*.artifactory.davita.com
- DaVita -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number e5:f9:df:23:5d:ff:57:56:00:00:00:00:50:f7:3e:79 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
DaVita
Organization:
DaVita
State / Province:
California
Locality: El Segundo
Country: US
Locality: El Segundo
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): e5:f9:df:23:5d:ff:57:56:00:00:00:00:50:f7:3e:79Serial Number (int): 305690618731939003725923088231717879417
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 18:94:cd:e6:0e:5e:d0:3d:5b:3d:eb:ad:5c:4a:f1:13:ad:4a:c5:a0
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): e9:e5:72:a6:25:d6:46:a6:db:61:7d:b1:bb:38:05:92:4c:a1:73:36
Fingerprint (sha256): 0e:4c:b9:59:ce:65:e6:c7:91:f2:99:5b:d1:f9:0e:e5:7f:65:6e:93:d9:18:b6:31:7d:a8:71:57:45:ff:7b:1f
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate *.artifactory.davita.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.artifactory.davita.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.artifactory.davita.com
artifactory.davita.com
artifactory.davita.com
Other certificates including the domain name davita.com
(limited to 100 certificates)
vpnportal.davita.com
tacomavpn.davita.com
falcon.davita.com
ourcommunity.davita.com
bcc2.talentera.com
pressreleases.davita.com
bcc2.talentera.com
leapfrog-ssl-22.gcs-web.com
bcc2.talentera.com
isevpn.davita.com
emailmktg.davita.com
falconmobile.davita.com
vpnportal.davita.com
bcc2.talentera.com
davita.com
aslax.davita.com
davita.com
tmcentral.davita.com
*.reportsnp.davita.com
dsp.davita.com
clearpass.davita.com
bcc2.talentera.com
bcc2.talentera.com
falcondialysisqa.davita.com
falconbiebf.davita.com
bcc2.talentera.com
app.clinicalstudybiling.davita.com
bcc2.talentera.com
*.artifactory.davita.com
app.hrm.epe.davita.com
perf.physician-np.davita.com
brand.davita.com
DEN3T1CEXPCA01.davita.com
sso.starpoint.davita.com
support.cdnetworks.net
bcc2.talentera.com
bcc2.talentera.com
dsp.davita.com
app.physportalqa.davita.com
bcc2.talentera.com
tacomavpn.davita.com
bcc2.talentera.com
ola10.davita.com
bcc2.talentera.com
fe.paapp.davita.com
leapfrog-ssl-22.gcs-web.com
bcc2.talentera.com
redwoods.davita.com
ola10.davita.com
*.physiciansolutions.davita.com
bcc2.talentera.com
bcc2.talentera.com
5720147234914304-fe1.pantheonsite.io
5659118702428160-fe2.pantheonsite.io
prod.middleware.davita.com
bcc2.talentera.com
bcc2.talentera.com
denver.davita.com
*.intranet.davita.com
dsp.davita.com
help.oneviewdps.davita.com
bcc2.talentera.com
leapfrog-ssl-22.gcs-web.com
pressreleases.davita.com
www.davita.com
bcc2.talentera.com
api.piet-app.davita.com
bcc2.talentera.com
prod-podservice.rx-np.davita.com
feat-logging-test.ogb-np.davita.com
w3mail.davita.com
drvpn.davita.com
denver.davita.com
falcongithub.davita.com
5720147234914304-fe1.pantheonsite.io
bcc2.talentera.com
licensepartners.davita.com
backend-04c53-ckd.patient-np.davita.com
careers.davita.com
bcc2.talentera.com
seavpn.davita.com
davita.com
vertex-dev3.davita.com
leapfrog-ssl-22.gcs-web.com
apps.stagemcp.davita.com
bcc2.talentera.com
bcc2.talentera.com
backend-e26b1-upp-admin.patient-np.davita.com
bcc2.talentera.com
netmri.davita.com
adfs.davita.com
sharedapp.davita.com
den4-clinic-raduis1.davita.com
xenweb.davita.com
jobs.davita.com
vault-cassandra.davita.com
bcc2.talentera.com
netmri.davita.com
den3-lancopesmc.davita.com
*.davita.com
tacomavpn.davita.com
falcon.davita.com
ourcommunity.davita.com
bcc2.talentera.com
pressreleases.davita.com
bcc2.talentera.com
leapfrog-ssl-22.gcs-web.com
bcc2.talentera.com
isevpn.davita.com
emailmktg.davita.com
falconmobile.davita.com
vpnportal.davita.com
bcc2.talentera.com
davita.com
aslax.davita.com
davita.com
tmcentral.davita.com
*.reportsnp.davita.com
dsp.davita.com
clearpass.davita.com
bcc2.talentera.com
bcc2.talentera.com
falcondialysisqa.davita.com
falconbiebf.davita.com
bcc2.talentera.com
app.clinicalstudybiling.davita.com
bcc2.talentera.com
*.artifactory.davita.com
app.hrm.epe.davita.com
perf.physician-np.davita.com
brand.davita.com
DEN3T1CEXPCA01.davita.com
sso.starpoint.davita.com
support.cdnetworks.net
bcc2.talentera.com
bcc2.talentera.com
dsp.davita.com
app.physportalqa.davita.com
bcc2.talentera.com
tacomavpn.davita.com
bcc2.talentera.com
ola10.davita.com
bcc2.talentera.com
fe.paapp.davita.com
leapfrog-ssl-22.gcs-web.com
bcc2.talentera.com
redwoods.davita.com
ola10.davita.com
*.physiciansolutions.davita.com
bcc2.talentera.com
bcc2.talentera.com
5720147234914304-fe1.pantheonsite.io
5659118702428160-fe2.pantheonsite.io
prod.middleware.davita.com
bcc2.talentera.com
bcc2.talentera.com
denver.davita.com
*.intranet.davita.com
dsp.davita.com
help.oneviewdps.davita.com
bcc2.talentera.com
leapfrog-ssl-22.gcs-web.com
pressreleases.davita.com
www.davita.com
bcc2.talentera.com
api.piet-app.davita.com
bcc2.talentera.com
prod-podservice.rx-np.davita.com
feat-logging-test.ogb-np.davita.com
w3mail.davita.com
drvpn.davita.com
denver.davita.com
falcongithub.davita.com
5720147234914304-fe1.pantheonsite.io
bcc2.talentera.com
licensepartners.davita.com
backend-04c53-ckd.patient-np.davita.com
careers.davita.com
bcc2.talentera.com
seavpn.davita.com
davita.com
vertex-dev3.davita.com
leapfrog-ssl-22.gcs-web.com
apps.stagemcp.davita.com
bcc2.talentera.com
bcc2.talentera.com
backend-e26b1-upp-admin.patient-np.davita.com
bcc2.talentera.com
netmri.davita.com
adfs.davita.com
sharedapp.davita.com
den4-clinic-raduis1.davita.com
xenweb.davita.com
jobs.davita.com
vault-cassandra.davita.com
bcc2.talentera.com
netmri.davita.com
den3-lancopesmc.davita.com
*.davita.com
Certificate
The complete raw certificate details for *.artifactory.davita.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGbzCCBVegAwIBAgIRAOX53yNd/1dWAAAAAFD3PnkwDQYJKoZIhvcNAQELBQAw gboxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMSgwJgYDVQQL Ex9TZWUgd3d3LmVudHJ1c3QubmV0L2xlZ2FsLXRlcm1zMTkwNwYDVQQLEzAoYykg MjAxMiBFbnRydXN0LCBJbmMuIC0gZm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxLjAs BgNVBAMTJUVudHJ1c3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgLSBMMUswHhcN MTkwOTE0MTczNDQ2WhcNMjEwOTE0MTgwNDQ0WjBrMQswCQYDVQQGEwJVUzETMBEG A1UECBMKQ2FsaWZvcm5pYTETMBEGA1UEBxMKRWwgU2VndW5kbzEPMA0GA1UEChMG RGFWaXRhMSEwHwYDVQQDDBgqLmFydGlmYWN0b3J5LmRhdml0YS5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCYaRqrdQ8gMNfm29JrJ+Wg1WKZlRvC OPTaCCacKWCO7eBjt9ygmqD+dpqXZuUeR2P3n2KJR0RCybPm+Q1fwnTPAamXg4Ja w9aKmj7HkxKMlwEFZNozdXIIagyod3mc/s4oPMF4+B8SeBVT5ZBSvoyWUR2f/fEx OOUXiViRx1UDtvgd+e1/R0BaBHp15057YY5kVk2cP3SxL2MyGXcwYWD8TBUWb9L1 BNZgcTFyRJWJ7DJk4yAvGEbTj+hoP2SlvZjkMKXe/2tdMLOvBnDd1yqjrgpT4ykx NY5uFHN+s4Yq7TZRvJgAR32nzYp4n+iRvIn+DHItfqAC+qLjYuz3AGyNx8d7mHK2 qQy1yZuQAhTQFLM9ROkS2NPmdVgwOm9Ut8Qe7WLbnRA6/Da6AmYydjCvfCvHCE8s ZdgwBYr6UeFptR8RBhZ8U0xWKYWhl8RKhIi3RfpMxHyK11qFUZ6/R7Afoq8xd+Uq BjecvbHJgjWjWHJzQL4xltII6Uo/O5iNQ0MalNlEFcZ+QMVqzYO5tfukEHLXkR0t L7tPXzUwI/7+6cAQMkKAEMvdLgB5lNxsZZEPD1QowAFDckYjkbArG4MBUCtcHTNL KzJnoMsvt4ZmRGmcjCxqoXP28pcvBNPFxhiqbCz4Yv6Ubya1QVV0xceLC/EsExNi 29XhVV67VbH76wIDAQABo4IBvDCCAbgwEwYKKwYBBAHWeQIEAwEB/wQCBQAwOwYD VR0RBDQwMoIYKi5hcnRpZmFjdG9yeS5kYXZpdGEuY29tghZhcnRpZmFjdG9yeS5k YXZpdGEuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwMwYDVR0fBCwwKjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5l dC9sZXZlbDFrLmNybDBLBgNVHSAERDBCMDYGCmCGSAGG+mwKAQUwKDAmBggrBgEF BQcCARYaaHR0cDovL3d3dy5lbnRydXN0Lm5ldC9ycGEwCAYGZ4EMAQICMGgGCCsG AQUFBwEBBFwwWjAjBggrBgEFBQcwAYYXaHR0cDovL29jc3AuZW50cnVzdC5uZXQw MwYIKwYBBQUHMAKGJ2h0dHA6Ly9haWEuZW50cnVzdC5uZXQvbDFrLWNoYWluMjU2 LmNlcjAfBgNVHSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzAdBgNVHQ4EFgQU GJTN5g5e0D1bPeutXErxE61KxaAwCQYDVR0TBAIwADANBgkqhkiG9w0BAQsFAAOC AQEAJcKjPAcM2Fkjw8uw8CdsOjjTHBbONAfMPY8VcbNW84iszysOL1ZYDJn7IIt/ o9dxdRhN+tdY3qRdS407I3TgEzLbo4Pn6Vg2bgI87hCk+vyAulBDmVKMf5NSUxI1 q/gJR7iTxFARZ7a0XuyN6RieyHRyYUdkGV3bLfPdhxGesyio16M2IEh69TMqVQYS nDg8VrvIdidY/B2QbKm74ifBj6uwpPjjRHNsUyWk1TRdGewh54TyBnXzjJ10u0tJ mMF4vzwDcL/XhpGT6s3c36n4z97hN+3qlUIQRHrzZ/Cg/kLPZ11ndSMb7OXn9m1S qjWHJDPPFotGrC/tj0SdGC0i4A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmGkaq3UPIDDX5tvSayfl oNVimZUbwjj02ggmnClgju3gY7fcoJqg/naal2blHkdj959iiUdEQsmz5vkNX8J0 zwGpl4OCWsPWipo+x5MSjJcBBWTaM3VyCGoMqHd5nP7OKDzBePgfEngVU+WQUr6M llEdn/3xMTjlF4lYkcdVA7b4Hfntf0dAWgR6dedOe2GOZFZNnD90sS9jMhl3MGFg /EwVFm/S9QTWYHExckSViewyZOMgLxhG04/oaD9kpb2Y5DCl3v9rXTCzrwZw3dcq o64KU+MpMTWObhRzfrOGKu02UbyYAEd9p82KeJ/okbyJ/gxyLX6gAvqi42Ls9wBs jcfHe5hytqkMtcmbkAIU0BSzPUTpEtjT5nVYMDpvVLfEHu1i250QOvw2ugJmMnYw r3wrxwhPLGXYMAWK+lHhabUfEQYWfFNMVimFoZfESoSIt0X6TMR8itdahVGev0ew H6KvMXflKgY3nL2xyYI1o1hyc0C+MZbSCOlKPzuYjUNDGpTZRBXGfkDFas2DubX7 pBBy15EdLS+7T181MCP+/unAEDJCgBDL3S4AeZTcbGWRDw9UKMABQ3JGI5GwKxuD AVArXB0zSysyZ6DLL7eGZkRpnIwsaqFz9vKXLwTTxcYYqmws+GL+lG8mtUFVdMXH iwvxLBMTYtvV4VVeu1Wx++sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 305690618731939003725923088231717879417 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-14 17:34:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-14 18:04:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'El Segundo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DaVita' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.artifactory.davita.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 621780850054999795675948186219986193180350916360445220643656115664265192572642617559248325385784587191905820962635854553618778064353751645777587475250609050583928343490570490201224997141243649383688504214797789637410923071284521582196329438816830560123259168337466606507112853701905686586477566308237811751571523411248381232787445284723298285804657745964911590507322651967134190775098693268342279789533828705987126586560865897049746525550168589534564980141942979383591114809685258307439284870653626781672996845299464231013536881312562662733062792332824278330034765672378099031211403632546530462457105940662964802706578659260543143348959512345156867130669698933253127727418537099899904956331436779723525405458587044309946285870514109157930329193734351689885545529577142843691775389472311932943498440923158778192979728633384430144099869789652062838017196639089602808320113429385165524815656423021196988696967855262622176363301933435015838576009738458124451030469423618352980156149617219750421575907480459835506759198338466583639406332230964798558855555179673824111098835275034874040020363539021393287701248531269103622707611423703654206117253818250043163446450569467399365784777221553640949007079802577152303777891344097520154366311403 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.artifactory.davita.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artifactory.davita.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1894cde60e5ed03d5b3debad5c4af113ad4ac5a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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