www.mhvfcu.com
- Mid-Hudson Valley FCU -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 0b:40:cb:9a:ae:33:d5:f8:6e:54:90:22:3a:cc:ca:de was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Mid-Hudson Valley FCU
Company registration number:
15766
Organization: Mid-Hudson Valley FCU
Organization unit: Technology Services
Organization: Mid-Hudson Valley FCU
Organization unit: Technology Services
State / Province:
New York
Locality: Kingston
Country: US
Locality: Kingston
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:40:cb:9a:ae:33:d5:f8:6e:54:90:22:3a:cc:ca:deSerial Number (int): 14957944536779929428489787405260081886
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 83:dc:01:62:65:10:d7:88:64:b6:df:ec:60:3b:dc:94:31:b8:0d:27
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): d3:20:86:47:d6:c6:29:1d:6a:61:f4:65:44:4c:11:df:8f:aa:39:1e
Fingerprint (sha256): 11:b2:b3:82:51:00:60:7f:c0:02:78:52:59:73:0f:3d:f1:e1:fb:46:32:82:1f:cc:5f:b8:c0:a0:d1:ac:c6:88
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate www.mhvfcu.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mhvfcu.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.mhvfcu.com
mhvfcu.com
mhvfcu.com
Other certificates including the domain name mhvfcu.com
(limited to 100 certificates)
www.mhvfcu.com
akamai-san139.exacttarget.com
pws2.mhvfcu.com
akamai-san139.exacttarget.com
testpws.mhvfcu.com
akamai-san139.exacttarget.com
www.mhvfcu.com
webmail.mhvfcu.com
rdc.mhvfcu.com
www.mhvfcu.com
webmail.mhvfcu.com
*.mhvfcu.com
pws2.mhvfcu.com
www.mhvfcu.com
www.mhvfcu.com
dev.mhvfcu.com
webmail.mhvfcu.com
webmail.mhvfcu.com
webmail.mhvfcu.com
mhvfcu.com
datamart.mhvfcu.com
pws.mhvfcu.com
links.mhvfcu.com
www.mhvfcu.com
akamai-san139.exacttarget.com
links.mhvfcu.com
www.mhvfcu.com
akamai-san139.exacttarget.com
www.mhvfcu.com
www.mhvfcu.com
www.mhvfcu.com
join.mhvfcu.com
join.mhvfcu.com
pws2.mhvfcu.com
join.mhvfcu.com
pws2.mhvfcu.com
akamai-san139.exacttarget.com
akamai-san139.exacttarget.com
www.mhvfcu.com
pws.mhvfcu.com
join.mhvfcu.com
webmail.mhvfcu.com
www.mhvfcu.com
akamai-san139.exacttarget.com
pws2.mhvfcu.com
akamai-san139.exacttarget.com
testpws.mhvfcu.com
akamai-san139.exacttarget.com
www.mhvfcu.com
webmail.mhvfcu.com
rdc.mhvfcu.com
www.mhvfcu.com
webmail.mhvfcu.com
*.mhvfcu.com
pws2.mhvfcu.com
www.mhvfcu.com
www.mhvfcu.com
dev.mhvfcu.com
webmail.mhvfcu.com
webmail.mhvfcu.com
webmail.mhvfcu.com
mhvfcu.com
datamart.mhvfcu.com
pws.mhvfcu.com
links.mhvfcu.com
www.mhvfcu.com
akamai-san139.exacttarget.com
links.mhvfcu.com
www.mhvfcu.com
akamai-san139.exacttarget.com
www.mhvfcu.com
www.mhvfcu.com
www.mhvfcu.com
join.mhvfcu.com
join.mhvfcu.com
pws2.mhvfcu.com
join.mhvfcu.com
pws2.mhvfcu.com
akamai-san139.exacttarget.com
akamai-san139.exacttarget.com
www.mhvfcu.com
pws.mhvfcu.com
join.mhvfcu.com
webmail.mhvfcu.com
www.mhvfcu.com
Certificate
The complete raw certificate details for www.mhvfcu.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHSDCCBjCgAwIBAgIQC0DLmq4z1fhuVJAiOszK3jANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE5MDQwMjAwMDAwMFoXDTIxMDQwNjEy MDAwMFowgc4xHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlVTMQ4wDAYDVQQFEwUxNTc2NjELMAkGA1UEBhMCVVMxETAPBgNV BAgTCE5ldyBZb3JrMREwDwYDVQQHEwhLaW5nc3RvbjEeMBwGA1UEChMVTWlkLUh1 ZHNvbiBWYWxsZXkgRkNVMRwwGgYDVQQLExNUZWNobm9sb2d5IFNlcnZpY2VzMRcw FQYDVQQDEw53d3cubWh2ZmN1LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBALOB6ja74Aow4W5Vfo2dIGT8wxO5Z0k+Rz/qGbEq8GbFUtWzEAhE4Z3z XK7KvZib/h73xwQw5Tp9M8qmcGIivCXiQswLFGKPg5Wb9atMZfOM+RTW3cj8bqsL 5iz0xzhSpbjpmhWklQtoC79F5ib3y70cjCUy4wkGwGz8TvzpmiNIOrGvd0dMSd2o ff+86GQaBEnHl1IOCfTtQXFYy8SiScieSNlKKcjhqiqgaNmgoIZ7EAMTOuT+5bqG m2/aln2/mjeRulFB05SFUfis+CkwqUFhcMqbQbRUxJxNocK3QDeh2EThbDCNKvJg No8EN2G2eWP4rUQipbktU7S1Q5HcYs8CAwEAAaOCA3gwggN0MB8GA1UdIwQYMBaA FD3TUKXWoK3u80pgCmXTIdT4+NYPMB0GA1UdDgQWBBSD3AFiZRDXiGS23+xgO9yU MbgNJzAlBgNVHREEHjAcgg53d3cubWh2ZmN1LmNvbYIKbWh2ZmN1LmNvbTAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMHUGA1Ud HwRuMGwwNKAyoDCGLmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zaGEyLWV2LXNl cnZlci1nMi5jcmwwNKAyoDCGLmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zaGEy LWV2LXNlcnZlci1nMi5jcmwwSwYDVR0gBEQwQjA3BglghkgBhv1sAgEwKjAoBggr BgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAHBgVngQwBATCB iAYIKwYBBQUHAQEEfDB6MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2Vy dC5jb20wUgYIKwYBBQUHMAKGRmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9E aWdpQ2VydFNIQTJFeHRlbmRlZFZhbGlkYXRpb25TZXJ2ZXJDQS5jcnQwDAYDVR0T AQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHUAu9nfvB+KcbWTlCOX qpJ7RzhXlQqrUugakJZkNo4e0YUAAAFp33rMdQAABAMARjBEAiBYPzaQ+H8mRbu2 BrAddH8Uyp/zhSSYPrTFMJV8WQbX8gIgYQAFMDz7PIsXG/p2iEywrbY/Zo+H0Cds rSBUQYqRxTUAdwBWFAaaL9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAWnf eszsAAAEAwBIMEYCIQCStlMBGyInIOCu3SpJDD9As59Pbkn7uMZWR5zd8vQNNgIh AOmG69hPeEExSFm9d4tt2eD7mxVLSsp4pYW4zQpSVEY2AHUAh3W/51l8+IxDmV+9 827/Vo1HVjb/SrVgwbTq/16ggw8AAAFp33rOxgAABAMARjBEAh9HTEoIylSU8bBz PChHfCM2hUOqqSyoPU2tRGsmhFP9AiEAxz0u0kifdTDUZ1TTKJWq8SgQlYeBGwRx VDDeWby0H38wDQYJKoZIhvcNAQELBQADggEBAKCimCTdWveh4tSDHTLq5beKdu7G ELlsWRrEEDHSJv5ciSX8ReGd/hghK6HdRPHyhiReB4NUMjeX0/7+8kgJFeojUNg7 MQxzR1IkQqheenIjNEMxDDNDI7pXkXCqnOIh1RIBoxnkWUj4rGohMqul8f51hqDb 3pcCjTfJnP8wBQz0c33MqxJagcbfpYBs5x3AsgrSTZQn3qoWELJ1OVbc6sPfGzGi ikzCo/Q/eyoYFWQVgKQnBanOQ4U3JQro+7h98vfjKW/nJCCVa+IaMllU8tytSHRq +Lgt9De/pbvJU0j1JrfxTOiF9KntQ4QvuVEs0aSHdKp7q4crNWnj+MssuBA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4HqNrvgCjDhblV+jZ0g ZPzDE7lnST5HP+oZsSrwZsVS1bMQCEThnfNcrsq9mJv+HvfHBDDlOn0zyqZwYiK8 JeJCzAsUYo+DlZv1q0xl84z5FNbdyPxuqwvmLPTHOFKluOmaFaSVC2gLv0XmJvfL vRyMJTLjCQbAbPxO/OmaI0g6sa93R0xJ3ah9/7zoZBoESceXUg4J9O1BcVjLxKJJ yJ5I2UopyOGqKqBo2aCghnsQAxM65P7luoabb9qWfb+aN5G6UUHTlIVR+Kz4KTCp QWFwyptBtFTEnE2hwrdAN6HYROFsMI0q8mA2jwQ3YbZ5Y/itRCKluS1TtLVDkdxi zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14957944536779929428489787405260081886 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-06 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '15766' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kingston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mid-Hudson Valley FCU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Technology Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mhvfcu.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22660720012643471656379188101957018465625725916349711644790304459669032100313868998957526135072127781789785475505102896217844204745703231273872162643738042950337704117154128061086325275868388094032386786703997274568462795439830533811961793299523283393361828821336570274306157471936089039897967903506634160124039245732497461058191972496278499956112888905775410024247794909308230061088793328588069646046498178584562096403529342053431437852240554880267293417019003041217240067184709399694936152078236096677228578786326219366338199888078784221226683503797555605830623976716380177719902476967443757207983654504132748534479 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 83dc01626510d78864b6dfec603bdc9431b80d27 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mhvfcu.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhvfcu.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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