www.phn.sterbc.com
- Royal Bank of Canada -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 29:29:65:ed:0e:cc:19:a2:1a:cc:4b:a1:00:c3:40:19 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Royal Bank of Canada
Organization:
Royal Bank of Canada
State / Province:
Ontario
Locality: Toronto
Country: CA
Locality: Toronto
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 29:29:65:ed:0e:cc:19:a2:1a:cc:4b:a1:00:c3:40:19Serial Number (int): 54713299303405495475352496654262681625
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 6b:7d:d9:3c:23:5f:4c:e1:3e:da:56:48:3e:5f:6f:ef:bd:3a:cc:36
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 37:bb:c0:bc:b5:ec:29:2d:16:bc:33:51:e6:f4:f3:cd:b2:5a:94:64
Fingerprint (sha256): 0b:16:44:d3:30:96:21:83:ae:3b:1d:18:58:d5:69:71:4d:e8:14:2d:46:fc:42:3b:d4:fa:4c:49:86:85:28:b7
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate www.phn.sterbc.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.phn.sterbc.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.phn.sterbc.com
phn.sterbc.com
phn.sterbc.com
Other certificates including the domain name sterbc.com
(limited to 100 certificates)
sterbc.com
ssl418271.cloudflaressl.com
sterbc.com
myfinancetrackergcc.sterbc.com
steroyalbank.com
sterbc.com
sterbc.com
sterbc.com
origtestgw.sterbc.com
istbronze.sterbc.com
private.static-site-canary.sterbc.com
sterbcinsurance.com
rbc-di-ie--uat.salesforce.sterbc.com
sterbc.com
www.sterbcbanqueroyale.com
www5.sterbc.com
sterbc.com
myfinancetrackergcc.sterbc.com
saiadvisorworks.sterbc.com
exvgroup.sterbc.com
may25test3correctedattempt2.sterbc.com
steroyalbank.com
cimsurveysai.sterbc.com
researchonemobile.sterbc.com
myfinancetracker.sterbc.com
qa-api-rbcone.sterbc.com
qa-online.sterbc.com
steroyalbank.com
webft.sterbc.com
b2bkeyadmin.sterbc.com
www1.steroyalbank.com
may25test3correctedattempt2.sterbc.com
iso.portfolioaccounting.sterbc.com
pokeshot.sterbc.com
kyvos-aws.sterbc.com
silver.rbcroyalbank.com
i1.devrbcinsight.sterbc.com
sterbcinsurance.com
rbc-di-ie--nonprod.salesforce.sterbc.com
iris.www5.sterbc.com
vsmart-bb31c200-f41a-44e1-82d9-c40993784b35-4.sterbc.com
sterbc.com
sterbcinsurance.com
webc.sterbc.com
lfm.symcor.eb.sterbc.com
qa-help-online.sterbc.com
rbcits.com
qa-carts.sterbc.com
uat-api-rbcone.sterbc.com
cert-test.sterbc.com
saiinfoworks.sterbc.com
sterbcinsurance.com
sterbcinsurance.com
rbcits.com
vmanage-220d0c92-7922-41b4-94fa-c5a27137c979-0.sterbc.com
saiusdataworks.sterbc.com
qa-carts.sterbc.com
sterbc.com
www1.sterbc.com
ssod.sterbc.com
rbc-akamai-nonprod.sterbc.com
www.phn.sterbc.com
uat-api-rbcone.sterbc.com
i1.qarbcinsight.sterbc.com
sterbc.com
events.sterbc.com
ftpssl-qa.sterbc.com
sterbc.com
ngsss.sterbc.com
steroyalbank.com
sterbc.com
istrbcinsight.sterbc.com
rbc-akamai-nonprod.sterbc.com
iso1.portfolioaccounting.sterbc.com
sterbcinsurance.com
vmx.sterbc.com
dto.www1.steroyalbank.com
CIMSURVEY.STERBC.COM
silver.rbcroyalbank.com
procurement.registerid.sterbc.com
www4.sterbc.com
wsie0.sterbc.com
istssprmus.sterbc.com
sterbc.com
sterbcinsurance.com
webft.sterbc.com
b2bfiletransferadmin.sterbc.com
rbcupskill-dev.ca
myfinancetrackergcc.sterbc.com
cert-test.sterbc.com
may25test3correctedattempt2.sterbc.com
panorama.sterbc.com
istssprmus.sterbc.com
i2.devrbcinsight.sterbc.com
vmanage-b6411881-90a7-4452-b63c-f78ca1dae77e-0.sterbc.com
sterbc.com
sterbcinsurance.com
istinfoworks.sterbc.com
remote.sterbc.com
cmlfmqa.sterbc.com
ssl418271.cloudflaressl.com
sterbc.com
myfinancetrackergcc.sterbc.com
steroyalbank.com
sterbc.com
sterbc.com
sterbc.com
origtestgw.sterbc.com
istbronze.sterbc.com
private.static-site-canary.sterbc.com
sterbcinsurance.com
rbc-di-ie--uat.salesforce.sterbc.com
sterbc.com
www.sterbcbanqueroyale.com
www5.sterbc.com
sterbc.com
myfinancetrackergcc.sterbc.com
saiadvisorworks.sterbc.com
exvgroup.sterbc.com
may25test3correctedattempt2.sterbc.com
steroyalbank.com
cimsurveysai.sterbc.com
researchonemobile.sterbc.com
myfinancetracker.sterbc.com
qa-api-rbcone.sterbc.com
qa-online.sterbc.com
steroyalbank.com
webft.sterbc.com
b2bkeyadmin.sterbc.com
www1.steroyalbank.com
may25test3correctedattempt2.sterbc.com
iso.portfolioaccounting.sterbc.com
pokeshot.sterbc.com
kyvos-aws.sterbc.com
silver.rbcroyalbank.com
i1.devrbcinsight.sterbc.com
sterbcinsurance.com
rbc-di-ie--nonprod.salesforce.sterbc.com
iris.www5.sterbc.com
vsmart-bb31c200-f41a-44e1-82d9-c40993784b35-4.sterbc.com
sterbc.com
sterbcinsurance.com
webc.sterbc.com
lfm.symcor.eb.sterbc.com
qa-help-online.sterbc.com
rbcits.com
qa-carts.sterbc.com
uat-api-rbcone.sterbc.com
cert-test.sterbc.com
saiinfoworks.sterbc.com
sterbcinsurance.com
sterbcinsurance.com
rbcits.com
vmanage-220d0c92-7922-41b4-94fa-c5a27137c979-0.sterbc.com
saiusdataworks.sterbc.com
qa-carts.sterbc.com
sterbc.com
www1.sterbc.com
ssod.sterbc.com
rbc-akamai-nonprod.sterbc.com
www.phn.sterbc.com
uat-api-rbcone.sterbc.com
i1.qarbcinsight.sterbc.com
sterbc.com
events.sterbc.com
ftpssl-qa.sterbc.com
sterbc.com
ngsss.sterbc.com
steroyalbank.com
sterbc.com
istrbcinsight.sterbc.com
rbc-akamai-nonprod.sterbc.com
iso1.portfolioaccounting.sterbc.com
sterbcinsurance.com
vmx.sterbc.com
dto.www1.steroyalbank.com
CIMSURVEY.STERBC.COM
silver.rbcroyalbank.com
procurement.registerid.sterbc.com
www4.sterbc.com
wsie0.sterbc.com
istssprmus.sterbc.com
sterbc.com
sterbcinsurance.com
webft.sterbc.com
b2bfiletransferadmin.sterbc.com
rbcupskill-dev.ca
myfinancetrackergcc.sterbc.com
cert-test.sterbc.com
may25test3correctedattempt2.sterbc.com
panorama.sterbc.com
istssprmus.sterbc.com
i2.devrbcinsight.sterbc.com
vmanage-b6411881-90a7-4452-b63c-f78ca1dae77e-0.sterbc.com
sterbc.com
sterbcinsurance.com
istinfoworks.sterbc.com
remote.sterbc.com
cmlfmqa.sterbc.com
Certificate
The complete raw certificate details for www.phn.sterbc.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIQKSll7Q7MGaIazEuhAMNAGTANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDAzMjExNjIwMTBaFw0yNTAzMjIxNjIwMDlaMG0xCzAJBgNVBAYTAkNBMRAwDgYD VQQIEwdPbnRhcmlvMRAwDgYDVQQHEwdUb3JvbnRvMR0wGwYDVQQKExRSb3lhbCBC YW5rIG9mIENhbmFkYTEbMBkGA1UEAxMSd3d3LnBobi5zdGVyYmMuY29tMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAud2Dk9g8R2IN10uV87GKByEXsep2 gnesFRiwKe1920u560GHMkb6wZFzT9r9fC/sWHf8+R0NLL2Tqd5EgWGQTDffwB4b I8ERBwwrWRbDboiTMZGLzPGCl8mqHb8czYySBf7FGZZqYgUUkd8c/r2v1yn/e7pN mWzzFhvJ9kgtkjikY+i5WZWW4APo0wCCDlPLwQWNrD9RimsleolFwD2xNFojqZqR 4Qc0u+/W5rpnlyVPgqwKxoQwodjvPbSsuf+3IiHhCMjbM1/mEOpdls5BkQDf4F64 PbkSTMpnh/gOp/R10HroFnOoWcILInlYBmHrrqbmRDzTqLSpA9pNFHXXkwIDAQAB o4IBeTCCAXUwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUa33ZPCNfTOE+2lZIPl9v 7706zDYwHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3zX+nYMYKTL8waAYIKwYBBQUH AQEEXDBaMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAzBggr BgEFBQcwAoYnaHR0cDovL2FpYS5lbnRydXN0Lm5ldC9sMWstY2hhaW4yNTYuY2Vy MDMGA1UdHwQsMCowKKAmoCSGImh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwx ay5jcmwwLQYDVR0RBCYwJIISd3d3LnBobi5zdGVyYmMuY29tgg5waG4uc3RlcmJj LmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMBMGA1UdIAQMMAowCAYGZ4EMAQICMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0G CSqGSIb3DQEBCwUAA4IBAQAp5+rmgsNCyf3jXfdfmWzqqMeYg2cTuPujJPTEodtb 7dU/tm72jjtpkGwdktp5cUU5LWVA3Lqw3OJ4lfO6EpzlwjzY4cUX7NgeWWtkDGDD tb3yocHAoVlzxgP+vlq8mgR/yhUgrGPSi7NVBgaPSw3H6qfVJFi1tKdGYyU8zVis zQ1ERGDT+mis6pq/vR+J71IPG7aSUuYNibnT+x0pocYhzvn+444qIkTOZsb0dWmU drFHeuy7UXSQa8RmfoGknK7IUA+9wwh/zBRL2UCwPwm/LSlOuGG7Rk10idGVxRsq Y8j5gD4xsKO4rshAK7m4+NKOkRCUYCDPbXdrxAT4pQSX -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAud2Dk9g8R2IN10uV87GK ByEXsep2gnesFRiwKe1920u560GHMkb6wZFzT9r9fC/sWHf8+R0NLL2Tqd5EgWGQ TDffwB4bI8ERBwwrWRbDboiTMZGLzPGCl8mqHb8czYySBf7FGZZqYgUUkd8c/r2v 1yn/e7pNmWzzFhvJ9kgtkjikY+i5WZWW4APo0wCCDlPLwQWNrD9RimsleolFwD2x NFojqZqR4Qc0u+/W5rpnlyVPgqwKxoQwodjvPbSsuf+3IiHhCMjbM1/mEOpdls5B kQDf4F64PbkSTMpnh/gOp/R10HroFnOoWcILInlYBmHrrqbmRDzTqLSpA9pNFHXX kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 54713299303405495475352496654262681625 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-21 16:20:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-22 16:20:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Toronto' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Royal Bank of Canada' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.phn.sterbc.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23463319030791068501797490752758554321611522801771098719860882638474236872857887189785059057651971826056826075423994920595016690958340357196406004733686091171254795516106196588911080514702817066806434098680318057312309652429560809126609783244328263304406069490835362847489214808353332826802404335605162035324305480032514951466793906061302236947530294769029108352878659933969353772471463092298993784404688539095150648828741358768406692265872423132265192365168304437983201941198862522787048216693300365906545856807629216631293456890902708719117649237296318116441845891648357713261643290595370797392449968001152082892691 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6b7dd93c235f4ce13eda56483e5f6fefbd3acc36 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.phn.sterbc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phn.sterbc.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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