*.aimco.alberta.ca
- Alberta Investment Management Corporation -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0e:99:8b:07:2a:99:1a:56:eb:0a:1e:c0:8b:8c:07:df was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Alberta Investment Management Corporation
Organization:
Alberta Investment Management Corporation
State / Province:
Alberta
Locality: Edmonton
Country: CA
Locality: Edmonton
Country: CA
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:99:8b:07:2a:99:1a:56:eb:0a:1e:c0:8b:8c:07:dfSerial Number (int): 19406433183060156477640215866003687391
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 7c:60:70:02:59:41:8e:7d:f1:60:2f:af:e9:60:94:4e:63:dd:c0:b1
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): 37:29:a0:1e:25:65:cc:d2:b2:bb:7b:cb:8d:b7:4e:8b:0a:95:26:15
Fingerprint (sha256): 0f:58:5e:4c:0f:7c:b0:9c:10:fa:01:a9:61:76:2b:8a:3b:91:6a:04:45:e1:85:d6:a9:fb:bd:09:a4:30:5d:ee
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g5.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g5.crl
Check the revocation status for certificate *.aimco.alberta.ca
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.aimco.alberta.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.aimco.alberta.ca
aimco.alberta.ca
sa4500dc.aimco.alberta.ca
aimco.alberta.ca
sa4500dc.aimco.alberta.ca
Other certificates including the domain name alberta.ca
(limited to 100 certificates)
platform-test.myhealth.alberta.ca
foip.alberta.ca
fs.alt.alberta.ca
sslvs07.igloosoftware.com
hermis.alberta.ca
sip.aimco.alberta.ca
data.environment.alberta.ca
*.ae.alberta.ca
qa.myhealth.alberta.ca
vpn.loshared.alberta.ca
commercialhearings-internal.alberta.ca
mypass.alberta.ca
aemagis.gov.ab.ca
geodiscover.alberta.ca
qa.myhealth.alberta.ca
*.aimco.alberta.ca
seniors.alberta.ca
getfile.alberta.ca
abdlan.gov.ab.ca
*.acstraining.alberta.ca
sslvs07.igloosoftware.com
albertaready.aema.alberta.ca
sslvs07.igloosoftware.com
ext.sp.tb.alberta.ca
*.aet.alberta.ca
justice-digital.alberta.ca
lyncaccess2.gov.ab.ca
otdr.health.alberta.ca
platform.healthvault.alberta.ca
transportal.alberta.ca
projects.transportation.alberta.ca
sslvs07.igloosoftware.com
mhaloginppe.alberta.ca
lufsp.alberta.ca
regionaldashboard.alberta.ca
surplusuat.alberta.ca
abdlan.gov.ab.ca
sslvs07.igloosoftware.com
exts2.aep.alberta.ca
ppe2.myhealth.alberta.ca
sni.cloudflaressl.com
sslvs07.igloosoftware.com
alberta.ca
www.maps.srd.alberta.ca
ddi.health.alberta.ca
sslvs07.igloosoftware.com
defecttracking.health.alberta.ca
spin.stg.alt.alberta.ca
acc-qa.myhealth.alberta.ca
wa8.sp.alberta.ca
sslvs07.igloosoftware.com
mhalogin.alberta.ca
pats.alberta.ca
aemagis.gov.ab.ca
wildfire.alberta.ca
work.alberta.ca
account.healthvault.alberta.ca
*.aimco.alberta.ca
support.alberta.ca
pabapps.alberta.ca
siamsfs.madi.alberta.ca
info.health.alberta.ca
connect.tbf.alberta.ca
sslvs07.igloosoftware.com
www.opra.alberta.ca
sslvs07.igloosoftware.com
work.alberta.ca
*.aimco.alberta.ca
tls.automattic.com
www.hrextcguat1.alberta.ca
alberta.ca
citizens.sit.cloud.digitalid.alberta.ca
lyncaccess2.gov.ab.ca
api.iam.alberta.ca
abdlan.gov.ab.ca
uat.questaplus.alberta.ca
sni.cloudflaressl.com
www.hrextcg.alberta.ca
wildfire.alberta.ca
stpgrants.alberta.ca
secure.myloan.studentaid.alberta.ca
*.aet.alberta.ca
citizens.sit2.cloud.digitalid.alberta.ca
sslvs07.igloosoftware.com
aish-apply.alberta.ca
open.alberta.ca
stage.ecommittee.alberta.ca
caqc.alberta.ca
qa.myhealth.alberta.ca
*.aimco.alberta.ca
sslvs07.igloosoftware.com
saml.public.uat.sadfs.alberta.ca
vision.alberta.ca
maps.srd.alberta.ca
personaldirectives.alberta.ca
*.aimco.alberta.ca
projects.alberta.ca
data.iae.alberta.ca
Contractornet.ocya.alberta.ca
portfolio-management2.health.alberta.ca
foip.alberta.ca
fs.alt.alberta.ca
sslvs07.igloosoftware.com
hermis.alberta.ca
sip.aimco.alberta.ca
data.environment.alberta.ca
*.ae.alberta.ca
qa.myhealth.alberta.ca
vpn.loshared.alberta.ca
commercialhearings-internal.alberta.ca
mypass.alberta.ca
aemagis.gov.ab.ca
geodiscover.alberta.ca
qa.myhealth.alberta.ca
*.aimco.alberta.ca
seniors.alberta.ca
getfile.alberta.ca
abdlan.gov.ab.ca
*.acstraining.alberta.ca
sslvs07.igloosoftware.com
albertaready.aema.alberta.ca
sslvs07.igloosoftware.com
ext.sp.tb.alberta.ca
*.aet.alberta.ca
justice-digital.alberta.ca
lyncaccess2.gov.ab.ca
otdr.health.alberta.ca
platform.healthvault.alberta.ca
transportal.alberta.ca
projects.transportation.alberta.ca
sslvs07.igloosoftware.com
mhaloginppe.alberta.ca
lufsp.alberta.ca
regionaldashboard.alberta.ca
surplusuat.alberta.ca
abdlan.gov.ab.ca
sslvs07.igloosoftware.com
exts2.aep.alberta.ca
ppe2.myhealth.alberta.ca
sni.cloudflaressl.com
sslvs07.igloosoftware.com
alberta.ca
www.maps.srd.alberta.ca
ddi.health.alberta.ca
sslvs07.igloosoftware.com
defecttracking.health.alberta.ca
spin.stg.alt.alberta.ca
acc-qa.myhealth.alberta.ca
wa8.sp.alberta.ca
sslvs07.igloosoftware.com
mhalogin.alberta.ca
pats.alberta.ca
aemagis.gov.ab.ca
wildfire.alberta.ca
work.alberta.ca
account.healthvault.alberta.ca
*.aimco.alberta.ca
support.alberta.ca
pabapps.alberta.ca
siamsfs.madi.alberta.ca
info.health.alberta.ca
connect.tbf.alberta.ca
sslvs07.igloosoftware.com
www.opra.alberta.ca
sslvs07.igloosoftware.com
work.alberta.ca
*.aimco.alberta.ca
tls.automattic.com
www.hrextcguat1.alberta.ca
alberta.ca
citizens.sit.cloud.digitalid.alberta.ca
lyncaccess2.gov.ab.ca
api.iam.alberta.ca
abdlan.gov.ab.ca
uat.questaplus.alberta.ca
sni.cloudflaressl.com
www.hrextcg.alberta.ca
wildfire.alberta.ca
stpgrants.alberta.ca
secure.myloan.studentaid.alberta.ca
*.aet.alberta.ca
citizens.sit2.cloud.digitalid.alberta.ca
sslvs07.igloosoftware.com
aish-apply.alberta.ca
open.alberta.ca
stage.ecommittee.alberta.ca
caqc.alberta.ca
qa.myhealth.alberta.ca
*.aimco.alberta.ca
sslvs07.igloosoftware.com
saml.public.uat.sadfs.alberta.ca
vision.alberta.ca
maps.srd.alberta.ca
personaldirectives.alberta.ca
*.aimco.alberta.ca
projects.alberta.ca
data.iae.alberta.ca
Contractornet.ocya.alberta.ca
portfolio-management2.health.alberta.ca
Certificate
The complete raw certificate details for *.aimco.alberta.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgIQDpmLByqZGlbrCh7Ai4wH3zANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNjA2MDYwMDAwMDBaFw0xOTA2MjUxMjAwMDBa MIGDMQswCQYDVQQGEwJDQTEQMA4GA1UECBMHQWxiZXJ0YTERMA8GA1UEBxMIRWRt b250b24xMjAwBgNVBAoTKUFsYmVydGEgSW52ZXN0bWVudCBNYW5hZ2VtZW50IENv cnBvcmF0aW9uMRswGQYDVQQDDBIqLmFpbWNvLmFsYmVydGEuY2EwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQewpKv2vxzDx+InFP/ROD2fNPwt7jzgX7 M0/4HmpzKez1Jnlk7I6tk/tCguulXQsoaGWsM1FdBlmvcnX2aVkH/Q8SfL2FXPT/ CvqHUamF5SHudz+tIzL4BDDJMBTrFQWEjxv4D1ch9zJr5O/vfzU3Jp/x+/IfREHO yZOJmQSOF9ZDWSBGMu2wTT/5WRI/lNJga8NP7RMlH1V4hwR4ZP8NIUqTGZGIsBat 5ZPZbHs/q7pCvBX5HtTEAdxGYithbNWAIyIrL2zXSOczPUNPh9UUCfjVs0MjkQ1B YbmQd4qkTUHWbAtAhgeH7iXA5KiBRBuXcPlAGGuH7YXSBcg6fjezAgMBAAGjggIY MIICFDAfBgNVHSMEGDAWgBRRaP+QrwIHdTzM2WVkYqISuFlyOzAdBgNVHQ4EFgQU fGBwAllBjn3xYC+v6WCUTmPdwLEwSgYDVR0RBEMwQYISKi5haW1jby5hbGJlcnRh LmNhghBhaW1jby5hbGJlcnRhLmNhghlzYTQ1MDBkYy5haW1jby5hbGJlcnRhLmNh MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw dQYDVR0fBG4wbDA0oDKgMIYuaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3NoYTIt aGEtc2VydmVyLWc1LmNybDA0oDKgMIYuaHR0cDovL2NybDQuZGlnaWNlcnQuY29t L3NoYTItaGEtc2VydmVyLWc1LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAq MCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeB DAECAjCBgwYIKwYBBQUHAQEEdzB1MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5k aWdpY2VydC5jb20wTQYIKwYBBQUHMAKGQWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0 LmNvbS9EaWdpQ2VydFNIQTJIaWdoQXNzdXJhbmNlU2VydmVyQ0EuY3J0MAwGA1Ud EwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggEBAHdlUUdq8rQFGHhH48vnSd5DB6Bw KnAXclHZGuzWN0OIMyFqJTkKnE2I6NfhocXWQV5J+2Vrilod9quPuJEy29SFh7gr zD2taHZUuUIFMpRZMwoCtsgKAYT8RmRKftxrBgc5hmeP5bNR9tvPcxdvDyw7G121 YLqBBM8oLwP238TCBqt7gX2bt5MecRJE/FGGqGuRW344RkhLTeDvLR2z9Kpb1viX FZPI5xUbza+RHl0OqdnouOk3OrrPWg8oXXcF+o6BMvYvIs9LKcVKlamCgclnNt3w SWJ07Oodr4lnwTsk7HrCf+N9YsE9HbFbNsNZNKZEEuPaIXgOt1xXaAQax0s= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HsKSr9r8cw8fiJxT/0T g9nzT8Le484F+zNP+B5qcyns9SZ5ZOyOrZP7QoLrpV0LKGhlrDNRXQZZr3J19mlZ B/0PEny9hVz0/wr6h1GpheUh7nc/rSMy+AQwyTAU6xUFhI8b+A9XIfcya+Tv7381 Nyaf8fvyH0RBzsmTiZkEjhfWQ1kgRjLtsE0/+VkSP5TSYGvDT+0TJR9VeIcEeGT/ DSFKkxmRiLAWreWT2Wx7P6u6QrwV+R7UxAHcRmIrYWzVgCMiKy9s10jnMz1DT4fV FAn41bNDI5ENQWG5kHeKpE1B1mwLQIYHh+4lwOSogUQbl3D5QBhrh+2F0gXIOn43 swIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19406433183060156477640215866003687391 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-25 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Alberta' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Edmonton' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Alberta Investment Management Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.aimco.alberta.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26318240818397128563095442512119420705397098824052989272496422284501155089637366922534853240466366181367790933715821490469063434863986145467086143935383156943169316790517235477026425219176342666269451961548276945195108316517650602754929102195692701303759853257370283189894612031346759609915286885567333248476417543270338500388961539063827828551247116610992706479061285632710469048041947557136557619738732120278332054841274529599537200124407241904343146812729756556059460901991956736732651759790249328294264394382639305646078691319365803927307982321415454709304312671705289650186760431528384184285803849565523266123699 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7c60700259418e7df1602fafe960944e63ddc0b1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aimco.alberta.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aimco.alberta.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sa4500dc.aimco.alberta.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g5.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g5.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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