*.uk.avon.com
- Avon Products Inc -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 03:fa:05:99:ce:94:f4:b4:eb:b8:11:e2:12:0e:d3:7a was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Avon Products Inc
Organization:
Avon Products Inc
State / Province:
New York
Locality: Suffern
Country: US
Locality: Suffern
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fa:05:99:ce:94:f4:b4:eb:b8:11:e2:12:0e:d3:7aSerial Number (int): 5285871799879326105960965205230801786
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 30:e8:80:10:9f:32:ec:65:36:02:9a:9d:34:89:44:43:6d:e9:07:92
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 1e:86:c9:dc:3d:e9:70:fd:f9:85:55:e5:4b:e6:73:ae:a8:9c:7e:3e
Fingerprint (sha256): 0c:aa:df:ec:33:35:f5:87:c5:95:00:74:0d:92:38:0b:16:e2:e5:80:e0:91:00:22:69:bd:ea:ca:f0:2d:18:f7
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate *.uk.avon.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.uk.avon.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.uk.avon.com
Other certificates including the domain name avon.com
(limited to 100 certificates)
ssl8.ipaper.io
ssl9.ipaper.io
ssl8.icommarketing.com
ssl9.ipaper.io
www.avon.my
qaf.link.avon.com
ecom.youravon.com
*.uk.avon.com
leadsservicesru.avon.com
ecom.youravon.com
z3-b45c.kxcdn.com
dev.ve.avon.com
on.avon.com
ryestgw.na.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
autodiscover.domino.avonfoundation.org
ssl8.ipaper.io
mobileapi.avon.com
qafmab.bg.avon.com
emear-lpa.avon.com
avon.com
connectshg.avon.com
connectar.avon.com
gabi03.com
uatssmab.ar.avon.com
ssl8.icommarketing.com
webeservicesru.avon.com
ssl8.icommarketing.com
ecom4.pr.avon.com
uatmab.static.co.avon.com
www.kr.avon.com
ssl9.ipaper.io
ssl8.icommarketing.com
uatmab.co.avon.com
static1.br.avon.com
qaf.eenew.avon.com
avon.kz
core-order-eu-dev.api-dev.aws.avon.com
qafmab.static.co.avon.com
ssl8.icommarketing.com
view.email.usa.avon.com
ssl8.icommarketing.com
www.avon.com.mx
ssl8.icommarketing.com
www.sa.avon.com
eem.co.avon.com
qaf.eenew.avon.com
dev.sv.avon.com
static1.br.avon.com
*.uk.avon.com
www.uy.avon.com
qaf.jtnew.avon.com
connectuk.avon.com
www.my.avon.com
dev.ec.avon.com
drmsp.cn.avon.com
simulator.avon.com
ssl9.ipaper.io
uatmab.static.ro.avon.com
choiceservicesqaf.avon.com
www.tr.avon.com
qafss.ar.avon.com
shop.avon.com
connectsuffern.avon.com
qaf.lvnew.avon.com
uat.mobilecms.avon.com
ssl8.ipaper.io
dev.pe.avon.com
avonaccess.na.avon.com
qap.mx.avon.com
www.al.avon.com
www.ni.avon.com
www.uy.avon.com
br.avon.com
www.sv.avon.com
www.tw.avon.com
br.avon.com
choiceservices-ru.avon.com
*.arpdev.avon.com
eem.br.avon.com
drupal.avon.com.ar
imshare.avon.com
static1.br.avon.com
*.ro.avon.com
dev.pa.avon.com
ssl9.ipaper.io
catalog.avonnow.com
link.customer.avon.com
author.pl.avon.com
ecom4.pr.avon.com
www.avon2win.avon.com.pt
qafmab.co.avon.com
newsin.bullets.app
*.hu.avon.com
dev.gt.avon.com
link.customer.avon.com
avononline.pl.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
ssl9.ipaper.io
www.avon.my
qaf.link.avon.com
ecom.youravon.com
*.uk.avon.com
leadsservicesru.avon.com
ecom.youravon.com
z3-b45c.kxcdn.com
dev.ve.avon.com
on.avon.com
ryestgw.na.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
autodiscover.domino.avonfoundation.org
ssl8.ipaper.io
mobileapi.avon.com
qafmab.bg.avon.com
emear-lpa.avon.com
avon.com
connectshg.avon.com
connectar.avon.com
gabi03.com
uatssmab.ar.avon.com
ssl8.icommarketing.com
webeservicesru.avon.com
ssl8.icommarketing.com
ecom4.pr.avon.com
uatmab.static.co.avon.com
www.kr.avon.com
ssl9.ipaper.io
ssl8.icommarketing.com
uatmab.co.avon.com
static1.br.avon.com
qaf.eenew.avon.com
avon.kz
core-order-eu-dev.api-dev.aws.avon.com
qafmab.static.co.avon.com
ssl8.icommarketing.com
view.email.usa.avon.com
ssl8.icommarketing.com
www.avon.com.mx
ssl8.icommarketing.com
www.sa.avon.com
eem.co.avon.com
qaf.eenew.avon.com
dev.sv.avon.com
static1.br.avon.com
*.uk.avon.com
www.uy.avon.com
qaf.jtnew.avon.com
connectuk.avon.com
www.my.avon.com
dev.ec.avon.com
drmsp.cn.avon.com
simulator.avon.com
ssl9.ipaper.io
uatmab.static.ro.avon.com
choiceservicesqaf.avon.com
www.tr.avon.com
qafss.ar.avon.com
shop.avon.com
connectsuffern.avon.com
qaf.lvnew.avon.com
uat.mobilecms.avon.com
ssl8.ipaper.io
dev.pe.avon.com
avonaccess.na.avon.com
qap.mx.avon.com
www.al.avon.com
www.ni.avon.com
www.uy.avon.com
br.avon.com
www.sv.avon.com
www.tw.avon.com
br.avon.com
choiceservices-ru.avon.com
*.arpdev.avon.com
eem.br.avon.com
drupal.avon.com.ar
imshare.avon.com
static1.br.avon.com
*.ro.avon.com
dev.pa.avon.com
ssl9.ipaper.io
catalog.avonnow.com
link.customer.avon.com
author.pl.avon.com
ecom4.pr.avon.com
www.avon2win.avon.com.pt
qafmab.co.avon.com
newsin.bullets.app
*.hu.avon.com
dev.gt.avon.com
link.customer.avon.com
avononline.pl.avon.com
autodiscover.domino.avonfoundation.org
Certificate
The complete raw certificate details for *.uk.avon.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGrjCCBZagAwIBAgIQA/oFmc6U9LTruBHiEg7TejANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMjEyMjAwMDAwMDBa Fw0yMzEyMTkyMzU5NTlaMGYxCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhOZXcgWW9y azEQMA4GA1UEBxMHU3VmZmVybjEaMBgGA1UEChMRQXZvbiBQcm9kdWN0cyBJbmMx FjAUBgNVBAMMDSoudWsuYXZvbi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDSSbjuj3w1ze8+LxPNYqXW5ILa0GFshnWtapzxOry4XZDWZTeY9tLL xEjPfXmKBzM7jAaZ3V0OkgAbvhBecVYEWIRewpF0jbIsi/vZBnpFAcdlHd8ttZ4t kNNahBqUVhVOmyQ6ZeG/d8nuNYCF/Oam0h2lEqZ2E+QADyCKJ9hU7gPUkgj6bupn JAVWt/4wWWdlNYZf5ptNcQB33/B8uait/BC/nzXJGeIydyD87wT+bYVMs6vpjNoO JDeCKcRRMPZfAfVz0dpc/C9n0yeCkqzd9q4l2ZFqSVMwnLalaDUT3xb5gcNPD99D gCMCeJbnwZSgstdqroO9gsZGRDag81VXAgMBAAGjggNtMIIDaTAfBgNVHSMEGDAW gBS3a6LqqKqEjHnqtNoPmLLFlXa59DAdBgNVHQ4EFgQUMOiAEJ8y7GU2ApqdNIlE Q23pB5IwGAYDVR0RBBEwD4INKi51ay5hdm9uLmNvbTAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGPBgNVHR8EgYcwgYQwQKA+ oDyGOmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFRMU1JTQVNIQTI1 NjIwMjBDQTEtNC5jcmwwQKA+oDyGOmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9E aWdpQ2VydFRMU1JTQVNIQTI1NjIwMjBDQTEtNC5jcmwwPgYDVR0gBDcwNTAzBgZn gQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BT MH8GCCsGAQUFBwEBBHMwcTAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNl cnQuY29tMEkGCCsGAQUFBzAChj1odHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20v RGlnaUNlcnRUTFNSU0FTSEEyNTYyMDIwQ0ExLTEuY3J0MAkGA1UdEwQCMAAwggF+ BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AK33vvp8/xDIi509nB4+GGq0Zyldz7EM JMqFhjTr3IKKAAABhS6j3xYAAAQDAEcwRQIhAMTa8hc59MSmJnvp1UNmM0ex8Kxw iiHLQiih9jkuAyWvAiAO9c+I8hs6zacHdxRYwlK3Q6dFbLGChmCtYUhBZaugyAB2 ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAABhS6j32oAAAQDAEcw RQIhAKT1nQpDl/Ygf0O3hVoFL0Yc+RlyPtKzdP/R37ozUOBJAiA8J1TNN373EAqa ZdtBtko9d+tbO/yNeJZ9F10FLRjWlQB2ALc++yTfnE26dfI5xbpY9Gxd/ELPep81 xJ4dCYEl7bSZAAABhS6j3yUAAAQDAEcwRQIgSjp5rxBA1uUyJeIN7wEtKClKMawD fa4UNGOdzIWEj40CIQDFYB5LduqeiJ2V+n04npDHpuMJzaXZhOgfAMdJrHZXdzAN BgkqhkiG9w0BAQsFAAOCAQEAm3auinKd0FSn0qIcw9K60T24MMBggqRDgx/sS53Q BI5s1n5zzRzbjLaETV1KWVK0XfOo64nufWSB2b+XhOYSKQslc6EPF7WTf0gNJSX8 +IdvOf/WTSrFmd4devO9+n1ZjaPkyZ7d0H0bXbj6e/6G/dcNzYGDI9HsLlWJpGC/ mmhJX59wGz4gpVjTlRTjPlU4IBG3StPauiyZNpKY4NxLPXirFBL64doiVS+V/vZp v4Xo5nnVVsZUniWhIcK/NUv+TOyGuZ1Ej1qo0awYlERUDjPKMjZvbATYSYwv9eTN 5kzcU79hBS9O6kPiglab4auqZtpXjuKsInHqEgQgDtPtbw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0km47o98Nc3vPi8TzWKl 1uSC2tBhbIZ1rWqc8Tq8uF2Q1mU3mPbSy8RIz315igczO4wGmd1dDpIAG74QXnFW BFiEXsKRdI2yLIv72QZ6RQHHZR3fLbWeLZDTWoQalFYVTpskOmXhv3fJ7jWAhfzm ptIdpRKmdhPkAA8giifYVO4D1JII+m7qZyQFVrf+MFlnZTWGX+abTXEAd9/wfLmo rfwQv581yRniMncg/O8E/m2FTLOr6YzaDiQ3ginEUTD2XwH1c9HaXPwvZ9MngpKs 3fauJdmRaklTMJy2pWg1E98W+YHDTw/fQ4AjAniW58GUoLLXaq6DvYLGRkQ2oPNV VwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5285871799879326105960965205230801786 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Suffern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Avon Products Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.uk.avon.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26546397908379528946465422504823003283414916909441932510306148207258444560381201920970511735652471335991696667423157935909289439363684504089382447330904719128120798567307887529693999574686827840493126925717073237304125565626392160776987833743484867216698393536159372268244719461443076095805770096794138080112065808622264919015835544110864152859791498653948946682554020446919272147406950631584468773185695669511116460057427072604698835570184407668747115219809495383701225080523629874918744935247098560902209280522691355117482151643641811977858681713243472309756941060927168706957542472104694131858701028328267691808087 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 30e880109f32ec6536029a9d348944436de90792 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.uk.avon.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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