ad01.amcnt.amc.edu
- Albany Medical Center -
Issued by DigiCert Global CA G2
About this certificate
This digital certificate with serial number 08:cc:02:11:d5:bb:d1:06:b0:f1:7c:7b:ff:6a:09:f6 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Albany Medical Center
Organization:
Albany Medical Center
Organization unit: IT
Organization unit: IT
State / Province:
New York
Locality: Albany
Country: US
Locality: Albany
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:cc:02:11:d5:bb:d1:06:b0:f1:7c:7b:ff:6a:09:f6Serial Number (int): 11693094503265765183525193102379321846
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 63:d1:f4:31:4c:07:0c:9a:1c:0b:69:c7:d5:ba:e8:fc:57:7c:28:7c
AuthorityKeyId: 24:6e:2b:2d:d0:6a:92:51:51:25:69:01:aa:9a:47:a6:89:e7:40:20
Fingerprint (sha1): 70:a5:98:26:d7:5a:0e:1f:d6:60:6b:30:91:cd:de:6b:83:9f:74:6c
Fingerprint (sha256): 0f:52:de:8c:e2:59:d2:cd:16:a3:5f:85:cb:e0:d5:d6:08:14:1c:35:b1:78:0b:96:c9:5e:47:48:73:e5:77:6b
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalCAG2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalCAG2.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalCAG2.crl
Check the revocation status for certificate ad01.amcnt.amc.edu
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ad01.amcnt.amc.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ad01.amcnt.amc.edu
ad-ldap.amc.edu
ad-ldap.amc.edu
Other certificates including the domain name amc.edu
(limited to 100 certificates)
citrix.amc.edu
misecure.amc.edu
AHSFHIRPROD.AMC.EDU
amcimeuq02.amc.edu
community.amc.edu
pamsupport.amc.edu
mediasite.amc.edu
sft.amc.edu
www.amc.edu
*.amc.edu
cucmexpe02.amc.edu
www.amc.edu
spauth.amc.edu
citrix.ext.amc.edu
wcms.amc.edu
sharepoint.amc.edu
sft.amc.edu
ms35.amcnt.amc.edu
lifeimg01.amc.edu
isite.amc.edu
mivsp.amc.edu
citrix.amc.edu
academic.amc.edu
ms52.amc.edu
CISEPOL5.amc.edu
ad01.amcnt.amc.edu
*.amc.edu
sakai.amc.edu
connectmeeting.amc.edu
ms35.amcnt.amc.edu
mediasite.amc.edu
cucmexpe02.amc.edu
mail1.amc.edu
sts.amc.edu
intranet.amc.edu
www.amc.edu
sft.amc.edu
test-paygw.amc.edu
AHSACDM01A.amcnt.amc.edu
sakai.amc.edu
prenataltest.amc.edu
cucmexpe02.amc.edu
myaccount.amc.edu
sakai.amc.edu
smail.amc.edu
engage.amc.edu
www.amc.edu
citrix.ext.amc.edu
ms35.amcnt.amc.edu
sft.amc.edu
hcweb01.amcnt.amc.edu
wcms.amc.edu
paygw.amc.edu
cucmexpc02.amc.edu
*.elibrary.amc.edu
cucmexpe02.amc.edu
academic.amc.edu
AHSACDM01B.AMCNT.AMC.EDU
analytics-t.amc.edu
ms387t.amc.edu
amcvpn.amc.edu
secure.iamaccurt1.amcnt.amc.edu
mivsp.amc.edu
ad09.amcnt.amc.edu
myaccount.amc.edu
amcsecurelink.amc.edu
sakai.amc.edu
amcvpn.amc.edu
soarianedm.amc.edu
sharepoint.amc.edu
docs.amc.edu
academic.amc.edu
wcms.amc.edu
connect.amc.edu
sts.amc.edu
connect.amc.edu
www.amc.edu
analytics.amc.edu
pay.amc.edu
prenatal.amc.edu
community.amc.edu
amc.edu
citrix.amc.edu
sharepoint.amc.edu
citrix.amc.edu
prenataltest.amc.edu
guest.amc.edu
webadvisor.amc.edu
md-citrix.amc.edu
webadvisor.amc.edu
vslides.amc.edu
sakai.amc.edu
rationalretention.amc.edu
paygw.amc.edu
sasoffice01.amc.edu
AHSFHIRT.AMC.EDU
*.elibrary.amc.edu
amcvpn.amc.edu
www.amc.edu
mail1.amc.edu
misecure.amc.edu
AHSFHIRPROD.AMC.EDU
amcimeuq02.amc.edu
community.amc.edu
pamsupport.amc.edu
mediasite.amc.edu
sft.amc.edu
www.amc.edu
*.amc.edu
cucmexpe02.amc.edu
www.amc.edu
spauth.amc.edu
citrix.ext.amc.edu
wcms.amc.edu
sharepoint.amc.edu
sft.amc.edu
ms35.amcnt.amc.edu
lifeimg01.amc.edu
isite.amc.edu
mivsp.amc.edu
citrix.amc.edu
academic.amc.edu
ms52.amc.edu
CISEPOL5.amc.edu
ad01.amcnt.amc.edu
*.amc.edu
sakai.amc.edu
connectmeeting.amc.edu
ms35.amcnt.amc.edu
mediasite.amc.edu
cucmexpe02.amc.edu
mail1.amc.edu
sts.amc.edu
intranet.amc.edu
www.amc.edu
sft.amc.edu
test-paygw.amc.edu
AHSACDM01A.amcnt.amc.edu
sakai.amc.edu
prenataltest.amc.edu
cucmexpe02.amc.edu
myaccount.amc.edu
sakai.amc.edu
smail.amc.edu
engage.amc.edu
www.amc.edu
citrix.ext.amc.edu
ms35.amcnt.amc.edu
sft.amc.edu
hcweb01.amcnt.amc.edu
wcms.amc.edu
paygw.amc.edu
cucmexpc02.amc.edu
*.elibrary.amc.edu
cucmexpe02.amc.edu
academic.amc.edu
AHSACDM01B.AMCNT.AMC.EDU
analytics-t.amc.edu
ms387t.amc.edu
amcvpn.amc.edu
secure.iamaccurt1.amcnt.amc.edu
mivsp.amc.edu
ad09.amcnt.amc.edu
myaccount.amc.edu
amcsecurelink.amc.edu
sakai.amc.edu
amcvpn.amc.edu
soarianedm.amc.edu
sharepoint.amc.edu
docs.amc.edu
academic.amc.edu
wcms.amc.edu
connect.amc.edu
sts.amc.edu
connect.amc.edu
www.amc.edu
analytics.amc.edu
pay.amc.edu
prenatal.amc.edu
community.amc.edu
amc.edu
citrix.amc.edu
sharepoint.amc.edu
citrix.amc.edu
prenataltest.amc.edu
guest.amc.edu
webadvisor.amc.edu
md-citrix.amc.edu
webadvisor.amc.edu
vslides.amc.edu
sakai.amc.edu
rationalretention.amc.edu
paygw.amc.edu
sasoffice01.amc.edu
AHSFHIRT.AMC.EDU
*.elibrary.amc.edu
amcvpn.amc.edu
www.amc.edu
mail1.amc.edu
Certificate
The complete raw certificate details for ad01.amcnt.amc.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIQCMwCEdW70Qaw8Xx7/2oJ9jANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMR4wHAYDVQQDExVE aWdpQ2VydCBHbG9iYWwgQ0EgRzIwHhcNMTkwNzA5MDAwMDAwWhcNMjEwNzExMTIw MDAwWjB7MQswCQYDVQQGEwJVUzERMA8GA1UECBMITmV3IFlvcmsxDzANBgNVBAcT BkFsYmFueTEeMBwGA1UEChMVQWxiYW55IE1lZGljYWwgQ2VudGVyMQswCQYDVQQL EwJJVDEbMBkGA1UEAxMSYWQwMS5hbWNudC5hbWMuZWR1MIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEApTV+eBl4RQZ34wlUJTjYxoALRPPzEJZjrqrG4CoH lHQhM7WwPaaJcaEKYk5HlNfEEnO+M4i2+eyWmK5la6Eew3s6Wd9e2DQYJx4Y+0nn 0N+29IyMM//pHkpBFwfkTHlrxs67nNOQsUZV1QdJoYpsBXVWfcEqqEFpVydZMeL4 gB06D6rQBYih0shnvKcERbcmDfMqA7ZTf7lUx6ZRT/jARxGglfMiSnv/uFAqS9YG yfxYflU4Y48s/Jadr8euKmRUHDfYn6jQN5PiNae/shWws8xCpIyEFbyDT9fztoVg k/MkfU+ycL4vUkoSWHyz5uufZK9FMx28M2nPHjcDW2yrlQIDAQABo4ICADCCAfww HwYDVR0jBBgwFoAUJG4rLdBqklFRJWkBqppHponnQCAwHQYDVR0OBBYEFGPR9DFM BwyaHAtpx9W66PxXfCh8MC4GA1UdEQQnMCWCEmFkMDEuYW1jbnQuYW1jLmVkdYIP YWQtbGRhcC5hbWMuZWR1MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwdwYDVR0fBHAwbjA1oDOgMYYvaHR0cDovL2NybDMuZGln aWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsQ0FHMi5jcmwwNaAzoDGGL2h0dHA6Ly9j cmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbENBRzIuY3JsMEwGA1UdIARF MEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2lj ZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMHQGCCsGAQUFBwEBBGgwZjAkBggrBgEFBQcw AYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMD4GCCsGAQUFBzAChjJodHRwOi8v Y2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxDQUcyLmNydDAJBgNV HRMEAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAh VlfC3tlm8BCVZmh4DnPQTJCN+ZfFYdbdjhu1kUpWpa0sVU3FCGpPFHVjg+uZA9ZY VT+QBdb/VjRswXtY80UJ+FTISOUtALlbhLYtvitMOuRsue3dGqjjNzW7eCwx0lta R/IWkokeoevYEmqmc2en5g3OVMfkDVjikeVc60kEWM5nG7YpbpGrW3vDHp2cQBw6 n8XZWB9SQ8aPj1S/AwostCqdHAAE/eocGGPI82oHr7vudgiQyvowsVIZTpWLZu30 5ZIQIOE2wlwEGydPHdAs9Lt9sjCUrzsPEw1TkQ3F2V9x3PxBnEIIZ1l+sX1k2r2w TM50sqakMFMBgpNOberL -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApTV+eBl4RQZ34wlUJTjY xoALRPPzEJZjrqrG4CoHlHQhM7WwPaaJcaEKYk5HlNfEEnO+M4i2+eyWmK5la6Ee w3s6Wd9e2DQYJx4Y+0nn0N+29IyMM//pHkpBFwfkTHlrxs67nNOQsUZV1QdJoYps BXVWfcEqqEFpVydZMeL4gB06D6rQBYih0shnvKcERbcmDfMqA7ZTf7lUx6ZRT/jA RxGglfMiSnv/uFAqS9YGyfxYflU4Y48s/Jadr8euKmRUHDfYn6jQN5PiNae/shWw s8xCpIyEFbyDT9fztoVgk/MkfU+ycL4vUkoSWHyz5uufZK9FMx28M2nPHjcDW2yr lQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11693094503265765183525193102379321846 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global CA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-07-11 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Albany' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Albany Medical Center' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ad01.amcnt.amc.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20855699203852060778690910555676559901102120995692376755048687921751107388427115395306250374050426692591919428879163619872078067797234969753108511653675450042856459700200000140478519504836318415193380124306857652767064766139559081206857726046909043006006356576980506477483152281518633115927233898008177195676267862451096766735355943956063018140250082351243077766409169563931532898176668726100299379151366505376622598869460100736834631559993316603878436934103879348864820084115220810459356271490324094972586641698681298610322974895942737970290278038169881675605977279783799917685011012030939860552107950775712147614613 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 246e2b2dd06a925151256901aa9a47a689e74020 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 63d1f4314c070c9a1c0b69c7d5bae8fc577c287c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ad01.amcnt.amc.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ad-ldap.amc.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalCAG2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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