PTH-PROXY.hc-sc.gc.ca
- Health Canada (Department of Health) -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 09:22:c5:3f:32:ca:9f:18:00:00:00:00:50:eb:a3:fd was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Health Canada (Department of Health)
Organization:
Health Canada (Department of Health)
State / Province:
Ontario
Locality: Ottawa
Country: CA
Locality: Ottawa
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:22:c5:3f:32:ca:9f:18:00:00:00:00:50:eb:a3:fdSerial Number (int): 12143590697039789578853128992994337789
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 68:0b:24:c9:3a:bf:8e:96:a5:95:e3:a5:8c:ac:67:ac:34:0f:4e:12
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): e0:ef:6c:f5:5f:ad:45:0f:f2:12:3e:ef:83:af:6a:f7:6c:5c:89:1f
Fingerprint (sha256): 0b:af:78:98:a6:ed:6c:11:a4:c8:31:07:67:3e:ba:cd:2e:48:c9:c4:cb:14:11:21:77:67:a8:8d:33:eb:1e:c4
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate PTH-PROXY.hc-sc.gc.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for PTH-PROXY.hc-sc.gc.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
PTH-PROXY.hc-sc.gc.ca
kina.hc-sc.gc.ca
kina.hc-sc.gc.ca
Other certificates including the domain name hc-sc.gc.ca
(limited to 100 certificates)
training.mtrs-sctrm.hc-sc.gc.ca
HCQCK1AWVDCT001.tqa.hc-sc.gc.ca
ers-ser.hc-sc.gc.ca
HCQCK1AwvAST063.hc-sc.gc.ca
*.uat.hc-sc.gc.ca
ers-auth-ser-lb.hc-sc.gc.ca
h2o.hc-sc.gc.ca
biosecurity-portal.hc-sc.gc.ca
cgnw-01.hc-sc.gc.ca
sdx-edp.hc-sc.gc.ca
wasext-prd-1.hc-sc.gc.ca
eprs-serp.hc-sc.gc.ca
hc4ecc6.hc-sc.gc.ca
hconk2ewvasp001.hc-sc.gc.ca
mtrs-sctrm.hc-sc.gc.ca
PTH-PROXY.hc-sc.gc.ca
HCONK1VWVDCP002.ad.hc-sc.gc.ca
istopxrm.hc-sc.gc.ca
utils-test.hc-sc.gc.ca
gateway-passerelle.preprod.hc-sc.gc.ca
nihb-atl-fax.hc-sc.gc.ca
int-services1.hc-sc.gc.ca
Inotes.hc-sc.gc.ca
SAD-TEM-DV1.hc-sc.gc.ca
HCONK1AwvAST058.hc-sc.gc.ca
int-services3.dev.hc-sc.gc.ca
eprs-serp.hc-sc.gc.ca
sad-pt2-devap1.hc-sc.gc.ca
cloud-vpn.hc-sc.gc.ca
www.mtrs-sctrm.hc-sc.gc.ca
international-health-commitments.canada.ca
training.mtrs-sctrm.hc-sc.gc.ca
sap-cms.hc-sc.gc.ca
HCQCK1AWVDCT002.tqa.hc-sc.gc.ca
training.mtrs-sctrm.hc-sc.gc.ca
dev.mg-dsol.mapgears.com
cgnw-01.hc-sc.gc.ca
int-services1.preprod.hc-sc.gc.ca
sgpp-dt.hc-sc.gc.ca
ocs-bsc.hc-sc.gc.ca
int-services1.uat.hc-sc.gc.ca
sdx-edp.hc-sc.gc.ca
ctls-sscdl.hc-sc.gc.ca
PTH-PROXY-TRAIN.hc-sc.gc.ca
webprod4.hc-sc.gc.ca
*.hc-sc.gc.ca
aero-oitc.phac-aspc.gc.ca
app80.hc-sc.gc.ca
ers-auth-ser.hc-sc.gc.ca
keycloak.hc-sc.gc.ca
lap-dmz-p01.hc-sc.gc.ca
lap-dmz-p01.hc-sc.gc.ca
www.reclassification.hc-sc.gc.ca
sad-pth-qaap1.hc-sc.gc.ca
*.preprod.hc-sc.gc.ca
sad-pth-catap1.hc-sc.gc.ca
gateway-passerelle.uat.hc-sc.gc.ca
nnhpd-pla-dlmm-dpsnso.hc-sc.gc.ca
biosecurity-portal.hc-sc.gc.ca
pub-tom-mono.hc-sc.gc.ca
ocs-bsc.hc-sc.gc.ca
mobile.hc-sc.gc.ca
aids.gc.ca
h2o.hc-sc.gc.ca
www.CNF-CFG-classification-FCEN-GAC.hc-sc.gc.ca
dstsia-sspdai.hc-sc.gc.ca
CTXADC-HC-MCDC.HC-SC.GC.CA
collaboration.hc-sc.gc.ca
SAD-TEM-DV1.tqa.hc-sc.gc.ca
sgpp-dt.hc-sc.gc.ca
inotes.hc-sc.gc.ca
trn-csims-sgici.hc-sc.gc.ca
hc5ecc6.hc-sc.gc.ca
dev.mg-dsol.mapgears.com
fnihis-sispni.hc-sc.gc.ca
biosecurity-portal.hc-sc.gc.ca
uvupdatertest.hc-sc.gc.ca
ers-test-ser.hc-sc.gc.ca
www.CNF-CFG-classification-FCEN-GAC.hc-sc.gc.ca
sec2.hc-sc.gc.ca
HCONK1VWVDCP005.ad.hc-sc.gc.ca
tem01.hc-sc.gc.ca
dev.mg-dsol.mapgears.com
utils-test.hc-sc.gc.ca
lap-dmz-p01.hc-sc.gc.ca
WAS7-SEXT-IHS.hc-sc.gc.ca
pr-rdb.hc-sc.gc.ca
www.reclassification.hc-sc.gc.ca
mfcsg01.hc-sc.gc.ca
ers-auth-ser-lb.hc-sc.gc.ca
sinpappsas-02.hc-sc.gc.ca
nihb-mb-faxfinder.hc-sc.gc.ca
cvp-pcv.hc-sc.gc.ca
int-services2.dev.hc-sc.gc.ca
DSTSIA-SSPDAI.hc-sc.gc.ca
www.fptgn-gnfpt.hc-sc.gc.ca
github.hc-sc.gc.ca
portaildgpsa.hc-sc.gc.ca
weboffice.hc-sc.gc.ca
sec2.hc-sc.gc.ca
HCQCK1AWVDCT001.tqa.hc-sc.gc.ca
ers-ser.hc-sc.gc.ca
HCQCK1AwvAST063.hc-sc.gc.ca
*.uat.hc-sc.gc.ca
ers-auth-ser-lb.hc-sc.gc.ca
h2o.hc-sc.gc.ca
biosecurity-portal.hc-sc.gc.ca
cgnw-01.hc-sc.gc.ca
sdx-edp.hc-sc.gc.ca
wasext-prd-1.hc-sc.gc.ca
eprs-serp.hc-sc.gc.ca
hc4ecc6.hc-sc.gc.ca
hconk2ewvasp001.hc-sc.gc.ca
mtrs-sctrm.hc-sc.gc.ca
PTH-PROXY.hc-sc.gc.ca
HCONK1VWVDCP002.ad.hc-sc.gc.ca
istopxrm.hc-sc.gc.ca
utils-test.hc-sc.gc.ca
gateway-passerelle.preprod.hc-sc.gc.ca
nihb-atl-fax.hc-sc.gc.ca
int-services1.hc-sc.gc.ca
Inotes.hc-sc.gc.ca
SAD-TEM-DV1.hc-sc.gc.ca
HCONK1AwvAST058.hc-sc.gc.ca
int-services3.dev.hc-sc.gc.ca
eprs-serp.hc-sc.gc.ca
sad-pt2-devap1.hc-sc.gc.ca
cloud-vpn.hc-sc.gc.ca
www.mtrs-sctrm.hc-sc.gc.ca
international-health-commitments.canada.ca
training.mtrs-sctrm.hc-sc.gc.ca
sap-cms.hc-sc.gc.ca
HCQCK1AWVDCT002.tqa.hc-sc.gc.ca
training.mtrs-sctrm.hc-sc.gc.ca
dev.mg-dsol.mapgears.com
cgnw-01.hc-sc.gc.ca
int-services1.preprod.hc-sc.gc.ca
sgpp-dt.hc-sc.gc.ca
ocs-bsc.hc-sc.gc.ca
int-services1.uat.hc-sc.gc.ca
sdx-edp.hc-sc.gc.ca
ctls-sscdl.hc-sc.gc.ca
PTH-PROXY-TRAIN.hc-sc.gc.ca
webprod4.hc-sc.gc.ca
*.hc-sc.gc.ca
aero-oitc.phac-aspc.gc.ca
app80.hc-sc.gc.ca
ers-auth-ser.hc-sc.gc.ca
keycloak.hc-sc.gc.ca
lap-dmz-p01.hc-sc.gc.ca
lap-dmz-p01.hc-sc.gc.ca
www.reclassification.hc-sc.gc.ca
sad-pth-qaap1.hc-sc.gc.ca
*.preprod.hc-sc.gc.ca
sad-pth-catap1.hc-sc.gc.ca
gateway-passerelle.uat.hc-sc.gc.ca
nnhpd-pla-dlmm-dpsnso.hc-sc.gc.ca
biosecurity-portal.hc-sc.gc.ca
pub-tom-mono.hc-sc.gc.ca
ocs-bsc.hc-sc.gc.ca
mobile.hc-sc.gc.ca
aids.gc.ca
h2o.hc-sc.gc.ca
www.CNF-CFG-classification-FCEN-GAC.hc-sc.gc.ca
dstsia-sspdai.hc-sc.gc.ca
CTXADC-HC-MCDC.HC-SC.GC.CA
collaboration.hc-sc.gc.ca
SAD-TEM-DV1.tqa.hc-sc.gc.ca
sgpp-dt.hc-sc.gc.ca
inotes.hc-sc.gc.ca
trn-csims-sgici.hc-sc.gc.ca
hc5ecc6.hc-sc.gc.ca
dev.mg-dsol.mapgears.com
fnihis-sispni.hc-sc.gc.ca
biosecurity-portal.hc-sc.gc.ca
uvupdatertest.hc-sc.gc.ca
ers-test-ser.hc-sc.gc.ca
www.CNF-CFG-classification-FCEN-GAC.hc-sc.gc.ca
sec2.hc-sc.gc.ca
HCONK1VWVDCP005.ad.hc-sc.gc.ca
tem01.hc-sc.gc.ca
dev.mg-dsol.mapgears.com
utils-test.hc-sc.gc.ca
lap-dmz-p01.hc-sc.gc.ca
WAS7-SEXT-IHS.hc-sc.gc.ca
pr-rdb.hc-sc.gc.ca
www.reclassification.hc-sc.gc.ca
mfcsg01.hc-sc.gc.ca
ers-auth-ser-lb.hc-sc.gc.ca
sinpappsas-02.hc-sc.gc.ca
nihb-mb-faxfinder.hc-sc.gc.ca
cvp-pcv.hc-sc.gc.ca
int-services2.dev.hc-sc.gc.ca
DSTSIA-SSPDAI.hc-sc.gc.ca
www.fptgn-gnfpt.hc-sc.gc.ca
github.hc-sc.gc.ca
portaildgpsa.hc-sc.gc.ca
weboffice.hc-sc.gc.ca
sec2.hc-sc.gc.ca
Certificate
The complete raw certificate details for PTH-PROXY.hc-sc.gc.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIQCSLFPzLKnxgAAAAAUOuj/TANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x ODEyMzExNTM0MzhaFw0yMTAzMzAxNjA0MzdaMH8xCzAJBgNVBAYTAkNBMRAwDgYD VQQIEwdPbnRhcmlvMQ8wDQYDVQQHEwZPdHRhd2ExLTArBgNVBAoTJEhlYWx0aCBD YW5hZGEgKERlcGFydG1lbnQgb2YgSGVhbHRoKTEeMBwGA1UEAxMVUFRILVBST1hZ LmhjLXNjLmdjLmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAva/Z IyELbcriuL9mC+vXIVGVx9+e4bzyEx/VT9YkVhVPT5CVy3CdVaSH9c/aSBBQonyt 79Vwaw0WjHKw5DN3FUUOVSGb2egjlcgC6KYYch4vOJfHyTBeEcP0xpS0O+Y3m+6L Pg7ao4vG8LjqWV/zGanGxiOMFr6fjUypiUbJWdRbjZ9G0Nb/YNtDXEyTQZ7iHlWd z8KBey6Xtxh+WNpvHbQK1HZNqNrr+/iVfCBMC62AgcTxES+0jQPz+EI8KiAlcAtS SmQyDwvM946tU9AfflvG6vvvyL2gFbqlCjncLZ7py9IkHUn7ZuP0bo8T037CbxdF JD+dQQ2MRwVq4B9kyQIDAQABo4IBszCCAa8wEwYKKwYBBAHWeQIEAwEB/wQCBQAw MgYDVR0RBCswKYIVUFRILVBST1hZLmhjLXNjLmdjLmNhghBraW5hLmhjLXNjLmdj LmNhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwMwYDVR0fBCwwKjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZl bDFrLmNybDBLBgNVHSAERDBCMDYGCmCGSAGG+mwKAQUwKDAmBggrBgEFBQcCARYa aHR0cDovL3d3dy5lbnRydXN0Lm5ldC9ycGEwCAYGZ4EMAQICMGgGCCsGAQUFBwEB BFwwWjAjBggrBgEFBQcwAYYXaHR0cDovL29jc3AuZW50cnVzdC5uZXQwMwYIKwYB BQUHMAKGJ2h0dHA6Ly9haWEuZW50cnVzdC5uZXQvbDFrLWNoYWluMjU2LmNlcjAf BgNVHSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzAdBgNVHQ4EFgQUaAskyTq/ jpalleOljKxnrDQPThIwCQYDVR0TBAIwADANBgkqhkiG9w0BAQsFAAOCAQEATVvX 04Lf5HYzx9aqwxwI0W8HrjYmNhzbAWZyj1y/YhQ0GPbsLsGj7dPWl80sK0jCU06x guPmKFrmxUuexuDcMlwlZnCRwLxbuAOXsUMkIdytJdMq2hS/Xu0KVCVphlkeNiV8 3BkdCCht0ZGAN09oErDOj0WTgnoVHaFqe0dxB7l9VV14+segmbpr5lUwNbEh1z00 mKW98uKgVUP3+49axePGmx5X/dhQIsw7CJlgcaKBzSOelncecETdQJ9MF+S0Ovzt okPdeP9gqhR1sy0GJC73TxpPYHBWL1n5RCePtG2s881An6nsJ2RIgmG4PmsykXN1 P79oMuCdng0H4MSJyw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAva/ZIyELbcriuL9mC+vX IVGVx9+e4bzyEx/VT9YkVhVPT5CVy3CdVaSH9c/aSBBQonyt79Vwaw0WjHKw5DN3 FUUOVSGb2egjlcgC6KYYch4vOJfHyTBeEcP0xpS0O+Y3m+6LPg7ao4vG8LjqWV/z GanGxiOMFr6fjUypiUbJWdRbjZ9G0Nb/YNtDXEyTQZ7iHlWdz8KBey6Xtxh+WNpv HbQK1HZNqNrr+/iVfCBMC62AgcTxES+0jQPz+EI8KiAlcAtSSmQyDwvM946tU9Af flvG6vvvyL2gFbqlCjncLZ7py9IkHUn7ZuP0bo8T037CbxdFJD+dQQ2MRwVq4B9k yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12143590697039789578853128992994337789 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-31 15:34:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-30 16:04:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ottawa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Health Canada (Department of Health)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PTH-PROXY.hc-sc.gc.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23945753614071107965834814575161734416157055462588838037034311459755912818754469392618670274677275210271210626851298649347062628967562614701817365338838455919028367914181362501253484646340400516999080345972635929943799531044007635690234458653149290208750476405397301600761170480027090815141441015409333250347625439376381255790873562327930013547094462128917714833953909836541625830098130330761235051093311251538721314341218179797250241978570849409659125389889185506425794230149666474814290408774173720335763092975594692788596432378868609609696890388188010906683137236482064316268318328967344778372673954251906207409353 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'PTH-PROXY.hc-sc.gc.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kina.hc-sc.gc.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 680b24c93abf8e96a595e3a58cac67ac340f4e12 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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