mail.nycboe.net
- New York City Department of Education -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 03:9a:98:23:f7:f5:14:e9:e9:d2:70:ec:ad:4c:df:09 was issued on by DigiCert Inc.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
New York City Department of Education
Organization:
New York City Department of Education
Organization unit: DIIT
Organization unit: DIIT
State / Province:
New York
Locality: Brooklyn
Country: US
Locality: Brooklyn
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9a:98:23:f7:f5:14:e9:e9:d2:70:ec:ad:4c:df:09Serial Number (int): 4790383479553637140608869379596934921
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 6e:ca:de:ee:d7:c9:fc:21:86:05:28:fe:e0:39:78:04:10:ac:4a:26
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): f8:6a:41:0c:1e:16:8b:98:65:c0:b9:45:50:99:11:c2:0d:2b:a9:ed
Fingerprint (sha256): 0b:d4:18:eb:7a:8b:fa:b1:97:7f:ff:70:4e:14:20:66:c5:d4:ab:28:19:66:75:8f:7d:93:6d:eb:df:11:ca:d4
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate mail.nycboe.net
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mail.nycboe.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mail.nycboe.net
exchange.schools.nyc.gov
smtp.schools.nyc.gov
autodiscover.bers.nyc.gov
outlook.schools.nyc.gov
mobile.nycboe.net
autodiscover.schools.nyc.gov
owa2003.nycboe.net
exchange.nycboe.net
smtp.nycboe.net
mail.schools.nyc.gov
outlook.nycboe.net
exchange.schools.nyc.gov
smtp.schools.nyc.gov
autodiscover.bers.nyc.gov
outlook.schools.nyc.gov
mobile.nycboe.net
autodiscover.schools.nyc.gov
owa2003.nycboe.net
exchange.nycboe.net
smtp.nycboe.net
mail.schools.nyc.gov
outlook.nycboe.net
Other certificates including the domain name nycboe.net
(limited to 100 certificates)
mail.nycboe.net
payrollportal.nycboe.net
payrollportal.nycboe.net
mail.nycboe.net
directory.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
learn-uat.nycboe.net
ihs.nycboe.net
ats2.nycboe.net
mail.nycboe.net
payrollportal.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
maps.nycboe.net
mail.nycboe.net
ats2.nycboe.net
payrollportal.nycboe.net
mail.nycboe.net
*.nycboe.net
ats2.nycboe.net
ihs.nycboe.net
mail.nycboe.net
*.nycboe.net
*.nycboe.net
*.nycboe.net
ats2.nycboe.net
ats2.nycboe.net
ats2.nycboe.net
learn-uat.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
sip.schools.nyc.gov
mail.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
mail.nycboe.net
mail.nycboe.net
payrollportal.nycboe.net
payrollportal.nycboe.net
mail.nycboe.net
directory.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
learn-uat.nycboe.net
ihs.nycboe.net
ats2.nycboe.net
mail.nycboe.net
payrollportal.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
maps.nycboe.net
mail.nycboe.net
ats2.nycboe.net
payrollportal.nycboe.net
mail.nycboe.net
*.nycboe.net
ats2.nycboe.net
ihs.nycboe.net
mail.nycboe.net
*.nycboe.net
*.nycboe.net
*.nycboe.net
ats2.nycboe.net
ats2.nycboe.net
ats2.nycboe.net
learn-uat.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
sip.schools.nyc.gov
mail.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
mail.nycboe.net
mail.nycboe.net
Certificate
The complete raw certificate details for mail.nycboe.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHQjCCBiqgAwIBAgIQA5qYI/f1FOnp0nDsrUzfCTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwOTE0MDAwMDAwWhcN MTkwOTI2MTIwMDAwWjCBjDELMAkGA1UEBhMCVVMxETAPBgNVBAgTCE5ldyBZb3Jr MREwDwYDVQQHEwhCcm9va2x5bjEuMCwGA1UEChMlTmV3IFlvcmsgQ2l0eSBEZXBh cnRtZW50IG9mIEVkdWNhdGlvbjENMAsGA1UECxMERElJVDEYMBYGA1UEAxMPbWFp bC5ueWNib2UubmV0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnPG F9PPdZTkFwYogAcbRzSBcrVq95uihfEawLnrV7wTqFVa29pVxIOiDbPpkkPlmkvO Ppz4R7HrvWybNwTML3obwEcB+bAdEV70ZXjWVPZ8V68ul5Dvfw5SRMKpDVG+wqhH VEr1u3Yyg8Gnjh0+Bq1HiDepizhYB+zkDWPvCnTkcpZK1+fOFiFSBA+weJNVcoCb tk0TB6jVpL2uiMuhy7EmcBt2y7KpKhCsghBA7Q9cz0ZtTset6Zs0HH74uUvBxAHl uax2KZT9mg55lm1ieKrmZX1GrLqQ68TaoEn/y0vRy0Z0/1fZaF5PfybZLJXkrXRy nZXh5PojVrg7oeJWNwIDAQABo4ID3DCCA9gwHwYDVR0jBBgwFoAUD4BhHIIxYdUv KOeNRji0LOHG2eIwHQYDVR0OBBYEFG7K3u7XyfwhhgUo/uA5eAQQrEomMIIBFwYD VR0RBIIBDjCCAQqCD21haWwubnljYm9lLm5ldIIYZXhjaGFuZ2Uuc2Nob29scy5u eWMuZ292ghRzbXRwLnNjaG9vbHMubnljLmdvdoIZYXV0b2Rpc2NvdmVyLmJlcnMu bnljLmdvdoIXb3V0bG9vay5zY2hvb2xzLm55Yy5nb3aCEW1vYmlsZS5ueWNib2Uu bmV0ghxhdXRvZGlzY292ZXIuc2Nob29scy5ueWMuZ292ghJvd2EyMDAzLm55Y2Jv ZS5uZXSCE2V4Y2hhbmdlLm55Y2JvZS5uZXSCD3NtdHAubnljYm9lLm5ldIIUbWFp bC5zY2hvb2xzLm55Yy5nb3aCEm91dGxvb2subnljYm9lLm5ldDAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGsGA1UdHwRkMGIw L6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3Js MC+gLaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc2LmNy bDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczov L3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB8BggrBgEFBQcBAQRwMG4w JAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBGBggrBgEFBQcw AoY6aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMlNlY3Vy ZVNlcnZlckNBLmNydDAMBgNVHRMBAf8EAjAAMIIBAwYKKwYBBAHWeQIEAgSB9ASB 8QDvAHUApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFl2MEVawAA BAMARjBEAiBt20JMLA4CqBE77X0b30F/Z76uwfxwuGzh0K9teu+XtAIgH6CzvNvi ILlMj6YVEIwd7Eddvljcj7w+sJemGEI2kbUAdgCHdb/nWXz4jEOZX73zbv9WjUdW Nv9KtWDBtOr/XqCDDwAAAWXYwRZJAAAEAwBHMEUCIAw6Rj144cmFPrwQ7IO2XHsG qojIx039ilJf9/Kr5fBCAiEAgIKx3kbTw1usdeFfvuxOimO7C5bJi/7ji5qLZUr9 rncwDQYJKoZIhvcNAQELBQADggEBADtMwqgV6CuMb6ZknI6LKOoc2R6dsIME4Lll aIbmZfmfKGqBMtHh9wPwkDtZeuN1dXtfB8tBwLFryLcAccDI8Tfsk1oKt/l9BJBV 2Im5uyT2IQC0dUKT7xQm9G4zDi12sfZa1BYw+UuDquHNUIsf9IDVupHZcAe6LcE4 wwBoMX/Y2+8Or6BKMXKttFwPEGm1WkrzkBFeWprqL//Fc7pBy5zXcNM8wbnsa2u5 iPm/55yioauqPLdkCN5MMqOSN5NqG5v65Wq9mT3JC1jmBC4qn2eDwat87ghr/yBs OqqKfcqu/NOBmIFU82aEqrBN2Ke91OPFV+L7CIPQpYgRR5fMEjI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnPGF9PPdZTkFwYogAcb RzSBcrVq95uihfEawLnrV7wTqFVa29pVxIOiDbPpkkPlmkvOPpz4R7HrvWybNwTM L3obwEcB+bAdEV70ZXjWVPZ8V68ul5Dvfw5SRMKpDVG+wqhHVEr1u3Yyg8Gnjh0+ Bq1HiDepizhYB+zkDWPvCnTkcpZK1+fOFiFSBA+weJNVcoCbtk0TB6jVpL2uiMuh y7EmcBt2y7KpKhCsghBA7Q9cz0ZtTset6Zs0HH74uUvBxAHluax2KZT9mg55lm1i eKrmZX1GrLqQ68TaoEn/y0vRy0Z0/1fZaF5PfybZLJXkrXRynZXh5PojVrg7oeJW NwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4790383479553637140608869379596934921 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-26 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Brooklyn' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York City Department of Education' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DIIT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mail.nycboe.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25052274572371177881171943961158624959323505419517536809108281496690890687359940757260138769682360575753126756141255249043402027980284723130952568223679763724524208074094527707209670552278356736087181714068729081132908817778881267660198074395034843598842435286652423397792877196588757245723844962739949899873666678585940494650312570231261087294078390338165294916582450026452608749797606824997697171923077513567066867724641758611901189688914877733402346594375641746154843216259352211365973193499479945214746147903159946838671952738427784542874637726676969352307566325178582926214031805413642029286805034655830203586103 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6ecadeeed7c9fc21860528fee039780410ac4a26 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (270 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.nycboe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exchange.schools.nyc.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtp.schools.nyc.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.bers.nyc.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'outlook.schools.nyc.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobile.nycboe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.schools.nyc.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'owa2003.nycboe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exchange.nycboe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtp.nycboe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.schools.nyc.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'outlook.nycboe.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000165d8c1156b000004030046304402206ddb424c2c0e02a8113bed7d1bdf417f67beaec1fc70b86ce1d0af6d7aef97b402201fa0b3bcdbe220b94c8fa615108c1dec475dbe58dc8fbc3eb097a618423691b50076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000165d8c11649000004030047304502200c3a463d78e1c9853ebc10ec83b65c7b06aa88c8c74dfd8a525ff7f2abe5f0420221008082b1de46d3c35bac75e15fbeec4e8a63bb0b96c98bfee38b9a8b654afdae77 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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