www.ni.avon.com
- Avon Products Inc -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 06:9d:ec:e8:36:01:61:e9:bb:55:2e:50:a4:95:6d:94 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Avon Products Inc
Organization:
Avon Products Inc
Organization unit: Global IT
Organization unit: Global IT
State / Province:
New York
Locality: Rye
Country: US
Locality: Rye
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:9d:ec:e8:36:01:61:e9:bb:55:2e:50:a4:95:6d:94Serial Number (int): 8795363627813490115959705791100186004
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: e0:a4:c6:89:ce:83:17:a0:76:93:61:4a:e4:79:90:2d:92:12:ee:5a
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): e5:f4:07:11:0e:d2:9f:bb:65:93:52:dd:13:f1:c5:22:8f:2c:30:0b
Fingerprint (sha256): 11:81:b9:fd:18:06:a3:d4:82:c6:8a:45:ba:dd:84:7b:d2:35:00:31:ea:f0:53:44:8c:84:c9:22:83:77:3d:bc
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate www.ni.avon.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ni.avon.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ni.avon.com
Other certificates including the domain name avon.com
(limited to 100 certificates)
ssl8.ipaper.io
ssl9.ipaper.io
ssl8.icommarketing.com
ssl9.ipaper.io
www.avon.my
qaf.link.avon.com
ecom.youravon.com
*.uk.avon.com
leadsservicesru.avon.com
ecom.youravon.com
z3-b45c.kxcdn.com
dev.ve.avon.com
on.avon.com
ryestgw.na.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
autodiscover.domino.avonfoundation.org
ssl8.ipaper.io
mobileapi.avon.com
qafmab.bg.avon.com
emear-lpa.avon.com
avon.com
connectshg.avon.com
connectar.avon.com
gabi03.com
uatssmab.ar.avon.com
ssl8.icommarketing.com
webeservicesru.avon.com
ssl8.icommarketing.com
ecom4.pr.avon.com
uatmab.static.co.avon.com
www.kr.avon.com
ssl9.ipaper.io
ssl8.icommarketing.com
uatmab.co.avon.com
static1.br.avon.com
qaf.eenew.avon.com
avon.kz
core-order-eu-dev.api-dev.aws.avon.com
qafmab.static.co.avon.com
ssl8.icommarketing.com
view.email.usa.avon.com
ssl8.icommarketing.com
www.avon.com.mx
ssl8.icommarketing.com
www.sa.avon.com
eem.co.avon.com
qaf.eenew.avon.com
dev.sv.avon.com
static1.br.avon.com
*.uk.avon.com
www.uy.avon.com
qaf.jtnew.avon.com
connectuk.avon.com
www.my.avon.com
dev.ec.avon.com
drmsp.cn.avon.com
simulator.avon.com
ssl9.ipaper.io
uatmab.static.ro.avon.com
choiceservicesqaf.avon.com
www.tr.avon.com
qafss.ar.avon.com
shop.avon.com
connectsuffern.avon.com
qaf.lvnew.avon.com
uat.mobilecms.avon.com
ssl8.ipaper.io
dev.pe.avon.com
avonaccess.na.avon.com
qap.mx.avon.com
www.al.avon.com
www.ni.avon.com
www.uy.avon.com
br.avon.com
www.sv.avon.com
www.tw.avon.com
br.avon.com
choiceservices-ru.avon.com
*.arpdev.avon.com
eem.br.avon.com
drupal.avon.com.ar
imshare.avon.com
static1.br.avon.com
*.ro.avon.com
dev.pa.avon.com
ssl9.ipaper.io
catalog.avonnow.com
link.customer.avon.com
author.pl.avon.com
ecom4.pr.avon.com
www.avon2win.avon.com.pt
qafmab.co.avon.com
newsin.bullets.app
*.hu.avon.com
dev.gt.avon.com
link.customer.avon.com
avononline.pl.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
ssl9.ipaper.io
www.avon.my
qaf.link.avon.com
ecom.youravon.com
*.uk.avon.com
leadsservicesru.avon.com
ecom.youravon.com
z3-b45c.kxcdn.com
dev.ve.avon.com
on.avon.com
ryestgw.na.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
autodiscover.domino.avonfoundation.org
ssl8.ipaper.io
mobileapi.avon.com
qafmab.bg.avon.com
emear-lpa.avon.com
avon.com
connectshg.avon.com
connectar.avon.com
gabi03.com
uatssmab.ar.avon.com
ssl8.icommarketing.com
webeservicesru.avon.com
ssl8.icommarketing.com
ecom4.pr.avon.com
uatmab.static.co.avon.com
www.kr.avon.com
ssl9.ipaper.io
ssl8.icommarketing.com
uatmab.co.avon.com
static1.br.avon.com
qaf.eenew.avon.com
avon.kz
core-order-eu-dev.api-dev.aws.avon.com
qafmab.static.co.avon.com
ssl8.icommarketing.com
view.email.usa.avon.com
ssl8.icommarketing.com
www.avon.com.mx
ssl8.icommarketing.com
www.sa.avon.com
eem.co.avon.com
qaf.eenew.avon.com
dev.sv.avon.com
static1.br.avon.com
*.uk.avon.com
www.uy.avon.com
qaf.jtnew.avon.com
connectuk.avon.com
www.my.avon.com
dev.ec.avon.com
drmsp.cn.avon.com
simulator.avon.com
ssl9.ipaper.io
uatmab.static.ro.avon.com
choiceservicesqaf.avon.com
www.tr.avon.com
qafss.ar.avon.com
shop.avon.com
connectsuffern.avon.com
qaf.lvnew.avon.com
uat.mobilecms.avon.com
ssl8.ipaper.io
dev.pe.avon.com
avonaccess.na.avon.com
qap.mx.avon.com
www.al.avon.com
www.ni.avon.com
www.uy.avon.com
br.avon.com
www.sv.avon.com
www.tw.avon.com
br.avon.com
choiceservices-ru.avon.com
*.arpdev.avon.com
eem.br.avon.com
drupal.avon.com.ar
imshare.avon.com
static1.br.avon.com
*.ro.avon.com
dev.pa.avon.com
ssl9.ipaper.io
catalog.avonnow.com
link.customer.avon.com
author.pl.avon.com
ecom4.pr.avon.com
www.avon2win.avon.com.pt
qafmab.co.avon.com
newsin.bullets.app
*.hu.avon.com
dev.gt.avon.com
link.customer.avon.com
avononline.pl.avon.com
autodiscover.domino.avonfoundation.org
Certificate
The complete raw certificate details for www.ni.avon.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFOTCCBCGgAwIBAgIQBp3s6DYBYem7VS5QpJVtlDANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwODI4MDAwMDAwWhcN MTkwNTIzMTIwMDAwWjB4MQswCQYDVQQGEwJVUzERMA8GA1UECBMITmV3IFlvcmsx DDAKBgNVBAcTA1J5ZTEaMBgGA1UEChMRQXZvbiBQcm9kdWN0cyBJbmMxEjAQBgNV BAsTCUdsb2JhbCBJVDEYMBYGA1UEAxMPd3d3Lm5pLmF2b24uY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Gr28+mnFYb9MKDmfBefjZpN+910KOnu tC8p1gW28+W6acVhWAOMbSHsYMmn4sz31M2POVjSv3KR1O0MnTC0riv8ghwr/S1U 1KDByTcsKMG6SWoXRSstYw9NaJC47PK2FcmrPhg6fxLqo386AAGTG/btysdsbMI7 NrOkhb93OOsSPxTvfk0VapXaxWqG0V5wnckrku9QmKO53CcUnbnjAtRqgH8JHdrj OwZlltB7ev0r0G6d9g8ICnetbBQpUcnxIFH2KQS1ZYPw5CmKAiFBsmtotZBSCODf h4KWQKMnAY/5Ot22E88yVgRf0qNH0T8Yn4eLgqbgcHKMaGp6rXzAfwIDAQABo4IB 6DCCAeQwHwYDVR0jBBgwFoAUD4BhHIIxYdUvKOeNRji0LOHG2eIwHQYDVR0OBBYE FOCkxonOgxegdpNhSuR5kC2SEu5aMBoGA1UdEQQTMBGCD3d3dy5uaS5hdm9uLmNv bTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zc2Nh LXNoYTItZzYuY3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc3Nj YS1zaGEyLWc2LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUF BwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB8Bggr BgEFBQcBAQRwMG4wJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNv bTBGBggrBgEFBQcwAoY6aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lD ZXJ0U0hBMlNlY3VyZVNlcnZlckNBLmNydDAJBgNVHRMEAjAAMBMGCisGAQQB1nkC BAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQARORgjzXHhMKqQIA4prP8H9A7C 9QOXGzcDrlHvQygck18vv/QTJKFNWra7TNwXPfAHqqAsZs/eBHW9TfZNnwxs8tPt AqeSE2GlualejLNcpaJQAcwJqsn1Gpeu3DX0Hq7V2WsW9hriortA22KjHYjmmyzQ nhLFYCBGT/uAmSNwyAdnJ3iAn/PpkXEgRbN2a8pOCn6Y5kdDl97QeHzNCkuibcCk sj1HRJFQSDkoeYy7OgeYpNCjuFRq5tsokBUl7CAuqwoR6XqeRCratbVgM2UQH5xY HBexpShStNXQFUOA+4vDBAhdb7wm2tsE2pvv2QhP2Hl0kBwLAsl2xCZrRDcs -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Gr28+mnFYb9MKDmfBef jZpN+910KOnutC8p1gW28+W6acVhWAOMbSHsYMmn4sz31M2POVjSv3KR1O0MnTC0 riv8ghwr/S1U1KDByTcsKMG6SWoXRSstYw9NaJC47PK2FcmrPhg6fxLqo386AAGT G/btysdsbMI7NrOkhb93OOsSPxTvfk0VapXaxWqG0V5wnckrku9QmKO53CcUnbnj AtRqgH8JHdrjOwZlltB7ev0r0G6d9g8ICnetbBQpUcnxIFH2KQS1ZYPw5CmKAiFB smtotZBSCODfh4KWQKMnAY/5Ot22E88yVgRf0qNH0T8Yn4eLgqbgcHKMaGp6rXzA fwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8795363627813490115959705791100186004 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-23 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rye' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Avon Products Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Global IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ni.avon.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30854892651104574575946826943659509427177735117753079649862314804162229283302011016568629986511335276944866685686087212221956254400721362082934051965552613385378716090157585382875202244818918737490042807722393019787668867527211949268387753949634290162092256845319685310044093126317595676022292267229647681840295828076067374541195077183768134061087767290591504808515655974049249547537612341854012593924059097627463243454729466128207207726854632289056251550159252856326689410840872433507488838357838718749015677180364078327453361324198185223079993131934672084318990998142785619637544590866204826840929629380293733171327 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e0a4c689ce8317a07693614ae479902d9212ee5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ni.avon.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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