origin-apis-cat2-sm.usps.com
- United States Postal Service -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number a3:2a:df:77:09:5b:74:ee:dc:a4:36:89:7b:cd:48:6e was issued on by Sectigo Limited.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
United States Postal Service
Organization:
United States Postal Service
State / Province:
Minnesota
Country: US
Country: US
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): a3:2a:df:77:09:5b:74:ee:dc:a4:36:89:7b:cd:48:6eSerial Number (int): 216886772189388633102392577384069810286
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 4d:84:b6:77:a5:0e:8b:da:8a:ac:e8:89:ef:98:68:39:0b:aa:43:62
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 3d:6b:42:58:c6:7b:8b:20:5b:c1:a3:0f:27:72:9b:f9:7d:ca:2c:be
Fingerprint (sha256): 0f:dc:1e:3a:1d:2a:3a:bd:80:8c:6e:1c:96:e6:44:a6:61:db:74:e1:72:60:81:02:f5:9b:8a:d6:1c:b2:2f:7e
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate origin-apis-cat2-sm.usps.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for origin-apis-cat2-sm.usps.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
origin-apis-cat2-sm.usps.com
apis-cat2.usps.com
apis-cat2.usps.gov
origin-apis-cat2-ea.usps.com
origin-apis-cat2-ea.usps.gov
origin-apis-cat2-sm.usps.gov
apis-cat2.usps.com
apis-cat2.usps.gov
origin-apis-cat2-ea.usps.com
origin-apis-cat2-ea.usps.gov
origin-apis-cat2-sm.usps.gov
Other certificates including the domain name usps.com
(limited to 100 certificates)
extrpt.usps.com
dev-reship.usps.com
eddmr-dr.usps.com
sdx-cat.usps.com
federation.usps.com
crosswalk.usps.com
fast-cat.usps.com
pfoiapal.usps.com
cid-prod.usps.com
pwim-sit.usps.com
mid-cat.usps.com
*.usps.com
rims-imdas-sit.usps.com
pdx-cat.usps.com
pi.usps.com
lcrs.usps.com
q-mnas2see.usps.com
ereassign.usps.com
iletms-cat.usps.com
idp.usps.com
crosswalk-cat.usps.com
lgis-dev.usps.com
internationalclaims.usps.com
ea-webtools.usps.com
gateway.usps.com
www.usps.com
rims-imdas-cat.usps.com
eeo-dev.usps.com
myusps.gov
news.usps.com
crosswalk-cat.usps.com
pay.usps.com
crosswalk-dev.usps.com
poboxes.usps.com
vrsi-841990001i.usps.com
mdxtem.usps.com
mdx.usps.com
ereassign.usps.com
mdxcat.usps.com
sphone-prd.usps.com
ivs-sign.usps.com
cat1a.usps.com
catpx-custreg.usps.com
cat-services.usps.com
dbcalc-cat.usps.com
cat-dp-secure-customertools.usps.com
clds.usps.com
cat-services.usps.com
customerpulse.usps.com
abrm-prod.usps.com
efile-cat.usps.com
mailtracking.usps.com
onlineclaims.usps.com
qiv.usps.com
rims.usps.com
apt.usps.com
ecom-dev.usps.com
programregistration.usps.com
crosswalk.usps.com
dev-retail-pi.usps.com
customerpulse.usps.com
*.usps.com
webivr-sit.usps.com
epay-sit.usps.com
reship.usps.com
origin-stage-reg.usps.com
fast-tem.usps.com
anchor.usps.com
programregistration-cat2.usps.com
origin-apis-cat2-sm.usps.com
returns.usps.com
www.uspspostalone.com
efile-cat.usps.com
stage-postalpro.usps.com
onlineclaims.usps.com
www.uspspostalone.com
omas.usps.com
mid-cat.usps.com
pfsc.usps.com
idp-test.usps.com
ssmap.usps.com
USPS
devpx-about.usps.com
stage-einvoice.usps.com
eddmr-sit.usps.com
usps.com
eddmr-cat.usps.com
federation-cat.usps.com
c360faq.usps.com
gopost.usps.com
mteor-cat.usps.com
lcrs.usps.com
crosswalk-cat.usps.com
*.usps.com
facts.usps.com
dev-reship.usps.com
eddmr-dr.usps.com
sdx-cat.usps.com
federation.usps.com
crosswalk.usps.com
fast-cat.usps.com
pfoiapal.usps.com
cid-prod.usps.com
pwim-sit.usps.com
mid-cat.usps.com
*.usps.com
rims-imdas-sit.usps.com
pdx-cat.usps.com
pi.usps.com
lcrs.usps.com
q-mnas2see.usps.com
ereassign.usps.com
iletms-cat.usps.com
idp.usps.com
crosswalk-cat.usps.com
lgis-dev.usps.com
internationalclaims.usps.com
ea-webtools.usps.com
gateway.usps.com
www.usps.com
rims-imdas-cat.usps.com
eeo-dev.usps.com
myusps.gov
news.usps.com
crosswalk-cat.usps.com
pay.usps.com
crosswalk-dev.usps.com
poboxes.usps.com
vrsi-841990001i.usps.com
mdxtem.usps.com
mdx.usps.com
ereassign.usps.com
mdxcat.usps.com
sphone-prd.usps.com
ivs-sign.usps.com
cat1a.usps.com
catpx-custreg.usps.com
cat-services.usps.com
dbcalc-cat.usps.com
cat-dp-secure-customertools.usps.com
clds.usps.com
cat-services.usps.com
customerpulse.usps.com
abrm-prod.usps.com
efile-cat.usps.com
mailtracking.usps.com
onlineclaims.usps.com
qiv.usps.com
rims.usps.com
apt.usps.com
ecom-dev.usps.com
programregistration.usps.com
crosswalk.usps.com
dev-retail-pi.usps.com
customerpulse.usps.com
*.usps.com
webivr-sit.usps.com
epay-sit.usps.com
reship.usps.com
origin-stage-reg.usps.com
fast-tem.usps.com
anchor.usps.com
programregistration-cat2.usps.com
origin-apis-cat2-sm.usps.com
returns.usps.com
www.uspspostalone.com
efile-cat.usps.com
stage-postalpro.usps.com
onlineclaims.usps.com
www.uspspostalone.com
omas.usps.com
mid-cat.usps.com
pfsc.usps.com
idp-test.usps.com
ssmap.usps.com
USPS
devpx-about.usps.com
stage-einvoice.usps.com
eddmr-sit.usps.com
usps.com
eddmr-cat.usps.com
federation-cat.usps.com
c360faq.usps.com
gopost.usps.com
mteor-cat.usps.com
lcrs.usps.com
crosswalk-cat.usps.com
*.usps.com
facts.usps.com
Certificate
The complete raw certificate details for origin-apis-cat2-sm.usps.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHeDCCBmCgAwIBAgIRAKMq33cJW3Tu3KQ2iXvNSG4wDQYJKoZIhvcNAQELBQAw gZUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE9MDsGA1UE AxM0U2VjdGlnbyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0yMzA5MjcwMDAwMDBaFw0yNDA5MjYyMzU5NTlaMG8xCzAJBgNV BAYTAlVTMRIwEAYDVQQIEwlNaW5uZXNvdGExJTAjBgNVBAoTHFVuaXRlZCBTdGF0 ZXMgUG9zdGFsIFNlcnZpY2UxJTAjBgNVBAMTHG9yaWdpbi1hcGlzLWNhdDItc20u dXNwcy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf6t3A57Ca 0MaL3YmGnyQReQYEygZZdY+6tMMyPIYuFliMJ+w6kIQdQc5II39fU3G9vg6CyDJ9 NC3reKQDHFUzrzhjlkn+ed0g2oSaQnmGq2KHK+eF/2FUeOSZYR6ubuyQC+oliKNp Ev8Q9HBrzNHtRiDur1olnF4Myci9btDhWEeInsWWhc3Gt/bxk8IPiPyXb+cDaCdq iVgky6GsQm35izz7N+mSWYvQDzWXbZkprRf8O0RwH4xZeucvVhGXOsp9zqvHk7ri 772G00k8QOqhc48gTDO13W5J6nOxeI09j5L0RwAcwzjoJBkhR3KB90dOZzEwdHhe DdC/Ed7wYUctAgMBAAGjggPmMIID4jAfBgNVHSMEGDAWgBQX2dYlJ2f5McJJQ9kw NkSMbKlP6zAdBgNVHQ4EFgQUTYS2d6UOi9qKrOiJ75hoOQuqQ2IwDgYDVR0PAQH/ BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMEoGA1UdIARDMEEwNQYMKwYBBAGyMQECAQMEMCUwIwYIKwYBBQUHAgEWF2h0 dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBaBgNVHR8EUzBRME+gTaBL hklodHRwOi8vY3JsLnNlY3RpZ28uY29tL1NlY3RpZ29SU0FPcmdhbml6YXRpb25W YWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3JsMIGKBggrBgEFBQcBAQR+MHwwVQYI KwYBBQUHMAKGSWh0dHA6Ly9jcnQuc2VjdGlnby5jb20vU2VjdGlnb1JTQU9yZ2Fu aXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQwIwYIKwYBBQUHMAGG F2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFq AWgAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYrWr+gtAAAE AwBHMEUCIQCVdmczKfiuaFOk6nziP/wM+ALrQDcCM9N2iffUBTtjKgIgRXmbRUr+ RK9V789/N+LvW02rBwd4U1QZCUz1H4VHlF8AdwDatr9rP7W2Ip+bwrtca+hwkXFs u1GEhTS9pD0wSNf7qwAAAYrWr+iMAAAEAwBIMEYCIQCJz++NZAh6Z/IzG2ZwQNtI 0d6ra/i60sbv0bYxckJLGwIhAJS8jMZhgMbbyBitGm1prlwNj2yYnW1SDwurQVlK 0X1kAHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGK1q/oXAAA BAMARjBEAiAO00TxMMz+og7bOAN8Q0aThMNUvZcjxYy2c16Mb3662AIgFq5z8zP0 D1cyb12/FpYPL+wlmKvqDc9TebSVSDTd1mgwgasGA1UdEQSBozCBoIIcb3JpZ2lu LWFwaXMtY2F0Mi1zbS51c3BzLmNvbYISYXBpcy1jYXQyLnVzcHMuY29tghJhcGlz LWNhdDIudXNwcy5nb3aCHG9yaWdpbi1hcGlzLWNhdDItZWEudXNwcy5jb22CHG9y aWdpbi1hcGlzLWNhdDItZWEudXNwcy5nb3aCHG9yaWdpbi1hcGlzLWNhdDItc20u dXNwcy5nb3YwDQYJKoZIhvcNAQELBQADggEBAC8J93TWPEubPU9hwekkt0YTVA+M I8adUdmYzSUGWtfNUrdFACz6CxYFOnsKe8RH0OE7nZ1L3h8/05BskWhcowWbOcIX 4U7JZF/YWOYjeB6mepj3cPrxkNLo70/T1/nWfb0rGdySNSrO3O6BISJ8qUKwVwVA KRNICy+Bw2YipGfrppf9R7U+m+oH+YhKeb2OonP2Yeu4keAoh3PS0ce9CYrMW6Po HxFHvhveLxiuxaUdN2EcmgKujCz5f6jntP8Kx8OhcGNd4nObZ8YqqaBJYS+SvZAS B8oAHayBy8CjYfkgkibABkDI6yfULwCSQC2nqLgiJ8auzuwu/YdUNbig+h8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+rdwOewmtDGi92Jhp8k EXkGBMoGWXWPurTDMjyGLhZYjCfsOpCEHUHOSCN/X1Nxvb4OgsgyfTQt63ikAxxV M684Y5ZJ/nndINqEmkJ5hqtihyvnhf9hVHjkmWEerm7skAvqJYijaRL/EPRwa8zR 7UYg7q9aJZxeDMnIvW7Q4VhHiJ7FloXNxrf28ZPCD4j8l2/nA2gnaolYJMuhrEJt +Ys8+zfpklmL0A81l22ZKa0X/DtEcB+MWXrnL1YRlzrKfc6rx5O64u+9htNJPEDq oXOPIEwztd1uSepzsXiNPY+S9EcAHMM46CQZIUdygfdHTmcxMHR4Xg3QvxHe8GFH LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 216886772189388633102392577384069810286 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'United States Postal Service' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'origin-apis-cat2-sm.usps.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28266958859407148955831219024473913829863609137346820895718476775941313225807686938259853750324634670756746764162227149865194023816754232109743149170196266149757728032220546978077261425895686815717387328489416252416835133409520599254361287640732430391589363870311654669444660947927387848561824704311699120099251408615250348086211426793111493624573282691248965894270895924065516764910606528938550841421717922298831403975533368653442652952565730709324882332590509753153317072120692491946303152117770552922394932475560973369341912940949559038193874969674212772197105931076798749209886693571363776337335238168723014633261 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4d84b677a50e8bda8aace889ef9868390baa4362 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 016800760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ad6afe82d00000403004730450221009576673329f8ae6853a4ea7ce23ffc0cf802eb40370233d37689f7d4053b632a022045799b454afe44af55efcf7f37e2ef5b4dab070778535419094cf51f8547945f007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018ad6afe88c000004030048304602210089cfef8d64087a67f2331b667040db48d1deab6bf8bad2c6efd1b63172424b1b02210094bc8cc66180c6dbc818ad1a6d69ae5c0d8f6c989d6d520f0bab41594ad17d64007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ad6afe85c000004030046304402200ed344f130ccfea20edb38037c43469384c354bd9723c58cb6735e8c6f7ebad8022016ae73f333f40f57326f5dbf16960f2fec2598abea0dcf5379b4954834ddd668 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (163 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-apis-cat2-sm.usps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apis-cat2.usps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apis-cat2.usps.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-apis-cat2-ea.usps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-apis-cat2-ea.usps.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-apis-cat2-sm.usps.gov' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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