qpr.pershing.com
- Pershing LLC -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0e:c1:6d:38:b2:b6:d6:6d:bf:97:53:de:d2:cc:8c:f7 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Pershing LLC
Organization:
Pershing LLC
Organization unit: Client Technology Solutions
Organization unit: Client Technology Solutions
State / Province:
New Jersey
Locality: Jersey City
Country: US
Locality: Jersey City
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:c1:6d:38:b2:b6:d6:6d:bf:97:53:de:d2:cc:8c:f7Serial Number (int): 19613520509419311642136118404752116983
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 33:13:34:1a:92:01:61:34:a0:63:e0:9c:a3:19:10:28:7b:8e:ed:38
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): da:dc:af:72:63:a5:25:e2:a2:36:04:d3:93:23:f4:04:1a:c1:7a:18
Fingerprint (sha256): 0f:6c:d8:c5:ca:82:b1:5d:45:ef:02:9f:5c:51:8f:41:a3:e0:a9:22:ee:63:3c:bd:76:59:60:5b:04:a6:6b:b4
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate qpr.pershing.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for qpr.pershing.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
qpr.pershing.com
Other certificates including the domain name pershing.com
(limited to 100 certificates)
coh.pershing.com
ccenter.pershing.com
bc.pershing.com
support.pershing.com
info.bnymellon.com
inside.pershing.com
investor.pershing.com
pershing.com
information.pershing.com
investor.pershing.com
voiceware.pershing.com
pershing.com
insite.pershing.com
jtapcentral.pershing.com
cfat.pershing.com
ccenter.pershing.com
data.pershing.com
cfat.pershing.com
content.pershing.com
mft.sfg.bnymellon.com
uat-bondwave.pershing.com
pershing.com
roars.pershing.com
uat-bondwave.pershing.com
bc.pershing.com
mqmf-mqu1.pershing.com
remote1.pershing.com
bc.pershing.com
voiceware.pershing.com
remote1.pershing.com
insite.pershing.com
retirement.pershing.com
xat-bondwave.pershing.com
qc.pershing.com
investorportal.pershing.com
xne1e1.bnymellon.net
roars.pershing.com
files.pershing.com
mod-content.pershing.com
qpr.pershing.com
infodirect.pershing.com
demo-pernet.pershing.com
xat-bondwave.pershing.com
services.pershing.com
data.pershing.com
bc.pershing.com
qpr.pershing.com
ice2roars2.bnymellon.net
sni243645.cloudflaressl.com
information.pershing.com
mqmf-mqu2.pershing.com
pershing.com
pershing.com
mansee-test-external.dev.pershing.com
managergateway.pershing.com
support.pershing.com
services.pershing.com
www.pershing.com
data.pershing.com
xat-bondwave.pershing.com
voiceware.pershing.com
sni243645.cloudflaressl.com
controlcenter.pershing.com
cfat.pershing.com
content-demo.pershing.com
cfat.pershing.com
insite.pershing.com
pernet.pershing.com
content.pershing.com
dasf-saml.sso.pershing.com
bc.pershing.com
actimize.pershing.com
pernet.pershing.com
files.pershing.com
www.pershing.com
mqmf-mqu2.pershing.com
managergateway.pershing.com
managergateway.pershing.com
data.pershing.com
standardfiles.pershing.com
communications.pershing.com
actimize.pershing.com
info.bnymellon.com
controlcenter.pershing.com
mod-content.pershing.com
uat-bondwave.pershing.com
actimizedemo.pershing.com
xat-insite.pershing.com
xne1e1.bnymellon.net
remote2.pershing.com
infodirect.pershing.com
uit.pershing.com
ftps5.pershing.com
mft.sfg.bnymellon.com
iceroars2.pershing.com
files.pershing.com
insite.pershing.com
iceroars2.pershing.com
files.pershing.com
insite.pershing.com
ccenter.pershing.com
bc.pershing.com
support.pershing.com
info.bnymellon.com
inside.pershing.com
investor.pershing.com
pershing.com
information.pershing.com
investor.pershing.com
voiceware.pershing.com
pershing.com
insite.pershing.com
jtapcentral.pershing.com
cfat.pershing.com
ccenter.pershing.com
data.pershing.com
cfat.pershing.com
content.pershing.com
mft.sfg.bnymellon.com
uat-bondwave.pershing.com
pershing.com
roars.pershing.com
uat-bondwave.pershing.com
bc.pershing.com
mqmf-mqu1.pershing.com
remote1.pershing.com
bc.pershing.com
voiceware.pershing.com
remote1.pershing.com
insite.pershing.com
retirement.pershing.com
xat-bondwave.pershing.com
qc.pershing.com
investorportal.pershing.com
xne1e1.bnymellon.net
roars.pershing.com
files.pershing.com
mod-content.pershing.com
qpr.pershing.com
infodirect.pershing.com
demo-pernet.pershing.com
xat-bondwave.pershing.com
services.pershing.com
data.pershing.com
bc.pershing.com
qpr.pershing.com
ice2roars2.bnymellon.net
sni243645.cloudflaressl.com
information.pershing.com
mqmf-mqu2.pershing.com
pershing.com
pershing.com
mansee-test-external.dev.pershing.com
managergateway.pershing.com
support.pershing.com
services.pershing.com
www.pershing.com
data.pershing.com
xat-bondwave.pershing.com
voiceware.pershing.com
sni243645.cloudflaressl.com
controlcenter.pershing.com
cfat.pershing.com
content-demo.pershing.com
cfat.pershing.com
insite.pershing.com
pernet.pershing.com
content.pershing.com
dasf-saml.sso.pershing.com
bc.pershing.com
actimize.pershing.com
pernet.pershing.com
files.pershing.com
www.pershing.com
mqmf-mqu2.pershing.com
managergateway.pershing.com
managergateway.pershing.com
data.pershing.com
standardfiles.pershing.com
communications.pershing.com
actimize.pershing.com
info.bnymellon.com
controlcenter.pershing.com
mod-content.pershing.com
uat-bondwave.pershing.com
actimizedemo.pershing.com
xat-insite.pershing.com
xne1e1.bnymellon.net
remote2.pershing.com
infodirect.pershing.com
uit.pershing.com
ftps5.pershing.com
mft.sfg.bnymellon.com
iceroars2.pershing.com
files.pershing.com
insite.pershing.com
iceroars2.pershing.com
files.pershing.com
insite.pershing.com
Certificate
The complete raw certificate details for qpr.pershing.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgIQDsFtOLK21m2/l1Pe0syM9zANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwNjE1MDAwMDAwWhcN MTkwMTE0MTIwMDAwWjCBkDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCk5ldyBKZXJz ZXkxFDASBgNVBAcTC0plcnNleSBDaXR5MRUwEwYDVQQKEwxQZXJzaGluZyBMTEMx JDAiBgNVBAsTG0NsaWVudCBUZWNobm9sb2d5IFNvbHV0aW9uczEZMBcGA1UEAxMQ cXByLnBlcnNoaW5nLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AM/W86FxouSidkex3KXKqkmaTYqhaNT7gILsgoNXEc0PKzPkM/xex1NYACyl3zCz E2tBPs7D5e4NAs7suciPRVl6wD6cpuccHT/T4u9vOqbXV15QuKtg+sTMb3Ctap2p VnM4jJdQT6vfooXEgF8Ct5WwE2ufCtmq1H5PKvRs1PpO04RmXHwkskg8YMln/ULf cHs5TCLgFHM1zhOWtZ6mfOagM4geMzIrX1ah1t8K6gfceatSBLR5ijph6ciBln3x qJHhtJayNPBIuQ/Rswp3YUBSo2MdDkA/Q8Yl3lkMNdrgAF6fdh7T5bGtFbiQurYg /JhWcY9AWo9jcTV63FUEbZ0CAwEAAaOCAekwggHlMB8GA1UdIwQYMBaAFA+AYRyC MWHVLyjnjUY4tCzhxtniMB0GA1UdDgQWBBQzEzQakgFhNKBj4JyjGRAoe47tODAb BgNVHREEFDASghBxcHIucGVyc2hpbmcuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0 cDovL2NybDMuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwL6AtoCuGKWh0 dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMEwGA1UdIARF MEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2lj ZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMHwGCCsGAQUFBwEBBHAwbjAkBggrBgEFBQcw AYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEYGCCsGAQUFBzAChjpodHRwOi8v Y2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0Eu Y3J0MAkGA1UdEwQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQEL BQADggEBAA4BueD+VjVtw9onJzRiFbpeYHxoHzQpTk5unDylKYVHRmy8MbDPdISD bybh5PSubfdN1iOnMHL2DknHL+4CuJeTIOcWF0+EYXnINi5J+gnsPxZx9zjYwWZA AWnTFkJIWKYPh6gRm+xml7MjOl2zB33bvy97Uq68v5VqdGDstwYHtwgd96ukbc35 kiEwAX52PkHDG3Qc6qKOcxBPPxBHzU+LienNdmoJ1Bd4n1psRh1MrPakRsYRwpN2 jT8zWS81dpkkRjmjXmnkrgwTwF1DfJR7ITcARM6Aum62W5QUXzairP0yMXxu7uw9 W8Wsey/8K8LnzztnTplWawudEs2HSjM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz9bzoXGi5KJ2R7Hcpcqq SZpNiqFo1PuAguyCg1cRzQ8rM+Qz/F7HU1gALKXfMLMTa0E+zsPl7g0Czuy5yI9F WXrAPpym5xwdP9Pi7286ptdXXlC4q2D6xMxvcK1qnalWcziMl1BPq9+ihcSAXwK3 lbATa58K2arUfk8q9GzU+k7ThGZcfCSySDxgyWf9Qt9wezlMIuAUczXOE5a1nqZ8 5qAziB4zMitfVqHW3wrqB9x5q1IEtHmKOmHpyIGWffGokeG0lrI08Ei5D9GzCndh QFKjYx0OQD9DxiXeWQw12uAAXp92HtPlsa0VuJC6tiD8mFZxj0Baj2NxNXrcVQRt nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19613520509419311642136118404752116983 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-14 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Jersey City' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pershing LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Client Technology Solutions' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'qpr.pershing.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26237325753009496990364071329000924451761039999189020486321023232946568566258624153536583032336097682257489446462082657316770473568031504224386951041841222723713748750776159621967227912583857847630840051718077205587999730773276688586324526135261695486351090302187966900066371008868163700757658067158192059091977631679288378899834817318130863258175544963137487756373029560332610780322544422608928728939739634183076043783803858867201975183243984142058800483692835933503520667039201935021154378642938760828937739452948144146067766518662954041644234097168330962441804097609544450803734618054810799148536627971790138011037 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3313341a92016134a063e09ca31910287b8eed38 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qpr.pershing.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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