www.colonytv.com
- NBCUniversal Media, LLC -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0f:70:e5:c8:32:2f:1f:cb:ec:9e:99:26:d1:95:e9:a2 was issued on by DigiCert Inc.
With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
NBCUniversal Media, LLC
Organization:
NBCUniversal Media, LLC
State / Province:
New Jersey
Locality: Englewood
Country: US
Locality: Englewood
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:70:e5:c8:32:2f:1f:cb:ec:9e:99:26:d1:95:e9:a2Serial Number (int): 20524617717892598033036514683178576290
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 50:12:37:e1:4a:4a:7d:7f:53:6e:fd:24:ca:c9:50:95:bd:d7:01:50
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 74:80:8c:01:ec:96:91:7b:d9:86:e1:a7:d3:80:84:7f:bc:7f:f4:35
Fingerprint (sha256): 0a:be:5d:85:1b:60:ba:2b:00:8a:de:58:cc:a8:1a:83:b1:d9:2e:10:0d:95:9c:9d:88:4b:44:0b:62:68:5e:2e
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate www.colonytv.com
18
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.colonytv.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.colonytv.com
sdk.brand-mps.nbcuni.com
stage.tvecms.usa.nbcuni.com
edit.nbcumv.com
dev.tvecms.universalkids.nbcuni.com
erasethehate.org
prod.tvecms.universalkids.nbcuni.com
www.nbcuniversal.com
colonytv.com
stage.tvecms.universalkids.nbcuni.com
www.erasethehate.org
www.universaldigitaluniverse.com
www.surf.nbcuni.com
fsociety00.dat.sh
stage.surf.nbcuni.com
stage.universalkids.com
v1.colonytv.com
www.purgatorysd.com
sdk.brand-mps.nbcuni.com
stage.tvecms.usa.nbcuni.com
edit.nbcumv.com
dev.tvecms.universalkids.nbcuni.com
erasethehate.org
prod.tvecms.universalkids.nbcuni.com
www.nbcuniversal.com
colonytv.com
stage.tvecms.universalkids.nbcuni.com
www.erasethehate.org
www.universaldigitaluniverse.com
www.surf.nbcuni.com
fsociety00.dat.sh
stage.surf.nbcuni.com
stage.universalkids.com
v1.colonytv.com
www.purgatorysd.com
Other certificates including the domain name colonytv.com
(limited to 100 certificates)
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
login.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
login.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
login.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
login.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
login.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
login.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
www.colonytv.com
Certificate
The complete raw certificate details for www.colonytv.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH0zCCBrugAwIBAgIQD3DlyDIvH8vsnpkm0ZXpojANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwMTA3MDAwMDAwWhcN MTkwMTI4MTIwMDAwWjBzMQswCQYDVQQGEwJVUzETMBEGA1UECBMKTmV3IEplcnNl eTESMBAGA1UEBxMJRW5nbGV3b29kMSAwHgYDVQQKExdOQkNVbml2ZXJzYWwgTWVk aWEsIExMQzEZMBcGA1UEAxMQd3d3LmNvbG9ueXR2LmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAMHxBR9zY4JIRD2nwFIDWFnQdCYXQIF3YjnbW+/G MKHuSXgm6KnFzBtl9xPa13vTS4gb4WkDCz2EwMyCB9a3yRs91gYi/887oOEJ0RoT H+gKh5w9cnFkCm48jWqHejoB7dus/XmCGWEXqu1+ooTX+YzaOVG9EDa1Lk4psAS/ 5qUFO4fsGqpq1FQGsRV0Zd6bRLSUINGbZ+ApJvOenX75GYvf6LTv4OU84/jeHlTx WO6g0B+O8rsDiHqwOk3fXtUImY1O7N2iaH+KHSda4hhCDbLkY55JzMPeSf0E/gcX lZT5EtJqZmu5hFr+myPspf1FOqjSCDuRHSgSW/QOEp2YQ10CAwEAAaOCBIcwggSD MB8GA1UdIwQYMBaAFA+AYRyCMWHVLyjnjUY4tCzhxtniMB0GA1UdDgQWBBRQEjfh Skp9f1Nu/STKyVCVvdcBUDCCAcUGA1UdEQSCAbwwggG4ghB3d3cuY29sb255dHYu Y29tghhzZGsuYnJhbmQtbXBzLm5iY3VuaS5jb22CG3N0YWdlLnR2ZWNtcy51c2Eu bmJjdW5pLmNvbYIPZWRpdC5uYmN1bXYuY29tgiNkZXYudHZlY21zLnVuaXZlcnNh bGtpZHMubmJjdW5pLmNvbYIQZXJhc2V0aGVoYXRlLm9yZ4IkcHJvZC50dmVjbXMu dW5pdmVyc2Fsa2lkcy5uYmN1bmkuY29tghR3d3cubmJjdW5pdmVyc2FsLmNvbYIM Y29sb255dHYuY29tgiVzdGFnZS50dmVjbXMudW5pdmVyc2Fsa2lkcy5uYmN1bmku Y29tghR3d3cuZXJhc2V0aGVoYXRlLm9yZ4Igd3d3LnVuaXZlcnNhbGRpZ2l0YWx1 bml2ZXJzZS5jb22CE3d3dy5zdXJmLm5iY3VuaS5jb22CEWZzb2NpZXR5MDAuZGF0 LnNoghVzdGFnZS5zdXJmLm5iY3VuaS5jb22CF3N0YWdlLnVuaXZlcnNhbGtpZHMu Y29tgg92MS5jb2xvbnl0di5jb22CE3d3dy5wdXJnYXRvcnlzZC5jb20wDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8E ZDBiMC+gLaArhilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc2 LmNybDAvoC2gK4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1n Ni5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0 cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwfAYIKwYBBQUHAQEE cDBuMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wRgYIKwYB BQUHMAKGOmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJT ZWN1cmVTZXJ2ZXJDQS5jcnQwCQYDVR0TBAIwADCCAQMGCisGAQQB1nkCBAIEgfQE gfEA7wB1AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABYNLK18oA AAQDAEYwRAIgHS/3TP594HZ+eiF1SJe6fZcZLOcngLpcFd9v8ZnXeBoCICusFtDs SIE5/P0ioH9lgxpTdSI5rFZj6ktj6kvU7BdoAHYAh3W/51l8+IxDmV+9827/Vo1H Vjb/SrVgwbTq/16ggw8AAAFg0srYawAABAMARzBFAiBvtzZ12aDYoeNgIWLAmZgw 5FFeVf5V0SYfQ+IVnoyclwIhAIYL9jiODCvpWK7yVzNvkKa4ZHZFKMw9yQ8Nt78+ j9snMA0GCSqGSIb3DQEBCwUAA4IBAQBQXmPvl0q5KB8uohKu97Q6QyMyAKBItPGg HtBWoiZKd6LX2E0uZpJ2oXJikjoCKLkB9OcbXaSKJ2zfuyBd8B1zAx81bhsGaOhd yV72dRUaX12c8+kn0pSnzZckrzN675+/nyYx6yXDuoFeKSZalUD5B6kDN2bBnqru tmNjk27sL/Cpfq6YU6JF4KndWJpzIvnsuva9rPVYYcGyLeIeFVdVkFYOhYWuyF9X vqc3Ygdk+jhmCAMS16uuKic/nnuEPcRtb+7n5ZhrZa6UcGMC1iU55bjIG/AMVrgH dHws3XeiVj/cjtNgcn1tdfLgJOo1vTi/8sJ8pFN1UrciHUocGOc+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfEFH3NjgkhEPafAUgNY WdB0JhdAgXdiOdtb78Ywoe5JeCboqcXMG2X3E9rXe9NLiBvhaQMLPYTAzIIH1rfJ Gz3WBiL/zzug4QnRGhMf6AqHnD1ycWQKbjyNaod6OgHt26z9eYIZYReq7X6ihNf5 jNo5Ub0QNrUuTimwBL/mpQU7h+waqmrUVAaxFXRl3ptEtJQg0Ztn4Ckm856dfvkZ i9/otO/g5Tzj+N4eVPFY7qDQH47yuwOIerA6Td9e1QiZjU7s3aJof4odJ1riGEIN suRjnknMw95J/QT+BxeVlPkS0mpma7mEWv6bI+yl/UU6qNIIO5EdKBJb9A4SnZhD XQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20524617717892598033036514683178576290 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-28 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Englewood' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NBCUniversal Media, LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.colonytv.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24482844255599693897765030531399628901628808317491746005129032326913946030987143671188693534023956151866253040412484566321615589033138192091681077808626990757103042966831497270261347012679768430275144220271751779617141581332553532713527012386976354067861170574780038023651384316661164859412195571055996150550778121929131705961316710530609770979611771952276387727889248586602991265620514538627631122778646481956226235103951324057434436748414334086574702836747228513368461016560540554854172191899131983912438520314691166910647924285713891993299064794737077322322871429218957241627798976249183673206590849997492750664541 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:1|t:16|false] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (444 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.colonytv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sdk.brand-mps.nbcuni.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.tvecms.usa.nbcuni.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edit.nbcumv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.tvecms.universalkids.nbcuni.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'erasethehate.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod.tvecms.universalkids.nbcuni.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nbcuniversal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colonytv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.tvecms.universalkids.nbcuni.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.erasethehate.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.universaldigitaluniverse.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.surf.nbcuni.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fsociety00.dat.sh' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.surf.nbcuni.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.universalkids.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'v1.colonytv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.purgatorysd.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000160d2cad7ca000004030046304402201d2ff74cfe7de0767e7a21754897ba7d97192ce72780ba5c15df6ff199d7781a02202bac16d0ec488139fcfd22a07f65831a53752239ac5663ea4b63ea4bd4ec17680076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000160d2cad86b000004030047304502206fb73675d9a0d8a1e3602162c0999830e4515e55fe55d1261f43e2159e8c9c97022100860bf6388e0c2be958aef257336f90a6b864764528cc3dc90f0db7bf3e8fdb27 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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