradedtu.ig.com
sbc2.ig.com
secure05.stage.lithium.com
sfbaccessuk1.ig.com
sepsbe.status.symantec.com
sepsbe.status.symantec.com
test-staging-branch-hoist.webshell.tradedtu.ig.com
edge.dtu.iggroup.net
statuspage.io
statuspage.io
autodiscover.ig.com
statuspage.io
autodiscover.ig.com
statuspage.io
payments.ig.com
status-media.bucketeer.jp
community.ig.com
statuspage.io
statuspage.io
chartsprd.ig.com
igamerica.ig.com
statuspage.io
web.ig.com
sitca.ig.com
status-media.bucketeer.jp
status-media.bucketeer.jp
affiliates.ig.com
test.chartsdtu.ig.com
statuspage.io
academy-api.ig.com
statuspage.io
statuspage.io
web.ig.com
statuspage.io
statuspage.io
web.ig.com
pages.chartsdtu.ig.com
*.dtu-dealing.mobile.ig.com
net-cpm.marketdatasystems.com
statuspage.io
dgs.ig.com
uat.webshell.tradedtu.ig.com
sts.iggroup.net
academy-api.ig.com
imperva.com
web.ig.com
statuspage.io
igamerica.ig.com
labgroup.ig.com
private-cloud.status.ovhcloud.dev
statuspage.io
secure05.stage.lithium.com
*.ig.com
statuspage.io
statuspage.io
statuspage.io
services.ig.com
investments-api.ig.com
igamerica.ig.com
statuspage.io
staging-branch-hoist.staging.tradedtu.ig.com
access.ig.com
statuspage.io
sepsbe.status.symantec.com
sfbaccessuk1.ig.com
status-media.bucketeer.jp
web-ca.ig.com
localhost.ig.com
affiliates.ig.com
incapsula.com
sepsbe.status.symantec.com
uat.screener.ig.com
academy-api.ig.com
uat.webshell.tradedtu.ig.com
affiliates.ig.com
investments.ig.com
secure05.stage.lithium.com
private-cloud.status.ovhcloud.dev
web.ig.com
Certificate
The complete raw certificate details for *.ig.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGtDCCBZygAwIBAgIRAJNnmI38RciiSBAMrJp4VHgwDQYJKoZIhvcNAQELBQAw gZUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE9MDsGA1UE AxM0U2VjdGlnbyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0yMDExMDgwMDAwMDBaFw0yMTExMDgyMzU5NTlaMIG1MQswCQYD VQQGEwJHQjERMA8GA1UEERMIRUM0UiAyWUExDzANBgNVBAgTBkxvbmRvbjEPMA0G A1UEBxMGTG9uZG9uMRgwFgYDVQQJEw8yNSBEb3dnYXRlIEhpbGwxHDAaBgNVBAkT E0Nhbm5vbiBCcmlkZ2UgSG91c2UxGTAXBgNVBAoTEElHIEdyb3VwIExpbWl0ZWQx CzAJBgNVBAsTAklUMREwDwYDVQQDDAgqLmlnLmNvbTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAMAthmuQgM9BV30AtTxlCT8Y2caUgv91vRn5ybizjQet CseCZ2plxqhYNJ/tBnEBhCFj51EGxm8la35S280zOpHU8NoxhgyP+BDnttPdzJbD mmucFJoWQBCjlgBavpmY7AQuFz5G48eoBMyPqzqj8mrdMdA1MuzyTO/vEhTG5Hxu mVGbWqGLu3H8xeG517W5WsDOE3w/1yf9qy92B1uy8BMlab9sLKKUhwFJ3N2wl1eI bC/KipDEMRkB4L8sdsSel7X1BFSUql2DB7eHWQys1HWqW1iBPQP3byUqBE+sYAmV jd6BcssvJUys7PGZbXWrq75RPpZZYt/MnSYXnFZnecsCAwEAAaOCAtswggLXMB8G A1UdIwQYMBaAFBfZ1iUnZ/kxwklD2TA2RIxsqU/rMB0GA1UdDgQWBBRokgFu/Gd0 +cW8o0kGd3oLsY5sxTAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwSgYDVR0gBEMwQTA1BgwrBgEEAbIx AQIBAwQwJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYG Z4EMAQICMFoGA1UdHwRTMFEwT6BNoEuGSWh0dHA6Ly9jcmwuc2VjdGlnby5jb20v U2VjdGlnb1JTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5j cmwwgYoGCCsGAQUFBwEBBH4wfDBVBggrBgEFBQcwAoZJaHR0cDovL2NydC5zZWN0 aWdvLmNvbS9TZWN0aWdvUlNBT3JnYW5pemF0aW9uVmFsaWRhdGlvblNlY3VyZVNl cnZlckNBLmNydDAjBggrBgEFBQcwAYYXaHR0cDovL29jc3Auc2VjdGlnby5jb20w ggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgB9PvL4j/+IVWgkwsDKnlKJeSvFDngJ fy5ql2iZfiLw1wAAAXWnzY60AAAEAwBHMEUCIALF7qA7Vv4FP5uI2IZVdPL4mntA 28CAu3XjGt44NUmRAiEAziM/ybwuo0K3nEFO5/WIsEf0s835D7deBneAXSBQan4A dgCUILwejtWNbIhzH4KLIiwN0dpNXmxPlD1h204vWE2iwgAAAXWnzY7bAAAEAwBH MEUCIQD/TeQBt7ARu6jnusED9iyVCsBsuSB7YDv0BCFLFor0lQIgAr5vccWTGcV0 gdSEoQBt3+26lXOWEoO4I2xac+5sqBEwGwYDVR0RBBQwEoIIKi5pZy5jb22CBmln LmNvbTANBgkqhkiG9w0BAQsFAAOCAQEAAYfZ4RPWWivdQn8s2qCElGM50M0cZgJ5 A0adWq+18zimQb+Omw7exYKN0UicfmNS4fDOrkDqsLv4PYhGdSMtDefklMbDC6aS 3qZ9zAgSlSAkQFtehXJyitIbLVy1FCH8Jw8gfBtwb4xdmT6Zu2/E/dvgkmsmx1XV 4VbKrjW8VPuNCB2QUluCQr4ktEITovpPNoJP39D3cKvu3KTdIzQwyinidYdyljDc 9G5xZ6DXZAlRY4RvniQ8EXk+HnEP5aHXJuxpnZ0ZeqfxjIjxgZHMwXBByZzyeuHv h+8Xkj3ii/VKTsd8Dw7wJIsVb52L6VxuJp/75Lsz/8zyUZuStowBsA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwC2Ga5CAz0FXfQC1PGUJ PxjZxpSC/3W9GfnJuLONB60Kx4JnamXGqFg0n+0GcQGEIWPnUQbGbyVrflLbzTM6 kdTw2jGGDI/4EOe2093MlsOaa5wUmhZAEKOWAFq+mZjsBC4XPkbjx6gEzI+rOqPy at0x0DUy7PJM7+8SFMbkfG6ZUZtaoYu7cfzF4bnXtblawM4TfD/XJ/2rL3YHW7Lw EyVpv2wsopSHAUnc3bCXV4hsL8qKkMQxGQHgvyx2xJ6XtfUEVJSqXYMHt4dZDKzU dapbWIE9A/dvJSoET6xgCZWN3oFyyy8lTKzs8ZltdaurvlE+llli38ydJhecVmd5 ywIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 195934416132316975951168464562526114936 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'EC4R 2YA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '25 Dowgate Hill' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cannon Bridge House' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IG Group Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.ig.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24260203806536375555129480996226040368195412406575956437001456085471888655122688494679710246291815786728083906247887730062038338505109998565225477760070666867425512677889936475061404205941244620227146748920793778902210823674786757455619273764862059212478225930617399162983208670703000987154876608081240219136613494529075423637057632204892929357189971470137336129971514598393840821797379303993177586149781563387455179183715644543137697616628983920979191780650975773277289822119336279962499978403723206477302837219026299181907897585025660370793749949408818069293526184274784300985700611885985394062737306386043966552523 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6892016efc6774f9c5bca34906777a0bb18e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076007d3ef2f88fff88556824c2c0ca9e5289792bc50e78097f2e6a9768997e22f0d700000175a7cd8eb40000040300473045022002c5eea03b56fe053f9b88d8865574f2f89a7b40dbc080bb75e31ade38354991022100ce233fc9bc2ea342b79c414ee7f588b047f4b3cdf90fb75e0677805d20506a7e0076009420bc1e8ed58d6c88731f828b222c0dd1da4d5e6c4f943d61db4e2f584da2c200000175a7cd8edb0000040300473045022100ff4de401b7b011bba8e7bac103f62c950ac06cb9207b603bf404214b168af495022002be6f71c59319c57481d484a1006ddfedba9573961283b8236c5a73ee6ca811 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ig.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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