usersettings-gsa.search.aol.com
- AOL, Inc -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0a:08:47:d8:4c:cd:2d:ba:88:c5:61:a8:0a:47:44:0c was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
AOL, Inc
Organization:
AOL, Inc
State / Province:
Virginia
Locality: Sterling
Country: US
Locality: Sterling
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:08:47:d8:4c:cd:2d:ba:88:c5:61:a8:0a:47:44:0cSerial Number (int): 13335275520851306186648076815606170636
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 11:4c:b1:04:39:99:16:ee:de:06:62:19:7b:b7:6e:54:e8:2a:06:7b
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): a0:77:9e:bc:d9:20:a8:ff:99:5c:de:ad:fe:0e:f6:0c:4d:62:a2:0e
Fingerprint (sha256): 10:ef:79:ef:ba:2d:2d:f8:e5:fb:bb:8f:d6:d5:7c:3c:11:78:18:1b:79:64:b7:f7:e8:f7:0a:83:c6:2a:1a:d2
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g1.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g1.crl
Check the revocation status for certificate usersettings-gsa.search.aol.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for usersettings-gsa.search.aol.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
usersettings-gsa.search.aol.com
usersettings-gsa.search.aolcloud.net
usersettings-gsa.search.aolcloud.net
Other certificates including the domain name aol.com
(limited to 100 certificates)
checkout.yahoo.com
login.yahoo.com
dmp-taxonomyui-s3.advertising.aol.com
orca.onevidao.aol.com
onebyaol.com
imspro.oneadserver.aol.com
psclick.aol.com
*.stage.login.yahoo.com
qa5.add.my.aol.com
sapp-dev-dc-v.ops.aol.com
pic.ops.aol.com
sybil.advertising.aol.com
cuda-ul01.red.aol.com
portal.dev.vidible.tv
portal-dev1-os.aol.com
makersnew.aol.com
stage.contenthub.aol.com
fe-jenkins.mail.aol.com
mybenefits.aol.com
lifestream.aol.com
aws.beta.aopui-service.advertising.aol.com
computercheckup.aol.com
crmtools.teamaol.com
egleqa.ops.aol.com
mysql-iwww.itsec.aol.com
vacationrentals.travel.aol.com
batsclient.mx.aol.com
selfcare.aol.com
imspro.oneadserver.aol.com
api.onesdk.aol.com
dev.productcentral.aol.com
release.sandbox.aol.com
jp.techcrunch.com
*.aol.com
relegence.aol.com
panorama-s01.netsec.aol.com
*.yahoo.com
ree-pci-proxy.services.aol.com
one-central-api-qa-mse-eks.mse-dev.aws.oath.cloud
release.sandbox.aol.com
msync.aol.com
*.sandbox.aol.com
help.channels.aol.com
nva9-lcd2.aolwave.aol.com
lifestore.qh.aol.com
mediaserver.qa.advertising.aol.com
services.onecreative.aol.com
onemobile.aol.com
scs.dev.obi.aol.com
casper.ops.aol.com
s2s-rtb-selector.eu-central-1.prod.one4p.aol.com
extuatdc-m01.externalstest.aol.com
apns-db-qa1-m01.mail.aol.com
api.onesdk.aol.com
*.add.my.aol.com
api.qai.obi.aol.com
aoluatdc-m03.aoltest.adlab.office.aol.com
webmail1.webmail.aol.com
*.ssp.verizonmedia.com
dc.aol.com
ibw-ws.aol.com
qa.onecreative.aol.com
buildbot.office.aol.com
checkout.yahoo.com
one.aol.com
*.mail.aol.com
contenthub.aol.com
gp-otp-mtc.remote.aol.com
src3.yahoo.com
src4.yahoo.com
dev.assist.aol.com
area51.aol.com
internal.calendar.yahoo.com
n.main.welcomescreen.aol.com
logstash.itsec.aol.com
src4.yahoo.com
one-demo.aol.com
*.calendar.aol.com
idsvcs.premiumservices.aol.com
migrationassist.aol.com
api.onemobile.aol.com
identity.aol.com
vzwesb.qa.obi.aol.com
ssp.yahooinc.com
membernotifications.aol.com
devopssec-util-a02.paranoids.aol.com
widgets.onemobile.aol.com
*.login.yahoo.com
ntc.remote.aol.com
usersettings-core.search.aol.com
web-qh.lifestream.aol.com
onedisplay.aol.com
searchfe.mail.aol.com
portal-os.aol.com
engineering.aol.com
api.qat.obi.aol.com
*.imap.mail.aol.com
*.ssp.verizonmedia.com
mps-qa.aol.com
wap.aol.com
login.yahoo.com
dmp-taxonomyui-s3.advertising.aol.com
orca.onevidao.aol.com
onebyaol.com
imspro.oneadserver.aol.com
psclick.aol.com
*.stage.login.yahoo.com
qa5.add.my.aol.com
sapp-dev-dc-v.ops.aol.com
pic.ops.aol.com
sybil.advertising.aol.com
cuda-ul01.red.aol.com
portal.dev.vidible.tv
portal-dev1-os.aol.com
makersnew.aol.com
stage.contenthub.aol.com
fe-jenkins.mail.aol.com
mybenefits.aol.com
lifestream.aol.com
aws.beta.aopui-service.advertising.aol.com
computercheckup.aol.com
crmtools.teamaol.com
egleqa.ops.aol.com
mysql-iwww.itsec.aol.com
vacationrentals.travel.aol.com
batsclient.mx.aol.com
selfcare.aol.com
imspro.oneadserver.aol.com
api.onesdk.aol.com
dev.productcentral.aol.com
release.sandbox.aol.com
jp.techcrunch.com
*.aol.com
relegence.aol.com
panorama-s01.netsec.aol.com
*.yahoo.com
ree-pci-proxy.services.aol.com
one-central-api-qa-mse-eks.mse-dev.aws.oath.cloud
release.sandbox.aol.com
msync.aol.com
*.sandbox.aol.com
help.channels.aol.com
nva9-lcd2.aolwave.aol.com
lifestore.qh.aol.com
mediaserver.qa.advertising.aol.com
services.onecreative.aol.com
onemobile.aol.com
scs.dev.obi.aol.com
casper.ops.aol.com
s2s-rtb-selector.eu-central-1.prod.one4p.aol.com
extuatdc-m01.externalstest.aol.com
apns-db-qa1-m01.mail.aol.com
api.onesdk.aol.com
*.add.my.aol.com
api.qai.obi.aol.com
aoluatdc-m03.aoltest.adlab.office.aol.com
webmail1.webmail.aol.com
*.ssp.verizonmedia.com
dc.aol.com
ibw-ws.aol.com
qa.onecreative.aol.com
buildbot.office.aol.com
checkout.yahoo.com
one.aol.com
*.mail.aol.com
contenthub.aol.com
gp-otp-mtc.remote.aol.com
src3.yahoo.com
src4.yahoo.com
dev.assist.aol.com
area51.aol.com
internal.calendar.yahoo.com
n.main.welcomescreen.aol.com
logstash.itsec.aol.com
src4.yahoo.com
one-demo.aol.com
*.calendar.aol.com
idsvcs.premiumservices.aol.com
migrationassist.aol.com
api.onemobile.aol.com
identity.aol.com
vzwesb.qa.obi.aol.com
ssp.yahooinc.com
membernotifications.aol.com
devopssec-util-a02.paranoids.aol.com
widgets.onemobile.aol.com
*.login.yahoo.com
ntc.remote.aol.com
usersettings-core.search.aol.com
web-qh.lifestream.aol.com
onedisplay.aol.com
searchfe.mail.aol.com
portal-os.aol.com
engineering.aol.com
api.qat.obi.aol.com
*.imap.mail.aol.com
*.ssp.verizonmedia.com
mps-qa.aol.com
wap.aol.com
Certificate
The complete raw certificate details for usersettings-gsa.search.aol.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIQCghH2EzNLbqIxWGoCkdEDDANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNzEwMTYwMDAwMDBaFw0yMDEwMjAxMjAwMDBa MHAxCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhWaXJnaW5pYTERMA8GA1UEBxMIU3Rl cmxpbmcxETAPBgNVBAoTCEFPTCwgSW5jMSgwJgYDVQQDEx91c2Vyc2V0dGluZ3Mt Z3NhLnNlYXJjaC5hb2wuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuM20GRtDviBs0Ze3oApTqGkN/ydqeeA+rX/KdY4LRuzh2xuRna+pbdx3Uz6s RkNSGROFICq62ZK3VwX9WCoZp+167bvP/SVTgvArhKtHqqB9OXBc/claIR3VWmya 15iKZuXpJebpTHm57waPS+gM9qP/NcO7RzeLuV34zzQz1df0vSyXCKyTVSNZSoBX q9r0aD3LhjoTxfxP1Nh3tX2pVRj05/LJQADFSNDpt0j6oH0MUasEPTe1J/GE9zI+ wbzJBw09dIKAZsxiNwTfxo6XTdaqrPzOMvTssSjUImyKAI+WRBNu6cXUPZ9ATZN8 8Y50jdWTuU6DSIiCxGZ5laP3LQIDAQABo4ICMzCCAi8wHwYDVR0jBBgwFoAUUWj/ kK8CB3U8zNllZGKiErhZcjswHQYDVR0OBBYEFBFMsQQ5mRbu3gZiGXu3blToKgZ7 MFAGA1UdEQRJMEeCH3VzZXJzZXR0aW5ncy1nc2Euc2VhcmNoLmFvbC5jb22CJHVz ZXJzZXR0aW5ncy1nc2Euc2VhcmNoLmFvbGNsb3VkLm5ldDAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMHUGA1UdHwRuMGwwNKAy oDCGLmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zaGEyLWhhLXNlcnZlci1nMS5j cmwwNKAyoDCGLmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zaGEyLWhhLXNlcnZl ci1nMS5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYc aHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwgYMGCCsGAQUF BwEBBHcwdTAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tME0G CCsGAQUFBzAChkFodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRT SEEySGlnaEFzc3VyYW5jZVNlcnZlckNBLmNydDAMBgNVHRMBAf8EAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCJleZKww/a0NCQjWkg HO8+AicBa5RZzIlbitdaZtRoJGJzRZ/ytMQmAH3CnR/y7oY+y97Av3LQmVBiJUwf IF1dvcq+v2FtfaD87lejNi3j8O9Iisa8peBOE20kayM4vT5QLE4UXJa1pNz6qtMU 65pXjgool/VQpihyh8vAeut8mJ0MhwNSZN0k1qUlptbB5pT/jvVJJ0UWE8j3MEYG X6FEPKa5gdLsmHUtbClmzor7bsY71AhO79edu3G5znJ5zODMQ3/RpCmFMzyjld0l EVinM9+8g0VpTNrkR9R0b99FQFQozSBcVofvsoa3fq0VXTgBGRpU1T9k03uWKzwM 2kyM -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuM20GRtDviBs0Ze3oApT qGkN/ydqeeA+rX/KdY4LRuzh2xuRna+pbdx3Uz6sRkNSGROFICq62ZK3VwX9WCoZ p+167bvP/SVTgvArhKtHqqB9OXBc/claIR3VWmya15iKZuXpJebpTHm57waPS+gM 9qP/NcO7RzeLuV34zzQz1df0vSyXCKyTVSNZSoBXq9r0aD3LhjoTxfxP1Nh3tX2p VRj05/LJQADFSNDpt0j6oH0MUasEPTe1J/GE9zI+wbzJBw09dIKAZsxiNwTfxo6X TdaqrPzOMvTssSjUImyKAI+WRBNu6cXUPZ9ATZN88Y50jdWTuU6DSIiCxGZ5laP3 LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13335275520851306186648076815606170636 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-10-20 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Virginia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sterling' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AOL, Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'usersettings-gsa.search.aol.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23329284294174562158351817042476341883936178212813869021954198559500066511264490809841826946757113625705571251396632735522946629424771009100161782432623570762563282307052793011049114125340996862149593628046716689077372698167146834201243188856582456454117505251726600822473242506160999522847722373150140245951054012841553723684392085137902111403378795877234918710360515651996577338725363259125024803019356199142635487376320730792432610839490471788392844587412371587246783419743492971216574476118746503945518212135712486760140472772811094648641189819935103836220789751474679204041395757993491201367920930679853137786669 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 114cb104399916eede0662197bb76e54e82a067b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usersettings-gsa.search.aol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usersettings-gsa.search.aolcloud.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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