www.aoa.org
- American Optometric Association -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 05:b8:51:77:2a:bc:bb:82:52:f9:da:8c:75:fa:44:7e was issued on by DigiCert Inc.
With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
American Optometric Association
Company registration number:
50965
Organization: American Optometric Association
Organization: American Optometric Association
Address:
243 N. Lindbergh Blvd., Flr. 1
Postal code: 63141-7881
State / Province: Missouri
Locality: St. Louis
Country: US
Postal code: 63141-7881
State / Province: Missouri
Locality: St. Louis
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:b8:51:77:2a:bc:bb:82:52:f9:da:8c:75:fa:44:7eSerial Number (int): 7603174917450756584101279639365371006
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: dc:d5:40:81:e6:64:f9:7d:20:24:b8:fc:5f:f5:cf:a8:48:5b:6b:a6
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): be:b1:24:3b:db:07:31:09:bf:27:80:7f:8f:f0:da:e7:9e:de:50:f5
Fingerprint (sha256): 0b:65:f9:28:41:87:c2:eb:2a:8e:49:a4:74:14:0c:36:89:4c:f4:32:f1:31:e5:97:8f:fb:f5:89:74:4a:08:31
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g1.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g1.crl
Check the revocation status for certificate www.aoa.org
14
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.aoa.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.aoa.org
dev.aoa.org
netapps.aoa.org
stage.aoa.org
minnesota.aoa.org
store.aoa.org
nebraska.aoa.org
mail.aoa.org
colorado.aoa.org
colorado.stage.aoa.org
minnesota.stage.aoa.org
nebraska.stage.aoa.org
autodiscover.aoa.org
hybrid.aoa.org
dev.aoa.org
netapps.aoa.org
stage.aoa.org
minnesota.aoa.org
store.aoa.org
nebraska.aoa.org
mail.aoa.org
colorado.aoa.org
colorado.stage.aoa.org
minnesota.stage.aoa.org
nebraska.stage.aoa.org
autodiscover.aoa.org
hybrid.aoa.org
Other certificates including the domain name aoa.org
(limited to 100 certificates)
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
dg-0035-c25fe2a.client-tls.adestra.com
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
aoa.org
cordialclick.aoa.org
www.aoa.org
*.aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
cordialdata.aoa.org
*.aoa.org
*.stage.aoa.org
*.aoa.org
www.aoa.org
dg-0035-c25fe2a.client-tls.adestra.com
*.aoa.org
www.aoa.org
secure.aoa.org
secure.aoa.org
www.aoa.org
cordialdata.aoa.org
api.card.aoa.org
www.aoa.org
aoa.org
secure.aoa.org
*.aoa.org
aoa.org
about.card.aoa.org
ithelp.patchi.com
aoa.mercantile.cards
aafprs.mercantile.cards
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
cordialclick.aoa.org
auth.card.aoa.org
cordialdata.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
*.aoa.org
aafprs.mercantile.cards
*.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
aoa.org
www.aoa.org
mail.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
soporte.iobot.chat
help.dealers.energy
*.aoa.org
secure.aoa.org
stage.aoa.org
mail.aoa.org
*.aoa.org
stage.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
dg-0035-c25fe2a.client-tls.adestra.com
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
aoa.org
cordialclick.aoa.org
www.aoa.org
*.aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
cordialdata.aoa.org
*.aoa.org
*.stage.aoa.org
*.aoa.org
www.aoa.org
dg-0035-c25fe2a.client-tls.adestra.com
*.aoa.org
www.aoa.org
secure.aoa.org
secure.aoa.org
www.aoa.org
cordialdata.aoa.org
api.card.aoa.org
www.aoa.org
aoa.org
secure.aoa.org
*.aoa.org
aoa.org
about.card.aoa.org
ithelp.patchi.com
aoa.mercantile.cards
aafprs.mercantile.cards
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
cordialclick.aoa.org
auth.card.aoa.org
cordialdata.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
*.aoa.org
aafprs.mercantile.cards
*.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
aoa.org
www.aoa.org
mail.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
soporte.iobot.chat
help.dealers.energy
*.aoa.org
secure.aoa.org
stage.aoa.org
mail.aoa.org
*.aoa.org
stage.aoa.org
*.aoa.org
Certificate
The complete raw certificate details for www.aoa.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIII6TCCB9GgAwIBAgIQBbhRdyq8u4JS+dqMdfpEfjANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE2MTEwOTAwMDAwMFoXDTE4MDEwOTEy MDAwMFowggENMR0wGwYDVQQPDBRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysG AQQBgjc8AgEDEwJVUzEVMBMGCysGAQQBgjc8AgECEwRPaGlvMQ4wDAYDVQQFEwU1 MDk2NTEnMCUGA1UECRMeMjQzIE4uIExpbmRiZXJnaCBCbHZkLiwgRmxyLiAxMRMw EQYDVQQREwo2MzE0MS03ODgxMQswCQYDVQQGEwJVUzERMA8GA1UECBMITWlzc291 cmkxEjAQBgNVBAcTCVN0LiBMb3VpczEoMCYGA1UEChMfQW1lcmljYW4gT3B0b21l dHJpYyBBc3NvY2lhdGlvbjEUMBIGA1UEAxMLd3d3LmFvYS5vcmcwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL68femUCRU8zSY2ScimhFrNnmwVa2qxR8 u+3L/OUD75dt3Ry7YZ5Wfq++zmmolnnO7QYuPjlUY3qp7xwt5HNoJg/hdL3Qdxz5 D36aK1yTuhhByXtljRgqnTO3aruCrQcYGe4g97oB8HPHG+9mQOGd8mTcGWwmlvAO XmFa1o7U2p3d9xUXvFNCP6OoKBTDLvIs12AmpGPCD+nI4YzXVZN1YuIPvUaTAeTO oQ7LN/DeQkl0mZtqgUulxRjC0p7uHwmn8IlS83nUilOsLhzLQKsDyuEi9LOw3cxb BUwoWpDIjlR/NVyeBdoinZqrpq48W55R9VosgizZS4TEdxrwB1eFAgMBAAGjggTZ MIIE1TAfBgNVHSMEGDAWgBQ901Cl1qCt7vNKYApl0yHU+PjWDzAdBgNVHQ4EFgQU 3NVAgeZk+X0gJLj8X/XPqEhba6YwggEJBgNVHREEggEAMIH9ggt3d3cuYW9hLm9y Z4ILZGV2LmFvYS5vcmeCD25ldGFwcHMuYW9hLm9yZ4INc3RhZ2UuYW9hLm9yZ4IR bWlubmVzb3RhLmFvYS5vcmeCDXN0b3JlLmFvYS5vcmeCEG5lYnJhc2thLmFvYS5v cmeCDG1haWwuYW9hLm9yZ4IQY29sb3JhZG8uYW9hLm9yZ4IWY29sb3JhZG8uc3Rh Z2UuYW9hLm9yZ4IXbWlubmVzb3RhLnN0YWdlLmFvYS5vcmeCFm5lYnJhc2thLnN0 YWdlLmFvYS5vcmeCFGF1dG9kaXNjb3Zlci5hb2Eub3Jngg5oeWJyaWQuYW9hLm9y ZzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MHUGA1UdHwRuMGwwNKAyoDCGLmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zaGEy LWV2LXNlcnZlci1nMS5jcmwwNKAyoDCGLmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNv bS9zaGEyLWV2LXNlcnZlci1nMS5jcmwwSwYDVR0gBEQwQjA3BglghkgBhv1sAgEw KjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAHBgVn gQwBATCBiAYIKwYBBQUHAQEEfDB6MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5k aWdpY2VydC5jb20wUgYIKwYBBQUHMAKGRmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0 LmNvbS9EaWdpQ2VydFNIQTJFeHRlbmRlZFZhbGlkYXRpb25TZXJ2ZXJDQS5jcnQw DAYDVR0TAQH/BAIwADCCAfgGCisGAQQB1nkCBAIEggHoBIIB5AHiAHYApLkJkLQY WBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFaj86JtQAABAMARzBFAiBH2OBh F4lDPrp7jsEWWpncUTL7Gl8UPCDpOhToVdVSoQIhAIEtorxuZ3JW/5bsKWDSol9R N64aL+6vOmartc6R5zaTAHcAVhQGmi/XwuzT9eG9RLI+x0Z2ubyZEVzA75SYVdaJ 0N0AAAFaj86LCAAABAMASDBGAiEAsm5oCRggSgGISsiTjYeFQX9TwQAY/+84Hv3p B3a+cmkCIQDGUTdqAs6m00elNvVX7qmXK/LrN8Fij9nYThD0JEU7twB2AO5Lvbd1 zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABWo/OjV4AAAQDAEcwRQIgX3h8 QFbnJtPxEGQER4vajY+MkjsEDx0CDBugXVURF7wCIQCCF8ovh9/glsD8/D1DGeia Npyqa649ddfad0mMmEdL3gB3ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaO HtGFAAABWo/OinAAAAQDAEgwRgIhAOuK40xBifyjwBAT3WcGBnRXjg1pGbTt0or9 TLFbe3MvAiEAlJPevvv5FnTXfBBvQqPl8HoxnXkGFigDl/kBSUoHr/wwDQYJKoZI hvcNAQELBQADggEBAE9Bus7KHu/TwGC5KjK61yvpnmqDzSEPS5WOCjsdy4hgekt5 DCioXKhLRiPVxOOYWun2TZb5aoQfHtjK5s2Cfrh9TVhOHBSnkAoUc9tzli2hEB4F Rfd3T9BHWZPPR3TQswaRF/T+YlDFSGYcExsR95m2lRiN0iLm/x+Hi4rH22ohWbN5 1AVkU4hQ8pUcGRtFUa4dYjtM5yU9xEETpygvLuVYuiMMBOfkwsIplvSmZyzmJ3u/ VvkQl5jMf/TrSJ9l6+nFbuQfZmPSo3+DgFeF0wM6WZCGwZkdBJ7APkPKg1F9IAw1 OJ5EP7gjZ8jtacgvLqeFQ52ioiBDKJQNxNSumaM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+vH3plAkVPM0mNknIpo RazZ5sFWtqsUfLvty/zlA++Xbd0cu2GeVn6vvs5pqJZ5zu0GLj45VGN6qe8cLeRz aCYP4XS90Hcc+Q9+mitck7oYQcl7ZY0YKp0zt2q7gq0HGBnuIPe6AfBzxxvvZkDh nfJk3BlsJpbwDl5hWtaO1Nqd3fcVF7xTQj+jqCgUwy7yLNdgJqRjwg/pyOGM11WT dWLiD71GkwHkzqEOyzfw3kJJdJmbaoFLpcUYwtKe7h8Jp/CJUvN51IpTrC4cy0Cr A8rhIvSzsN3MWwVMKFqQyI5UfzVcngXaIp2aq6auPFueUfVaLIIs2UuExHca8AdX hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7603174917450756584101279639365371006 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-09 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ohio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '50965' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '243 N. Lindbergh Blvd., Flr. 1' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '63141-7881' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Missouri' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'St. Louis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'American Optometric Association' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.aoa.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25742643724530303360019192040632453527566110521307877100281973241245715003690255091559978183829104177741765985067023645012425992533925936403868584443887156869175622602395073439963063211368575514711221507339967785944384932421069121599245610881433002497889164732970024141784926725040842978144348650500694551226173194801161070371475293532562697542097192424118078397723049225844623394658903728201331665449914245243582282049040040246427748859629601947903898536805328701215843732694130936565097581925455719277028377653450731541153528859850970090965014455324551983538295710239594995668812775380373691312383683400660148508549 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dcd54081e664f97d2024b8fc5ff5cfa8485b6ba6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (256 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'netapps.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minnesota.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nebraska.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colorado.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colorado.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minnesota.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nebraska.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hybrid.aoa.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (488 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (484 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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