privx.aktia.fi
- Aktia Bank Abp -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0f:19:a2:7c:14:f9:d3:35:22:3b:97:b6:2d:0c:0c:8d was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Aktia Bank Abp
Organization:
Aktia Bank Abp
Locality:
Helsinki
Country: FI
Country: FI
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:19:a2:7c:14:f9:d3:35:22:3b:97:b6:2d:0c:0c:8dSerial Number (int): 20071522939376772248639906836948716685
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ac:a6:65:c6:4b:5f:3d:c8:dd:6a:04:50:fe:8a:bb:4a:07:93:d8:0d
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): fe:e8:0e:14:fb:03:8a:87:d0:24:28:d2:14:9e:bc:dc:8f:db:9a:37
Fingerprint (sha256): 0e:ae:07:5b:b1:61:64:75:df:12:06:09:d9:c9:b9:25:7c:ee:28:b6:51:f8:ee:1c:cc:33:08:47:dc:c9:81:e6
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g6.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g6.crl
Check the revocation status for certificate privx.aktia.fi
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for privx.aktia.fi
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
privx.aktia.fi
Other certificates including the domain name aktia.fi
(limited to 100 certificates)
smtp1.aktia.fi
sni.cloudflaressl.com
forms.public-prod.aktiacloud.fi
forms.www.aktia.fi
auth.aktia.fi
ws.aktia.fi
syskirjaudu.aktia.fi
cerberus.aktia.fi
forms.www.aktia.fi
authenticate.aktia.fi
chat.aktia.fi
devmisc.public-dev.aktiacloud.fi
ebank.aktia.fi
www.community.aktia.fi
sp.aktia.fi
test.snowplow.aktia.fi
mobile-gateway2.aktia.fi
testi-allekirjoitus.aktia.fi
varainhoito.aktia.fi
testi-allekirjoitus.aktia.fi
ebank.aktia.fi
systestbeta.aktia.fi
ebank.aktia.fi
systestmisc.aktia.fi
talous.aktia.fi
wstest.aktia.fi
inttest.aktia.fi
systest.aktia.fi
sysauth.aktia.fi
sysebank.aktia.fi
prod-aqs-api.aktia.fi
lifesavings.aktia.fi
varainhoito.aktia.fi
devforms.public-dev.aktiacloud.fi
kirjaudu.aktia.fi
ftn.aktia.fi
ftn.aktia.fi
fs.aktia.fi
kampanja.aktia.fi
intebank.aktia.fi
sp.aktia.fi
developer.aktia.fi
fs.aktia.fi
tunnistus.aktia.fi
signature.aktia.fi
forms.www.aktia.fi
sni.cloudflaressl.com
eta.aktia.fi
ebank.aktia.fi
inttest.aktia.fi
varainhoito.aktia.fi
systestforms.www.aktia.fi
sip.aktia.fi
sysauth.aktia.fi
privx.aktia.fi
mobile-gateway2.aktia.fi
kampanja.aktia.fi
archive.aktia.fi
talous.aktia.fi
authenticate.aktia.fi
*.snowplow.aktia.fi
chat.aktia.fi
ebank.aktia.fi
apv.aktia.fi
wealth-api.aktia.fi
mobile-auth2.aktia.fi
kampanja.aktia.fi
auth.aktia.fi
www.community.aktia.fi
archive.aktia.fi
saametrics.aktia.fi
test.snowplow.aktia.fi
systest.aktia.fi
testi-allekirjoitus.aktia.fi
www.community.aktia.fi
saametrics.aktia.fi
inttest.aktia.fi
app.aktia.fi
sni.cloudflaressl.com
*.aktia.fi
kampanja.aktia.fi
sp.aktia.fi
chat.aktia.fi
mobile-auth.aktia.fi
mobile-gateway.aktia.fi
test.snowplow.aktia.fi
autovakuutus.aktia.fi
www.community.aktia.fi
systest.aktia.fi
devkirjaudu.aktia.fi
*.snowplow.aktia.fi
systestbeta.aktia.fi
mobile-gateway.aktia.fi
wealth-api.aktia.fi
lifesavings.aktia.fi
mobile-auth.aktia.fi
www2.aktia.fi
tunnistus-sso.aktia.fi
api.aktia.fi
sysmisc.public-sys.aws.aktia.org
sni.cloudflaressl.com
forms.public-prod.aktiacloud.fi
forms.www.aktia.fi
auth.aktia.fi
ws.aktia.fi
syskirjaudu.aktia.fi
cerberus.aktia.fi
forms.www.aktia.fi
authenticate.aktia.fi
chat.aktia.fi
devmisc.public-dev.aktiacloud.fi
ebank.aktia.fi
www.community.aktia.fi
sp.aktia.fi
test.snowplow.aktia.fi
mobile-gateway2.aktia.fi
testi-allekirjoitus.aktia.fi
varainhoito.aktia.fi
testi-allekirjoitus.aktia.fi
ebank.aktia.fi
systestbeta.aktia.fi
ebank.aktia.fi
systestmisc.aktia.fi
talous.aktia.fi
wstest.aktia.fi
inttest.aktia.fi
systest.aktia.fi
sysauth.aktia.fi
sysebank.aktia.fi
prod-aqs-api.aktia.fi
lifesavings.aktia.fi
varainhoito.aktia.fi
devforms.public-dev.aktiacloud.fi
kirjaudu.aktia.fi
ftn.aktia.fi
ftn.aktia.fi
fs.aktia.fi
kampanja.aktia.fi
intebank.aktia.fi
sp.aktia.fi
developer.aktia.fi
fs.aktia.fi
tunnistus.aktia.fi
signature.aktia.fi
forms.www.aktia.fi
sni.cloudflaressl.com
eta.aktia.fi
ebank.aktia.fi
inttest.aktia.fi
varainhoito.aktia.fi
systestforms.www.aktia.fi
sip.aktia.fi
sysauth.aktia.fi
privx.aktia.fi
mobile-gateway2.aktia.fi
kampanja.aktia.fi
archive.aktia.fi
talous.aktia.fi
authenticate.aktia.fi
*.snowplow.aktia.fi
chat.aktia.fi
ebank.aktia.fi
apv.aktia.fi
wealth-api.aktia.fi
mobile-auth2.aktia.fi
kampanja.aktia.fi
auth.aktia.fi
www.community.aktia.fi
archive.aktia.fi
saametrics.aktia.fi
test.snowplow.aktia.fi
systest.aktia.fi
testi-allekirjoitus.aktia.fi
www.community.aktia.fi
saametrics.aktia.fi
inttest.aktia.fi
app.aktia.fi
sni.cloudflaressl.com
*.aktia.fi
kampanja.aktia.fi
sp.aktia.fi
chat.aktia.fi
mobile-auth.aktia.fi
mobile-gateway.aktia.fi
test.snowplow.aktia.fi
autovakuutus.aktia.fi
www.community.aktia.fi
systest.aktia.fi
devkirjaudu.aktia.fi
*.snowplow.aktia.fi
systestbeta.aktia.fi
mobile-gateway.aktia.fi
wealth-api.aktia.fi
lifesavings.aktia.fi
mobile-auth.aktia.fi
www2.aktia.fi
tunnistus-sso.aktia.fi
api.aktia.fi
sysmisc.public-sys.aws.aktia.org
Certificate
The complete raw certificate details for privx.aktia.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIQDxmifBT50zUiO5e2LQwMjTANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0yMDEwMTMwMDAwMDBaFw0yMTEwMTgxMjAwMDBa MFIxCzAJBgNVBAYTAkZJMREwDwYDVQQHEwhIZWxzaW5raTEXMBUGA1UEChMOQWt0 aWEgQmFuayBBYnAxFzAVBgNVBAMTDnByaXZ4LmFrdGlhLmZpMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3/RgtxWhR7m3t91YEuJrrHbIkDTiZCH6FUT/ Vg41JPBIfPHgEO9YV6S4B0VCROzqiJGqdUpc5BDh2LGQJRJ5bQ1z/owq1ayzMKvp jd72KvZw4AocNJUco7N6HAgyGkU2Q+bUUuMWnxa6UdEC5UXAtV0BoWe9AOnS3fDB GdpvcUcdH4y2ZfDTFVVrRurEdTYRV344PH8nXCgCLsVgW4wkEvLzuFFKEA0LKfUe UkELIJUoPcAkPMbXJachpbGZvcxPg5uVljjulKHKvmvReNsyqXxsQf7tskAJJWzn lNtkpIGy6iSdNLLpF801sNkORcuHOwnb9Z//gndcDAansVUdmwIDAQABo4IB/DCC AfgwHwYDVR0jBBgwFoAUUWj/kK8CB3U8zNllZGKiErhZcjswHQYDVR0OBBYEFKym ZcZLXz3I3WoEUP6Ku0oHk9gNMBkGA1UdEQQSMBCCDnByaXZ4LmFrdGlhLmZpMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwdQYD VR0fBG4wbDA0oDKgMIYuaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3NoYTItaGEt c2VydmVyLWc2LmNybDA0oDKgMIYuaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3No YTItaGEtc2VydmVyLWc2LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgG CCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAEC AjCBgwYIKwYBBQUHAQEEdzB1MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wTQYIKwYBBQUHMAKGQWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNv bS9EaWdpQ2VydFNIQTJIaWdoQXNzdXJhbmNlU2VydmVyQ0EuY3J0MAwGA1UdEwEB /wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAC/S DnTsVB/ZUj/ZP9vqeJOn8XGbgzl4fr32EVetTYIlrPf2bGzfaKhG4PovoaxjtbhH UDI7Nj6jaVZmbvICZmmNq+7htIxCCIdwWJ06heTTNSdvuG1tUQrJMKbDDy4/BaBD KueQ/6aAv4EINbQF3Hlns7MVu07k2SCfmER68FBHNRP+FSeAVPPV7Yt3+HF5Ebcw Zi4/E8a6yEuf01/r+Rh2A2rb064P30Lp7yl+CKewi75EJ3L3VDMrr1ixyHgUiAn2 5rtnbfmffHTlk6i6SYoayqF3nawGk9JQiEKFsMkTwsQRoBKtObzWSSEaqZXyOgRo ONEYKLGL7RaELnl8NhQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3/RgtxWhR7m3t91YEuJr rHbIkDTiZCH6FUT/Vg41JPBIfPHgEO9YV6S4B0VCROzqiJGqdUpc5BDh2LGQJRJ5 bQ1z/owq1ayzMKvpjd72KvZw4AocNJUco7N6HAgyGkU2Q+bUUuMWnxa6UdEC5UXA tV0BoWe9AOnS3fDBGdpvcUcdH4y2ZfDTFVVrRurEdTYRV344PH8nXCgCLsVgW4wk EvLzuFFKEA0LKfUeUkELIJUoPcAkPMbXJachpbGZvcxPg5uVljjulKHKvmvReNsy qXxsQf7tskAJJWznlNtkpIGy6iSdNLLpF801sNkORcuHOwnb9Z//gndcDAansVUd mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20071522939376772248639906836948716685 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-10-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-18 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Helsinki' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aktia Bank Abp' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'privx.aktia.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28271649188842886041694430975099296766264699189070259350035661139474527135741060752075834192768971208927973972026415201763885177805430566527580793991704675578041182223400174440996661426412868894245835260813218050418944426158040110077869647625997472612474968669598295476092905418204219426946660037953071631331013886281890535055833156096994192370983168311966599186365923101873692908909005517305979324507587677804601982011089274285055400571459869687691403793793147083673746557226685007952624609334063065436678223672528691046219614718951414288690670592909094886486226694303540176276146747421868511047505713741987575045531 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aca665c64b5f3dc8dd6a0450fe8abb4a0793d80d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'privx.aktia.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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