cornerstone.unco.edu
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 08:a9:c3:05:c4:c5:d0:42:85:5b:bb:fd:e4:36:14:de was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=cornerstone.unco.edu
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:a9:c3:05:c4:c5:d0:42:85:5b:bb:fd:e4:36:14:deSerial Number (int): 11515277662283441290277210141165491422
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 4b:05:00:f2:6a:3d:cf:9d:a0:89:dd:ad:66:7e:8e:ae:be:0d:c4:ed
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 82:aa:1d:85:b2:41:4c:1b:26:1b:ce:6f:db:ba:01:63:04:8d:0c:31
Fingerprint (sha256): 0d:ac:d0:2a:1e:cc:65:8c:49:f9:5f:72:2a:b8:fc:08:9d:6a:e3:5c:ff:68:da:8e:b8:15:17:b1:4a:17:ac:70
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate cornerstone.unco.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cornerstone.unco.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cornerstone.unco.edu
Other certificates including the domain name unco.edu
(limited to 100 certificates)
itic01.unco.edu
www.unco.edu
uncssbtest.unco.edu
bears.unco.edu
san-6-s10.tlsprovisioning.exacttarget.com
zoom.unco.edu
calendar.unco.edu
studyabroad.unco.edu
analytics.unco.edu
itjss01.unco.edu
libguides.unco.edu
www.unco.edu
webxtender.unco.edu
physics.unco.edu
canvascatalog.unco.edu
cas.unco.edu
libanswers.unco.edu
vpn.unco.edu
dwtest.unco.edu
degree.unco.edu
itef01.unco.edu
degree.unco.edu
digscholarship.unco.edu
edge-uc1.peopleadmin.com
libanswers.unco.edu
give.unco.edu
adfs.unco.edu
cluster.technolutions.net
hss.unco.edu
encore.unco.edu
ursa.unco.edu
rentals.unco.edu
uncssb1.unco.edu
cornerstone.unco.edu
studenthousing.unco.edu
rentals.unco.edu
san-6-s10.tlsprovisioning.exacttarget.com
owa.unco.edu
sfr.unco.edu
digarch.unco.edu
cluster.technolutions.net
remotepc.unco.edu
libguides.unco.edu
share.unco.edu
www.unco.edu
gobears.unco.edu
digarch.unco.edu
digscholarship.unco.edu
barracuda.unco.edu
owa.unco.edu
remotepc.unco.edu
listserv.unco.edu
apply.unco.edu
isss.unco.edu
share.unco.edu
jss.unco.edu
itcewe01.unco.edu
libguides.unco.edu
uncssb9qa.unco.edu
degree.unco.edu
edge-uc1.peopleadmin.com
owa.unco.edu
remote2.unco.edu
give.unco.edu
rentals.unco.edu
mobile-test.unco.edu
www.unco.edu
rentals.unco.edu
san-6-s10.tlsprovisioning.exacttarget.com
edge-uc1.peopleadmin.com
search.unco.edu
itbtinb05.unco.edu
nhsrca01.unco.edu
mathit.unco.edu
digscholarship.unco.edu
share.unco.edu
mathit.unco.edu
learn.unco.edu
testp4p.unco.edu
unc-wireless.unco.edu
unc-guest.unco.edu
libanswers.unco.edu
housing.unco.edu
barracuda.unco.edu
www.arts.unco.edu
remote1.unco.edu
apply.unco.edu
digscholarship.unco.edu
admissions.unco.edu
admissions.unco.edu
remote2.unco.edu
apps.unco.edu
testapps.unco.edu
aw.unco.edu
uncssb9.unco.edu
degree.unco.edu
san-6-s10.tlsprovisioning.exacttarget.com
mast.unco.edu
admissions.unco.edu
www.unco.edu
uncssbtest.unco.edu
bears.unco.edu
san-6-s10.tlsprovisioning.exacttarget.com
zoom.unco.edu
calendar.unco.edu
studyabroad.unco.edu
analytics.unco.edu
itjss01.unco.edu
libguides.unco.edu
www.unco.edu
webxtender.unco.edu
physics.unco.edu
canvascatalog.unco.edu
cas.unco.edu
libanswers.unco.edu
vpn.unco.edu
dwtest.unco.edu
degree.unco.edu
itef01.unco.edu
degree.unco.edu
digscholarship.unco.edu
edge-uc1.peopleadmin.com
libanswers.unco.edu
give.unco.edu
adfs.unco.edu
cluster.technolutions.net
hss.unco.edu
encore.unco.edu
ursa.unco.edu
rentals.unco.edu
uncssb1.unco.edu
cornerstone.unco.edu
studenthousing.unco.edu
rentals.unco.edu
san-6-s10.tlsprovisioning.exacttarget.com
owa.unco.edu
sfr.unco.edu
digarch.unco.edu
cluster.technolutions.net
remotepc.unco.edu
libguides.unco.edu
share.unco.edu
www.unco.edu
gobears.unco.edu
digarch.unco.edu
digscholarship.unco.edu
barracuda.unco.edu
owa.unco.edu
remotepc.unco.edu
listserv.unco.edu
apply.unco.edu
isss.unco.edu
share.unco.edu
jss.unco.edu
itcewe01.unco.edu
libguides.unco.edu
uncssb9qa.unco.edu
degree.unco.edu
edge-uc1.peopleadmin.com
owa.unco.edu
remote2.unco.edu
give.unco.edu
rentals.unco.edu
mobile-test.unco.edu
www.unco.edu
rentals.unco.edu
san-6-s10.tlsprovisioning.exacttarget.com
edge-uc1.peopleadmin.com
search.unco.edu
itbtinb05.unco.edu
nhsrca01.unco.edu
mathit.unco.edu
digscholarship.unco.edu
share.unco.edu
mathit.unco.edu
learn.unco.edu
testp4p.unco.edu
unc-wireless.unco.edu
unc-guest.unco.edu
libanswers.unco.edu
housing.unco.edu
barracuda.unco.edu
www.arts.unco.edu
remote1.unco.edu
apply.unco.edu
digscholarship.unco.edu
admissions.unco.edu
admissions.unco.edu
remote2.unco.edu
apps.unco.edu
testapps.unco.edu
aw.unco.edu
uncssb9.unco.edu
degree.unco.edu
san-6-s10.tlsprovisioning.exacttarget.com
mast.unco.edu
admissions.unco.edu
Certificate
The complete raw certificate details for cornerstone.unco.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHmTCCBYGgAwIBAgIQCKnDBcTF0EKFW7v95DYU3jANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMxMDExMDAwMDAwWhcNMjQwNDExMjM1OTU5WjAfMR0wGwYDVQQDExRjb3JuZXJz dG9uZS51bmNvLmVkdTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANdK wN3t1dx/njZsTc4FdagTJnqNOuTIZJXNohZ+dW9Z4kAT5OFV9JZJj7IDgz8apogs NgYsui2uGfeS7095DnDupq5um0WfjU4JfOZwIzlx6NoD5FXOIWxjz2QuH7ELKLQN DatuEFQ8cTLAT1s2z4/fLN6C4y/jG0G8Fc+f7evjcJlxylKE+xTZhKYCzf19LXL6 bW88J/BbvXuA/nhdHRumgk7VeH+BC3Ss1zXh2QUepD6CZ8AW/BXpdyurOkh24MzT BvPxChAm0obIcnbYhbsI4W31MNasSdHNeTvfrSAxy2t4YgElimiO7qPszIi4LyCq Yz8qoyLOiXpBj+ivrPkCAwEAAaOCA5IwggOOMB8GA1UdIwQYMBaAFKW01us2xOdr pt/EZAsBKiAEuGYjMB0GA1UdDgQWBBRLBQDyaj3PnaCJ3a1mfo6uvg3E7TAfBgNV HREEGDAWghRjb3JuZXJzdG9uZS51bmNvLmVkdTA+BgNVHSAENzA1MDMGBmeBDAEC ATApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBnwYD VR0fBIGXMIGUMEigRqBEhkJodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vR2VvVHJ1 c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNBMS5jcmwwSKBGoESGQmh0dHA6 Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEy NTYyMDIyQ0ExLmNybDCBhwYIKwYBBQUHAQEEezB5MCQGCCsGAQUFBzABhhhodHRw Oi8vb2NzcC5kaWdpY2VydC5jb20wUQYIKwYBBQUHMAKGRWh0dHA6Ly9jYWNlcnRz LmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIy Q0ExLmNydDAMBgNVHRMBAf8EAjAAMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoA dgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYsdfDgMAAAEAwBH MEUCIGqjo2IjNzRs/yLCoaDb98zDKIPv6sDsMdrOqKrohYl3AiEAjf73/kYvVTSm nhSZAEAQGST1yBMoQk0BvsBbbcDjjT4AdwBIsONr2qZHNA/lagL6nTDrHFIBy1bd LIHZu7+rOdiEcwAAAYsdfDgwAAAEAwBIMEYCIQD9MHkfNvHesYSB2TwkqOoBN1/B sGFureaL8V9IZaL8FAIhAKjDS8A9f5LALGpfcHrGyz//pCQqvjCGDkQt1YqQchrl AHcA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGLHXw4GQAABAMA SDBGAiEA/lbSCbQUNTGLQE/O0XJZJcMiLxhAkoJWMOFSmQ36Y9wCIQDYci8ZVqgY XZ7viUBSGLnixFLK0iq9LEJ2kZyaVOsFxjANBgkqhkiG9w0BAQsFAAOCAgEAJ3F3 M5R7XsI3ft+nzwqOIiZFAvbGKk2PjNNm7JwMTFC8riYhhUMdvBCm2ETnVUpftC+r uRoFrYU9uMLvMxZzzx5n0rGJWvFE8wPVB83gPlVqTJob+eCq/tqIWBECVlUTMUMM z8zssriDIHCNuTHq6AHoJyeIy67f+xIhdkzDFanvsApEtivYsIkFywkp3g+Bx+Gb jIkptGEGI+5l9A7wBrJdbBN1O73yqDm1XKVtJ4OVhzTzvFQixGrv2d0OORq2NnQE BtSiTSVVIqFCp8gsrxNIGudgVC1qa9jK3iOPYMjAvDX/vuGCzD/AcghF8wxCLlMz 5IwBgP+6Mx+eWUAFSp7AufVNtAym7yS6SXXGBpGh7nCUA57+HtS7kRKLU9ph5S6k LN5J0EO4bu4eb8ktJ2Q8tZ7bXJyB2Ay1vn5KSyAhUK9Era0SA1p0pFEbOBrbQ9R5 VLJ8gPmKGiWAIcH0SWekzvditB5FBJNJ2tE/WKwWsBhwSFmB7fjq1FOSeUH4eS4J fXt6SGGa1oZ1T2DvInsGIcwBg05/md03Yx6/YCXQU2fcyygpvRP52wqCQSxQv9+n XbLn+i5mC0qXBy8MzR+EPgGTgCiSE8TUfC/HvtmEHQOiCBWL4mAxiCp5dTPxciaz izGN8bmMBge3NJEfcrFPwBkKbJ0KPQNaOl0rQ6o= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA10rA3e3V3H+eNmxNzgV1 qBMmeo065Mhklc2iFn51b1niQBPk4VX0lkmPsgODPxqmiCw2Biy6La4Z95LvT3kO cO6mrm6bRZ+NTgl85nAjOXHo2gPkVc4hbGPPZC4fsQsotA0Nq24QVDxxMsBPWzbP j98s3oLjL+MbQbwVz5/t6+NwmXHKUoT7FNmEpgLN/X0tcvptbzwn8Fu9e4D+eF0d G6aCTtV4f4ELdKzXNeHZBR6kPoJnwBb8Fel3K6s6SHbgzNMG8/EKECbShshydtiF uwjhbfUw1qxJ0c15O9+tIDHLa3hiASWKaI7uo+zMiLgvIKpjPyqjIs6JekGP6K+s +QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11515277662283441290277210141165491422 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cornerstone.unco.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27178097836396468712720487228042265709420369828669297297699114032065094353754296410344988674170758342092074763389035116438185281798674748573975186287765632560211756627654869812884913893184070706162154640076652522169688560764004825880971372676852654910252904126331102473878773144723526050815565712459561168079380526199771719163187609880855730843019875201222870508241743277248904368223279319580845574093245499644036730254256121483758284437945068410687548670991120672816603349725250402163871035101169630637589787140486813472563647509165356529269147747730627570852651537803035886001515254380789976672623223823129532935417 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4b0500f26a3dcf9da089ddad667e8eaebe0dc4ed . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cornerstone.unco.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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