1as-bannertest.adtech.de
- Oath Inc -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0b:d4:97:98:56:8f:95:95:e5:ff:1a:e3:ef:df:34:2e was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Oath Inc
Organization:
Oath Inc
State / Province:
California
Locality: Sunnyvale
Country: US
Locality: Sunnyvale
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:d4:97:98:56:8f:95:95:e5:ff:1a:e3:ef:df:34:2eSerial Number (int): 15725349600963605264188050300708271150
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 31:22:15:d7:ee:cc:4b:d0:6e:db:b8:0c:8c:ca:b8:32:8b:f1:88:8a
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): 33:43:29:2d:d9:61:bd:4b:40:3e:30:d6:7d:ff:20:fd:0c:78:a9:14
Fingerprint (sha256): 12:4a:20:d5:71:9a:5c:3a:26:17:6e:28:c1:d4:73:96:87:ad:96:56:b2:b0:4b:3d:0c:46:9b:1c:4c:4d:2b:dd
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g6.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g6.crl
Check the revocation status for certificate 1as-bannertest.adtech.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 1as-bannertest.adtech.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
1as-bannertest.adtech.de
1as-bannertest.adtechus.com
1as-bannertest.adtechus.com
Other certificates including the domain name adtech.de
(limited to 100 certificates)
targeting-service.adtech.de
console.oneadserver.aol.de
report.adtech.de
aka-cdn.adtech.de
consent.oath.com
formula-api.adtech.de
targeting.oneadserver.aol.de
console.oneadserver.aol.de
pri-adserver-origin-eu.prod.adtech.de
stage.consent.oath.com
stage.guce2.oath.com
aka-cdn.adtech.de
*.adtech.de
selene-api.reserved-adserver-dev.aws.oath.cloud
stage.consent.oath.com
api.oneadserver.aol.com
stage.consent.oath.com
pri-adserver-origin-eu.prod.adtech.de
imspro.oneadserver.aol.de
stage.consent.oath.com
console.oneadserver.aol.de
ws.adtech.de
nonprod-classic-rest-api.dev.adtech.de
console.oneadserver.aol.de
aka-cdn.adtech.de
selene.oneadserver.aol.com
learnapi.oneadserver.aol.de
aka-cdn.adtech.de
*.adtech.de
api.oneadserver.aol.com
console-pr.oneadserver.aol.de
api.oneadserver.aol.com
selene.oneadserver.aol.com
1as-bannertest.adtech.de
selene.oneadserver.aol.com
imspro.oneadserver.aol.de
formula-api.adtech.de
pri-adserver-origin-eu.prod.adtech.de
trunk.consent.oath.com
ws2.adtech.de
consent.oath.com
consent.oath.com
imspro.oneadserver.aol.de
consent.oath.com
targeting-service.adtech.de
api.oneadserver.aol.com
console.oneadserver.aol.de
console.oneadserver.aol.de
pri-adserver-origin-eu.prod.adtech.de
imspro.oneadserver.aol.de
vlibs.eu-central-1.dev.adtech.de
stage.consent.oath.com
trunk.consent.oath.com
trunk.consent.oath.com
stage.consent.oath.com
assets.oneadserver.aol.de
*.adtech.de
console.oneadserver.aol.de
console-pr.oneadserver.aol.de
trunk.consent.oath.com
stage.consent.oath.com
formula-api.adtech.de
api.oneadserver.aol.com
adserver.adtech.de
console-pr.oneadserver.aol.de
consent.oath.com
cstest.oneadserver.aol.com
console-pr.oneadserver.aol.com
nonprod-classic-rest-api.dev.adtech.de
trunk.consent.oath.com
console-pr.oneadserver.aol.de
pri-adserver-origin-eu.prod.adtech.de
console.oneadserver.aol.de
eks-nonprod-classic-rest-api.dev.adtech.de
trunk.consent.oath.com
stage.consent.oath.com
*.adtech.de
nonprod-classic-rest-api.dev.adtech.de
consent.oath.com
consent.oath.com
stage.consent.oath.com
consent.oath.com
imspro.oneadserver.aol.de
formula-api.adtech.de
a.adtech.de
aka-cdn.adtech.de
pri-adserver-origin-eu.prod.adtech.de
consent.oath.com
stage.consent.oath.com
aka-cdn.adtech.de
aka-cdn.adtech.de
trunk.consent.oath.com
formula-api.adtech.de
consent.oath.com
api.oneadserver.aol.com
stage.guce2.oath.com
console.oneadserver.aol.de
pri-adserver-origin-eu.prod.adtech.de
formula-api.adtech.de
trunk.consent.oath.com
console.oneadserver.aol.de
report.adtech.de
aka-cdn.adtech.de
consent.oath.com
formula-api.adtech.de
targeting.oneadserver.aol.de
console.oneadserver.aol.de
pri-adserver-origin-eu.prod.adtech.de
stage.consent.oath.com
stage.guce2.oath.com
aka-cdn.adtech.de
*.adtech.de
selene-api.reserved-adserver-dev.aws.oath.cloud
stage.consent.oath.com
api.oneadserver.aol.com
stage.consent.oath.com
pri-adserver-origin-eu.prod.adtech.de
imspro.oneadserver.aol.de
stage.consent.oath.com
console.oneadserver.aol.de
ws.adtech.de
nonprod-classic-rest-api.dev.adtech.de
console.oneadserver.aol.de
aka-cdn.adtech.de
selene.oneadserver.aol.com
learnapi.oneadserver.aol.de
aka-cdn.adtech.de
*.adtech.de
api.oneadserver.aol.com
console-pr.oneadserver.aol.de
api.oneadserver.aol.com
selene.oneadserver.aol.com
1as-bannertest.adtech.de
selene.oneadserver.aol.com
imspro.oneadserver.aol.de
formula-api.adtech.de
pri-adserver-origin-eu.prod.adtech.de
trunk.consent.oath.com
ws2.adtech.de
consent.oath.com
consent.oath.com
imspro.oneadserver.aol.de
consent.oath.com
targeting-service.adtech.de
api.oneadserver.aol.com
console.oneadserver.aol.de
console.oneadserver.aol.de
pri-adserver-origin-eu.prod.adtech.de
imspro.oneadserver.aol.de
vlibs.eu-central-1.dev.adtech.de
stage.consent.oath.com
trunk.consent.oath.com
trunk.consent.oath.com
stage.consent.oath.com
assets.oneadserver.aol.de
*.adtech.de
console.oneadserver.aol.de
console-pr.oneadserver.aol.de
trunk.consent.oath.com
stage.consent.oath.com
formula-api.adtech.de
api.oneadserver.aol.com
adserver.adtech.de
console-pr.oneadserver.aol.de
consent.oath.com
cstest.oneadserver.aol.com
console-pr.oneadserver.aol.com
nonprod-classic-rest-api.dev.adtech.de
trunk.consent.oath.com
console-pr.oneadserver.aol.de
pri-adserver-origin-eu.prod.adtech.de
console.oneadserver.aol.de
eks-nonprod-classic-rest-api.dev.adtech.de
trunk.consent.oath.com
stage.consent.oath.com
*.adtech.de
nonprod-classic-rest-api.dev.adtech.de
consent.oath.com
consent.oath.com
stage.consent.oath.com
consent.oath.com
imspro.oneadserver.aol.de
formula-api.adtech.de
a.adtech.de
aka-cdn.adtech.de
pri-adserver-origin-eu.prod.adtech.de
consent.oath.com
stage.consent.oath.com
aka-cdn.adtech.de
aka-cdn.adtech.de
trunk.consent.oath.com
formula-api.adtech.de
consent.oath.com
api.oneadserver.aol.com
stage.guce2.oath.com
console.oneadserver.aol.de
pri-adserver-origin-eu.prod.adtech.de
formula-api.adtech.de
trunk.consent.oath.com
Certificate
The complete raw certificate details for 1as-bannertest.adtech.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGfDCCBWSgAwIBAgIQC9SXmFaPlZXl/xrj7980LjANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0yMDA4MjYwMDAwMDBaFw0yMDExMTgxMjAwMDBa MGwxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRIwEAYDVQQHEwlT dW5ueXZhbGUxETAPBgNVBAoTCE9hdGggSW5jMSEwHwYDVQQDExgxYXMtYmFubmVy dGVzdC5hZHRlY2guZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX HMWoykNjc6lhCtedBz4eGX93St3ro0UjIKlKaLZ9YeefXjPJazk4dTpZ3dM7LD0q 6/d+xZTLhCXw6CzZq17e4LUzPwtxTL/mD0mRUgvi8EjxY7D9vFbG8dzGurBO+sSs wCEBEi/koZrgfTrmRG0xP0OREPPUsiEpbTzFJ0/I5/7wVLfdiVUikcfZsXWFr6Zh 4VYl/nUgVBY33zc0U910FMqnhkdjJSCyu5D/zpQEkz/OkJ7iaXQxz/tXo3w1ZZMm AvcTGO1zXvF1SNwaPFA2oDj4PF7OrmFH1Rx0ETe4dscpKgPei39vtxxKRZAv6tjj X7ljRueCYsfH5h62imBRAgMBAAGjggMUMIIDEDAfBgNVHSMEGDAWgBRRaP+QrwIH dTzM2WVkYqISuFlyOzAdBgNVHQ4EFgQUMSIV1+7MS9Bu27gMjMq4MovxiIowQAYD VR0RBDkwN4IYMWFzLWJhbm5lcnRlc3QuYWR0ZWNoLmRlghsxYXMtYmFubmVydGVz dC5hZHRlY2h1cy5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjB1BgNVHR8EbjBsMDSgMqAwhi5odHRwOi8vY3JsMy5kaWdp Y2VydC5jb20vc2hhMi1oYS1zZXJ2ZXItZzYuY3JsMDSgMqAwhi5odHRwOi8vY3Js NC5kaWdpY2VydC5jb20vc2hhMi1oYS1zZXJ2ZXItZzYuY3JsMEwGA1UdIARFMEMw NwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0 LmNvbS9DUFMwCAYGZ4EMAQICMIGDBggrBgEFBQcBAQR3MHUwJAYIKwYBBQUHMAGG GGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBNBggrBgEFBQcwAoZBaHR0cDovL2Nh Y2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkhpZ2hBc3N1cmFuY2VTZXJ2 ZXJDQS5jcnQwDAYDVR0TAQH/BAIwADCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1 AAe3XBvlfWj/8bDGHSMVx7rmV3xXlLdq7rxhOhpp06IcAAABdCuLawkAAAQDAEYw RAIgN75bY44ohqt221xzJT6UxZJeIlBbuuXWakDBG1g+1IYCICZJuUr/toS9NLWr yYKwtD+vkv8ZwmmndcX85Nl9+cELAHUA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQ NKawqKqOsnMAAAF0K4tqrwAABAMARjBEAiAngDos//KPUVTmdoedNSo4KLivQNd1 XVEbcG0PGWvuUwIgELoIOyu+7+7K0X0tD+ZqQDIysx7KQeBfhTDMedlldQwwDQYJ KoZIhvcNAQELBQADggEBAKGKgB9gscfYWfU+DIOX34+2AExQfattiUFNdPPVs6MM ggqJpvFyIQrIYrQU/XPsZeh+10ODxiwGFlP6eRHIHuvraRGVDFrg82y2a1zVt+wA uhDHAVBm2X8uwgTeRvY0yZPYzsu2oNRoaHbHrCSum3AcPm9fyJEs2bGFdrxCQhGX d9DO3S23Parh3Hr2TDSMavFwEXtf+IiA47sVdwB4Kv1zjf1cQxdDCVQuz7hIqTEr uqJCWE5Ix7VGo7zF/wg3svLgbDdGVjNT5BkLwhZ8K3vJgb4W+r9j53GcwQFTOgbH Rf2zxBv5YOTiqil3sCPPYeJSjmRhkyOgQE2pclZk6NA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlxzFqMpDY3OpYQrXnQc+ Hhl/d0rd66NFIyCpSmi2fWHnn14zyWs5OHU6Wd3TOyw9Kuv3fsWUy4Ql8Ogs2ate 3uC1Mz8LcUy/5g9JkVIL4vBI8WOw/bxWxvHcxrqwTvrErMAhARIv5KGa4H065kRt MT9DkRDz1LIhKW08xSdPyOf+8FS33YlVIpHH2bF1ha+mYeFWJf51IFQWN983NFPd dBTKp4ZHYyUgsruQ/86UBJM/zpCe4ml0Mc/7V6N8NWWTJgL3Exjtc17xdUjcGjxQ NqA4+Dxezq5hR9UcdBE3uHbHKSoD3ot/b7ccSkWQL+rY41+5Y0bngmLHx+Yetopg UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15725349600963605264188050300708271150 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-18 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sunnyvale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Oath Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1as-bannertest.adtech.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19076172104525287351732707660733874877262818635918066421232820372516612794727368608419073703811375251245731423677597098150984848752020569759048207886843904176780695212942102308396029893923721597654078049873221859084777009737972765880895297160397347273722442688787727469292744651433482323273671220553586627101957949796132788527426600546357538965099857887514797776356426050663038316589702558373762617884477057962524682881029245235524081492593244653179484430938423350632275195094300418501438685203129566903315262131481893411317618978807042275719153835616377767820322647220320295785257768265416985995137094232081246609489 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 312215d7eecc4bd06edbb80c8ccab8328bf1888a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '1as-bannertest.adtech.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '1as-bannertest.adtechus.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001742b8b6b090000040300463044022037be5b638e2886ab76db5c73253e94c5925e22505bbae5d66a40c11b583ed48602202649b94affb684bd34b5abc982b0b43faf92ff19c269a775c5fce4d97df9c10b007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb273000001742b8b6aaf0000040300463044022027803a2cfff28f5154e676879d352a3828b8af40d7755d511b706d0f196bee53022010ba083b2bbeefeecad17d2d0fe66a403232b31eca41e05f8530cc79d965750c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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