saml-idp.test.op.fi
- OP Osuuskunta -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 19:cf:23:49:99:6c:51:ff:0f:a1:6b:52:40:8e:22:a6 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
OP Osuuskunta
Organization:
OP Osuuskunta
Locality:
Helsinki
Country: FI
Country: FI
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 19:cf:23:49:99:6c:51:ff:0f:a1:6b:52:40:8e:22:a6Serial Number (int): 34306221059813755199377797815452181158
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 83:30:a1:4b:5a:e2:e1:9b:f6:6a:b3:81:2c:3f:b0:8a:16:b5:81:5f
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 0d:43:01:a9:cb:b5:90:5a:d5:22:53:50:c7:a6:90:e3:89:ba:b8:62
Fingerprint (sha256): 0e:0d:5f:36:9c:ed:52:6e:12:4e:b6:d6:ef:5c:07:3f:0b:73:24:51:ab:0d:a3:2f:b6:a3:5b:e6:6b:b3:89:cc
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate saml-idp.test.op.fi
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for saml-idp.test.op.fi
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
saml-idp.test.op.fi
www.saml-idp.test.op.fi
www.saml-idp.test.op.fi
Other certificates including the domain name op.fi
(limited to 100 certificates)
pilot-cms.op.fi
tok1.op.fi
www.jyty.op.fi
www.pilotti1.op.fi
rea.tuotanto.op.fi
test.tags.services.op.fi
opwlsopersr1.op.fi
jtywlshv1mv2.op.fi
marketdata.op.fi
media.op.fi
kultaraha.osuuspankki.fi
m.op.fi
securemail.op.fi
instituutioidensalkunhallinta.op.fi
valtuutus.op.fi
tk1.op.fi
tuoteasiakirjat.op.fi
api.op.fi
uutiskirje-tribedo.op.fi
verkkomaksu.op.fi
vahinkoapu.op.fi
alm.op.fi
login.pohjola.fi
uusi.lompsa.op.fi
sni.cloudflaressl.com
ocm.tags.op.fi
saml-idp.id-broker.op.fi
extlyncfarm.lync.op-palvelut.fi
lr7-pilot-cms.op.fi
kultaraha.osuuspankki.fi
test.ocm.tags.op.fi
uutiskirje.op.fi
varainhoito.op.fi
sni.cloudflaressl.com
in.tupas.op.fi
marketdata.show.op.fi
dps.op.fi
sni.cloudflaressl.com
isam-mgmt-fed.opcloud.op.fi
hae-korvausta.op.fi
ostalaskulla.op.fi
sni.cloudflaressl.com
silta.wsmobdom.HE1.op.fi
wsk.op.fi
authorize.op.fi
webmail.op-palvelut.net
verkkomaksu.op.fi
vahinkoapu.op.fi
uutiskirje.op.fi
tes3.op.fi
pilot.op.fi
www2.op.fi
allekirjoitus.op.fi
cert-baltics.sca.op.fi
psd2.mtls.sandbox.apis.op.fi
uutiskirje-tribedo.op.fi
mtls.apis.op.fi
marketdata.op.fi
www.jyty.op.fi
kultaraha.op.fi
hoksaamo.op.fi
dmc.email.op.fi
historia.op.fi
uusi.lompsa.jyty.op.fi
allekirjoitus.op.fi
yritys.op.fi
pilot.lainaa.op.fi
saml-idp.test.op.fi
vea.op.fi
isb.op.fi
test.ocm.tags.op.fi
sp.op.fi
kokeile.op.fi
pilot.saana.op.fi
marketdata.op.fi
ocm.tags.op.fi
oidc-client-registration.op.fi
vuosi.op.fi
uutiskirje.op.fi
ocm.tags.op.fi
uutiskirje-tribedo.op.fi
saavutettava.op.fi
lainaa.op.fi
isb-test.op.fi
kultaraha.osuuspankki.fi
static.apiauth.services.op.fi
c104s412vm011.op.fi
sni.cloudflaressl.com
c104s412vm011.op.fi
saml-idp.test.op.fi
wsk.extranet.asiakastesti.op.fi
OPMQSSB.OP.FI
isb.op.fi
securemail.op.fi
webprod.pohjola.fi
isam-web.opcloud.op.fi
vahinkoapu.pohjola.fi
saml-idp.test.op.fi
SAPBCM.op.fi
paivittaispalvelu.op.fi
tok1.op.fi
www.jyty.op.fi
www.pilotti1.op.fi
rea.tuotanto.op.fi
test.tags.services.op.fi
opwlsopersr1.op.fi
jtywlshv1mv2.op.fi
marketdata.op.fi
media.op.fi
kultaraha.osuuspankki.fi
m.op.fi
securemail.op.fi
instituutioidensalkunhallinta.op.fi
valtuutus.op.fi
tk1.op.fi
tuoteasiakirjat.op.fi
api.op.fi
uutiskirje-tribedo.op.fi
verkkomaksu.op.fi
vahinkoapu.op.fi
alm.op.fi
login.pohjola.fi
uusi.lompsa.op.fi
sni.cloudflaressl.com
ocm.tags.op.fi
saml-idp.id-broker.op.fi
extlyncfarm.lync.op-palvelut.fi
lr7-pilot-cms.op.fi
kultaraha.osuuspankki.fi
test.ocm.tags.op.fi
uutiskirje.op.fi
varainhoito.op.fi
sni.cloudflaressl.com
in.tupas.op.fi
marketdata.show.op.fi
dps.op.fi
sni.cloudflaressl.com
isam-mgmt-fed.opcloud.op.fi
hae-korvausta.op.fi
ostalaskulla.op.fi
sni.cloudflaressl.com
silta.wsmobdom.HE1.op.fi
wsk.op.fi
authorize.op.fi
webmail.op-palvelut.net
verkkomaksu.op.fi
vahinkoapu.op.fi
uutiskirje.op.fi
tes3.op.fi
pilot.op.fi
www2.op.fi
allekirjoitus.op.fi
cert-baltics.sca.op.fi
psd2.mtls.sandbox.apis.op.fi
uutiskirje-tribedo.op.fi
mtls.apis.op.fi
marketdata.op.fi
www.jyty.op.fi
kultaraha.op.fi
hoksaamo.op.fi
dmc.email.op.fi
historia.op.fi
uusi.lompsa.jyty.op.fi
allekirjoitus.op.fi
yritys.op.fi
pilot.lainaa.op.fi
saml-idp.test.op.fi
vea.op.fi
isb.op.fi
test.ocm.tags.op.fi
sp.op.fi
kokeile.op.fi
pilot.saana.op.fi
marketdata.op.fi
ocm.tags.op.fi
oidc-client-registration.op.fi
vuosi.op.fi
uutiskirje.op.fi
ocm.tags.op.fi
uutiskirje-tribedo.op.fi
saavutettava.op.fi
lainaa.op.fi
isb-test.op.fi
kultaraha.osuuspankki.fi
static.apiauth.services.op.fi
c104s412vm011.op.fi
sni.cloudflaressl.com
c104s412vm011.op.fi
saml-idp.test.op.fi
wsk.extranet.asiakastesti.op.fi
OPMQSSB.OP.FI
isb.op.fi
securemail.op.fi
webprod.pohjola.fi
isam-web.opcloud.op.fi
vahinkoapu.pohjola.fi
saml-idp.test.op.fi
SAPBCM.op.fi
paivittaispalvelu.op.fi
Certificate
The complete raw certificate details for saml-idp.test.op.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIQGc8jSZlsUf8PoWtSQI4ipjANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MzAyMDkxMzU4MjRaFw0yNDAzMDgxMzU4MjRaMFYxCzAJBgNVBAYTAkZJMREwDwYD VQQHEwhIZWxzaW5raTEWMBQGA1UEChMNT1AgT3N1dXNrdW50YTEcMBoGA1UEAxMT c2FtbC1pZHAudGVzdC5vcC5maTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGh/eHQZInM+8xI4Xxx+bfnqZ3EaKCeQp/Ypx6xxPuZH/uTiO4SNp23sBwO 23LMQoo+BmYU8VQLxOmJZ4Cgy+0nZ6Qer4PtzonFxOmU0/MTMZniNvckrFjTUW1I afHuw3taXeU97YiI/guwgZJI60pQyNRyWwL8k0RaNOKzJUaL4eN+UCLNB5Ev646M FnoV0xrkg7pEMlVtzb1//aCEViIzU42XIoZoH2C3BHj4HNQgNtJ8QI7m07tj5jkj O2klQ69YFESBm3WyBgU2Wi8/POE1jk0W/JRUzZ69k2T9V9Nsm3as8EiMPPvyNG58 HvWdTb+9pvmALbLngUFPrA8Le20CAwEAAaOCAbIwggGuMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFIMwoUta4uGb9mqzgSw/sIoWtYFfMB8GA1UdIwQYMBaAFIKicHTd vFM/z3vU981/p2DGCky/MGgGCCsGAQUFBwEBBFwwWjAjBggrBgEFBQcwAYYXaHR0 cDovL29jc3AuZW50cnVzdC5uZXQwMwYIKwYBBQUHMAKGJ2h0dHA6Ly9haWEuZW50 cnVzdC5uZXQvbDFrLWNoYWluMjU2LmNlcjAzBgNVHR8ELDAqMCigJqAkhiJodHRw Oi8vY3JsLmVudHJ1c3QubmV0L2xldmVsMWsuY3JsMDcGA1UdEQQwMC6CE3NhbWwt aWRwLnRlc3Qub3AuZmmCF3d3dy5zYW1sLWlkcC50ZXN0Lm9wLmZpMA4GA1UdDwEB /wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATBMBgNVHSAERTBDMDcGCmCGSAGG +mwKAQUwKTAnBggrBgEFBQcCARYbaHR0cHM6Ly93d3cuZW50cnVzdC5uZXQvcnBh MAgGBmeBDAECAjATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzGMSkih2NOGwqE4RAxOIdXhciOynCwGbDiPZoA0pjFhckqGXaER10/ba4CqK +Bh1Egys/efx8CZ1OCtGQDUDkf04/9/XRyzyENKmPceZ6+vSiUFEbSF0+6RddSq3 9SmFJIayaSSXaz2wPRV+vVryg3CChBXqdRJyCY0qTo4rxeuj6FmH0GfDG/vVcqt2 gUsxRWmzLZGd/4/SF+BZeq6bu/b9v3KZ4rXGXvco/WGRXWDn58LldMK2pb3YyAmF FZDrsgXhFDxTqaP9Jg2P+u6MYrWiHlisDnkqYy93xJOmkHj2888cUPkoHziB26ru CC6kmi5hKoYvbrWhnBmdmDWKbA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0aH94dBkicz7zEjhfHH5 t+epncRooJ5Cn9inHrHE+5kf+5OI7hI2nbewHA7bcsxCij4GZhTxVAvE6YlngKDL 7SdnpB6vg+3OicXE6ZTT8xMxmeI29ySsWNNRbUhp8e7De1pd5T3tiIj+C7CBkkjr SlDI1HJbAvyTRFo04rMlRovh435QIs0HkS/rjowWehXTGuSDukQyVW3NvX/9oIRW IjNTjZcihmgfYLcEePgc1CA20nxAjubTu2PmOSM7aSVDr1gURIGbdbIGBTZaLz88 4TWOTRb8lFTNnr2TZP1X02ybdqzwSIw8+/I0bnwe9Z1Nv72m+YAtsueBQU+sDwt7 bQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 34306221059813755199377797815452181158 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-09 13:58:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-08 13:58:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Helsinki' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OP Osuuskunta' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'saml-idp.test.op.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26463686835649292230897321635638759649835280499829399082059528366117364675102794356763155209093856016259987999687008714050096913749266055389424364711019647456006126915686077092247760791556117115288876185309837188161649170285075175685823507719628090210701341913494805702379401297965151184738646802000523864933484553330763753906431422732505099227919224811071217915032137873124536836831025907693570847312857421040382233196690585777005883404647710341616757163617292645572522965937214135093736746255730052924946292478524028770586529414425260767485160778200738845165571532379800299830753578879825715152504270426603915017069 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8330a14b5ae2e19bf66ab3812c3fb08a16b5815f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saml-idp.test.op.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.saml-idp.test.op.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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