bestmarques.lexpress.fr
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 06:19:21:9b:c9:bd:cc:bc:53:a0:2c:1c:c4:59:67:0b was issued on by DigiCert Inc.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bestmarques.lexpress.fr
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:19:21:9b:c9:bd:cc:bc:53:a0:2c:1c:c4:59:67:0bSerial Number (int): 8105857058490916935006201824723691275
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: b3:7d:7d:65:31:4b:fb:b1:0e:8d:0a:56:7c:88:45:62:5a:08:dc:bb
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): 27:5a:28:e5:6a:51:91:4c:66:6d:0a:25:ad:1b:03:30:6f:da:6d:ce
Fingerprint (sha256): 0e:cd:93:11:48:b2:03:fc:a1:46:bb:64:c5:f3:d6:a0:ba:db:00:ba:48:ed:b5:b1:2a:6b:96:a0:22:eb:64:95
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate bestmarques.lexpress.fr
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bestmarques.lexpress.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bestmarques.lexpress.fr
Other certificates including the domain name lexpress.fr
(limited to 100 certificates)
aconsommerdepreference.lexpress.fr
applications-mobile.lexpress.fr
zm5d.lexpress.fr
aconsommerdepreference.lexpress.fr
contrat.lentreprise.lexpress.fr
tr.news.lentreprise.lexpress.fr
*.lexpress.fr
defigrandesecoles.lexpress.fr
smartphone.lexpress.fr
zm5d.lexpress.fr
contrat.lentreprise.lexpress.fr
*.lexpress.fr
vins.lexpress.fr
api.moncompte.lexpress.fr
guideachat.lexpress.fr
tls.automattic.com
moncompte.lexpress.fr
defigrandesecoles.lexpress.fr
bestmarques.lexpress.fr
tr.news.lexpansion.lexpress.fr
staging.abonnement.lexpress.fr
tr.gestion.lexpress.fr
livreblanc.lexpress.fr
event.lexpress.fr
sni.cloudflaressl.com
cours-anglais.lexpress.fr
tr.news.lentreprise.lexpress.fr
assurance-emprunteur.votreargent.lexpress.fr
support.lexpress.fr
tr.news.styles.lexpress.fr
zm5d.lexpress.fr
zm5d.lexpress.fr
aconsommerdepreference.lexpress.fr
production.customerhappiness.cloud.ger.systems
guideachat.lexpress.fr
livreblanc.lexpress.fr
*.lexpress.fr
seanapse-box.com
aconsommerdepreference.lexpress.fr
smartphone.lexpress.fr
staging.webhooks.abonnement.lexpress.fr
aconsommerdepreference.lexpress.fr
abonnement.lexpress.fr
lexpress.web.arc-cdn.net
support.lexpress.fr
*.lexpress.fr
tr.news.votreargent.lexpress.fr
tr.news.styles.lexpress.fr
tr.gestion.lexpress.fr
staging.api.abonnement.lexpress.fr
zm5d.lexpress.fr
tr.welcome.lexpress.fr
aconsommerdepreference.lexpress.fr
js-pre-boutique.lexpress.fr
lexpress.web.arc-cdn.net
tr.welcome.lexpress.fr
staging.abonnement.lexpress.fr
livreblanc.lexpress.fr
sandbox.api.abonnement.lexpress.fr
zm5d.lexpress.fr
tr.news.lentreprise.lexpress.fr
abonnement.lexpress.fr
devis.votreargent.lexpress.fr
tr.news.styles.lexpress.fr
zm5d.lexpress.fr
aconsommerdepreference.lexpress.fr
*.lexpress.fr
energie.votreargent.lexpress.fr
livreblanc.lexpress.fr
infos.lexpress.fr
aconsommerdepreference.lexpress.fr
event.lexpress.fr
livreblanc.lexpress.fr
tr.news.lentreprise.lexpress.fr
livreblanc.lexpress.fr
assurance-emprunteur.votreargent.lexpress.fr
tr.news.lexpress.fr
tr.welcome.lexpress.fr
boutique.lexpress.fr
*.lexpress.fr
shopping.lexpress.fr
tr.promotion.lexpress.fr
smartphone.lexpress.fr
tr.gestion.lexpress.fr
defigrandesecoles.lexpress.fr
energie.votreargent.lexpress.fr
aconsommerdepreference.lexpress.fr
*.lexpress.fr
mock.lexpress.fr
codepromo.lexpress.fr
livreblanc.lexpress.fr
support.lexpress.fr
extranet.lexpress.fr
staging.abonnement.lexpress.fr
energie.votreargent.lexpress.fr
zm5d.lexpress.fr
event.lexpress.fr
tr.news.votreargent.lexpress.fr
staging.api.abonnement.lexpress.fr
tr.welcome.lexpress.fr
applications-mobile.lexpress.fr
zm5d.lexpress.fr
aconsommerdepreference.lexpress.fr
contrat.lentreprise.lexpress.fr
tr.news.lentreprise.lexpress.fr
*.lexpress.fr
defigrandesecoles.lexpress.fr
smartphone.lexpress.fr
zm5d.lexpress.fr
contrat.lentreprise.lexpress.fr
*.lexpress.fr
vins.lexpress.fr
api.moncompte.lexpress.fr
guideachat.lexpress.fr
tls.automattic.com
moncompte.lexpress.fr
defigrandesecoles.lexpress.fr
bestmarques.lexpress.fr
tr.news.lexpansion.lexpress.fr
staging.abonnement.lexpress.fr
tr.gestion.lexpress.fr
livreblanc.lexpress.fr
event.lexpress.fr
sni.cloudflaressl.com
cours-anglais.lexpress.fr
tr.news.lentreprise.lexpress.fr
assurance-emprunteur.votreargent.lexpress.fr
support.lexpress.fr
tr.news.styles.lexpress.fr
zm5d.lexpress.fr
zm5d.lexpress.fr
aconsommerdepreference.lexpress.fr
production.customerhappiness.cloud.ger.systems
guideachat.lexpress.fr
livreblanc.lexpress.fr
*.lexpress.fr
seanapse-box.com
aconsommerdepreference.lexpress.fr
smartphone.lexpress.fr
staging.webhooks.abonnement.lexpress.fr
aconsommerdepreference.lexpress.fr
abonnement.lexpress.fr
lexpress.web.arc-cdn.net
support.lexpress.fr
*.lexpress.fr
tr.news.votreargent.lexpress.fr
tr.news.styles.lexpress.fr
tr.gestion.lexpress.fr
staging.api.abonnement.lexpress.fr
zm5d.lexpress.fr
tr.welcome.lexpress.fr
aconsommerdepreference.lexpress.fr
js-pre-boutique.lexpress.fr
lexpress.web.arc-cdn.net
tr.welcome.lexpress.fr
staging.abonnement.lexpress.fr
livreblanc.lexpress.fr
sandbox.api.abonnement.lexpress.fr
zm5d.lexpress.fr
tr.news.lentreprise.lexpress.fr
abonnement.lexpress.fr
devis.votreargent.lexpress.fr
tr.news.styles.lexpress.fr
zm5d.lexpress.fr
aconsommerdepreference.lexpress.fr
*.lexpress.fr
energie.votreargent.lexpress.fr
livreblanc.lexpress.fr
infos.lexpress.fr
aconsommerdepreference.lexpress.fr
event.lexpress.fr
livreblanc.lexpress.fr
tr.news.lentreprise.lexpress.fr
livreblanc.lexpress.fr
assurance-emprunteur.votreargent.lexpress.fr
tr.news.lexpress.fr
tr.welcome.lexpress.fr
boutique.lexpress.fr
*.lexpress.fr
shopping.lexpress.fr
tr.promotion.lexpress.fr
smartphone.lexpress.fr
tr.gestion.lexpress.fr
defigrandesecoles.lexpress.fr
energie.votreargent.lexpress.fr
aconsommerdepreference.lexpress.fr
*.lexpress.fr
mock.lexpress.fr
codepromo.lexpress.fr
livreblanc.lexpress.fr
support.lexpress.fr
extranet.lexpress.fr
staging.abonnement.lexpress.fr
energie.votreargent.lexpress.fr
zm5d.lexpress.fr
event.lexpress.fr
tr.news.votreargent.lexpress.fr
staging.api.abonnement.lexpress.fr
tr.welcome.lexpress.fr
Certificate
The complete raw certificate details for bestmarques.lexpress.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBDCCBOygAwIBAgIQBhkhm8m9zLxToCwcxFlnCzANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjMwNjIxMDAwMDAwWhcNMjQwNjIwMjM1OTU5WjAi MSAwHgYDVQQDExdiZXN0bWFycXVlcy5sZXhwcmVzcy5mcjCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAL9ecpil6WeMIoftGzQvB9JiVTp5aRdxBU5bXEbZ huoxtn0ymhAXZOIWVLJkY29tY4caldmWC79L6Tg8m7APOkh/YmodUQEm6O+XFWgP 849dX4wlgYugzrO3RFIV+IdpYP7PHaLSYW69ugn2/ey2KmGPfvTQS5VdvnIDq3kS anv6Ke6O6/3lo8yiByHdFLN7pIYwtdTrmMa754bUbwsn/KU8ycuccFEV5CW1Bald vMMV0AjUSln5FBeqB7FLoa3tJkJbQ1JiR7tMXKLSHHwreLR/1awBUrni4eTrUAGB iLBRpJXI83M7L5g8fa5ihaeFuHv5jfq/ytawYuOkdRJ0bMMCAwEAAaOCAugwggLk MB8GA1UdIwQYMBaAFHjfkZBf7t6s9sV169VMVVPvJEq2MB0GA1UdDgQWBBSzfX1l MUv7sQ6NClZ8iEViWgjcuzAiBgNVHREEGzAZghdiZXN0bWFycXVlcy5sZXhwcmVz cy5mcjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93 d3cuZGlnaWNlcnQuY29tL0NQUzCBgAYIKwYBBQUHAQEEdDByMCQGCCsGAQUFBzAB hhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wSgYIKwYBBQUHMAKGPmh0dHA6Ly9j YWNlcnRzLmRpZ2ljZXJ0LmNvbS9FbmNyeXB0aW9uRXZlcnl3aGVyZURWVExTQ0Et RzIuY3J0MAkGA1UdEwQCMAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2AO7N 0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABiN959DAAAAQDAEcwRQIg F9jqCfUjR8BMUDBQ/lFHAE43Zzu0jqRLvMhMtter6M8CIQCq9LNdwy6ysAuuKLah oql6JnMMTYFsmPof4iR717PakwB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7 v6s52IRzAAABiN959EoAAAQDAEcwRQIgf31LoT29XWLvOW7S9d4J1SfN/OPHviVN +A/6VrMprMUCIQCOZcfwOX4BuE62iObarJ0KrEJrHiv9gbMiS5OwuuholgB3ANq2 v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiN958+8AAAQDAEgwRgIh AN+U/jxRDpOEl1BZI7590NfRuynwzbgGfX30fygfbqafAiEAwDKpwLZOw6dFtOEq +VP0mGikyAPx8wjridh9ByNTkgAwDQYJKoZIhvcNAQELBQADggEBAOXPcI4pyPqf BDTuQyJbLAgJZznptDuzWauOt8dH6shPFjwjxu/JEvgEwPcuhMBsMpnWrZ6bUELP buUtwQegL0iMEDkL/rtttxma19qd+YE3L3b8Ilud+ctGPuYDT5kkhrqN635w2eMk Ae1DbKxciqjljK0kLf/JvQlh9GRc3e1yhBLHnUXml7a5DSucXG+obrMtieJjDdA2 dl7VIglwyBS4bYQzQvQreDh+QEVSE0A0zpn48UdQRbeqJN+4aRV7zbq7boE+ZXMd JllOA5EzEpZgVqpC74rFw296dfjuBOkIpUt1ZaBSKrR8r6Yzn0btfXB7hzXlfkpo 0UhU5QGN/KQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv15ymKXpZ4wih+0bNC8H 0mJVOnlpF3EFTltcRtmG6jG2fTKaEBdk4hZUsmRjb21jhxqV2ZYLv0vpODybsA86 SH9iah1RASbo75cVaA/zj11fjCWBi6DOs7dEUhX4h2lg/s8dotJhbr26Cfb97LYq YY9+9NBLlV2+cgOreRJqe/op7o7r/eWjzKIHId0Us3ukhjC11OuYxrvnhtRvCyf8 pTzJy5xwURXkJbUFqV28wxXQCNRKWfkUF6oHsUuhre0mQltDUmJHu0xcotIcfCt4 tH/VrAFSueLh5OtQAYGIsFGklcjzczsvmDx9rmKFp4W4e/mN+r/K1rBi46R1EnRs wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8105857058490916935006201824723691275 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bestmarques.lexpress.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24158090116483648425356840302073417702748072518724738241058586832640160296663103346783713697620640634700984661350786083781605796009414061109264835873795291938725591017371602953993504426622728814687198323584461836499991989750236282715745468376784567287775414917084940796402925703997378193613601956617682865688673839047162195784678467332491420472875849525210151444117716225885037411167475236746579622163041511115488987111313757816256161152413391047041231692140030286686687070398454675261358564587531169141787777442554348248659464535200012053009263444093195798501514937044683232690163517151234882995698996904789850483907 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b37d7d65314bfbb10e8d0a567c8845625a08dcbb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bestmarques.lexpress.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00e5cf708e29c8fa9f0434ee43225b2c08096739e9b43bb359ab8eb7c747eac84f163c23c6efc912f804c0f72e84c06c3299d6ad9e9b5042cf6ee52dc107a02f488c10390bfebb6db7199ad7da9df981372f76fc225b9df9cb463ee6034f992486ba8deb7e70d9e32401ed436cac5c8aa8e58cad242dffc9bd0961f4645cdded728412c79d45e697b6b90d2b9c5c6fa86eb32d89e2630dd036765ed5220970c814b86d843342f42b78387e404552134034ce99f8f1475045b7aa24dfb869157bcdbabb6e813e65731d26594e03913312966056aa42ef8ac5c36f7a75f8ee04e908a54b7565a0522ab47cafa6339f46ed7d707b8735e57e4a68d14854e5018dfca4