*.agi.com
- Analytical Graphics Inc -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 09:22:b2:8b:6b:1f:be:e4:13:85:d1:a4:e7:ba:85:5b was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Analytical Graphics Inc
Organization:
Analytical Graphics Inc
State / Province:
Pennsylvania
Locality: Exton
Country: US
Locality: Exton
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:22:b2:8b:6b:1f:be:e4:13:85:d1:a4:e7:ba:85:5bSerial Number (int): 12143211370031740683770819392206177627
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 02:f8:c1:08:48:50:98:9e:0a:31:03:de:e7:49:3e:14:8e:98:3f:86
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): bc:f3:85:2c:80:b9:c3:17:92:38:8e:32:c6:6c:1a:32:35:69:2e:ef
Fingerprint (sha256): 12:88:60:79:f4:15:77:4b:23:b6:15:00:35:25:2d:90:52:d3:01:b7:aa:5c:92:ad:9f:08:aa:ca:fd:54:e8:24
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1.crl
Check the revocation status for certificate *.agi.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.agi.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.agi.com
sso.agi.com
sso.agi.com
Other certificates including the domain name agi.com
(limited to 100 certificates)
*.agi.com
*.agi.com
communications.agi.com
*.agi.com
*.agi.com
communications.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
links.agi.com
san-15-s13.tlsprovisioning.exacttarget.com
*.agi.com
communications.agi.com
*.agi.com
communications.agi.com
*.agi.com
links.agi.com
mail.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
www.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
communications.agi.com
*.agi.com
*.agi.com
*.agi.com
links.agi.com
*.agi.com
communications.agi.com
links.agi.com
communications.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
communications.agi.com
*.agi.com
links.agi.com
*.agi.com
*.agi.com
communications.agi.com
communications.agi.com
communications.agi.com
communications.agi.com
*.agi.com
*.agi.com
links.agi.com
*.agi.com
communications.agi.com
*.agi.com
*.agi.com
links.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
links.agi.com
*.agi.com
*.agi.com
*.agi.com
links.agi.com
*.agi.com
communications.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
*.agi.com
communications.agi.com
*.agi.com
*.agi.com
communications.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
links.agi.com
san-15-s13.tlsprovisioning.exacttarget.com
*.agi.com
communications.agi.com
*.agi.com
communications.agi.com
*.agi.com
links.agi.com
mail.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
www.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
communications.agi.com
*.agi.com
*.agi.com
*.agi.com
links.agi.com
*.agi.com
communications.agi.com
links.agi.com
communications.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
communications.agi.com
*.agi.com
links.agi.com
*.agi.com
*.agi.com
communications.agi.com
communications.agi.com
communications.agi.com
communications.agi.com
*.agi.com
*.agi.com
links.agi.com
*.agi.com
communications.agi.com
*.agi.com
*.agi.com
links.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
links.agi.com
*.agi.com
*.agi.com
*.agi.com
links.agi.com
*.agi.com
communications.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
*.agi.com
communications.agi.com
Certificate
The complete raw certificate details for *.agi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgIQCSKyi2sfvuQThdGk57qFWzANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMDEyMTkwMDAwMDBa Fw0yMjAxMTcyMzU5NTlaMGoxCzAJBgNVBAYTAlVTMRUwEwYDVQQIEwxQZW5uc3ls dmFuaWExDjAMBgNVBAcTBUV4dG9uMSAwHgYDVQQKExdBbmFseXRpY2FsIEdyYXBo aWNzIEluYzESMBAGA1UEAwwJKi5hZ2kuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAr16aXf2E6OSrsEmJXTdMCMduodc2wWr3ioa6BlPOYYpmzOON ZbcpHncaEbcme8nI+jFNXxu42G3cvc7dXlItAbq8gFo11KGGH1I3SkweWH99Ze5C uQxF/NNbnG0FVhk7SxUjA1eC5EOuIczoDh8hl6f7V/7ev0YBAVq99E/zij7oM0Ty k2CXikzlfkt+SE3uvDf26ZwdACo161jcEEbc8yLKkzJhTXwHHeOdekUbfGFRReXS O4Tt2mFjQ4CU0OWWpvk8AxQBnT7mJHwGVpRq2KZoyzeUs8hrYKiuNygeywopRZ+g q8FhOjhy2HTaWyx3cCYKfKnTVrZJwnRzsCbBaQIDAQABo4IDBjCCAwIwHwYDVR0j BBgwFoAUt2ui6qiqhIx56rTaD5iyxZV2ufQwHQYDVR0OBBYEFAL4wQhIUJieCjED 3udJPhSOmD+GMCEGA1UdEQQaMBiCCSouYWdpLmNvbYILc3NvLmFnaS5jb20wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBiwYD VR0fBIGDMIGAMD6gPKA6hjhodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGlnaUNl cnRUTFNSU0FTSEEyNTYyMDIwQ0ExLmNybDA+oDygOoY4aHR0cDovL2NybDQuZGln aWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS5jcmwwTAYDVR0g BEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGln aWNlcnQuY29tL0NQUzAIBgZngQwBAgIwfQYIKwYBBQUHAQEEcTBvMCQGCCsGAQUF BzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wRwYIKwYBBQUHMAKGO2h0dHA6 Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFRMU1JTQVNIQTI1NjIwMjBD QTEuY3J0MAwGA1UdEwEB/wQCMAAwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgAp eb7wnjk5IfBWc59jpXflvld9nGAK+PlNXSZcJV3HhAAAAXZ7tGZwAAAEAwBHMEUC IEjT+o1irvCpSKfZpzPxr6CirXm5urv9SsDmpcjf4OKpAiEA3rpVEEuo8iwk0q4K TphyJ+KbtGVacLD9vy+Y5WJRFawAdQAiRUUHWVUkVpY/oS/x922G4CMmY63AS39d xoNcbuIPAgAAAXZ7tGbIAAAEAwBGMEQCIBs5ufutUzz+QdP3cL5MQ7M2ImOllzbO Ta4fjEDkOnwVAiBUhtHqudiT9F0JuiHgumSMTtSazp4hVxU2rrgdY6xniTANBgkq hkiG9w0BAQsFAAOCAQEAX7lgAVubZ5MFa2O4g5EpX6IZRktffmCMyoT8jHMQb7zV +5LwtGWcdhsJWfef5kwbb2/CQJ36ahgXtm6bhFZ1Z3bwmD0J26iQlc8lJUUrh6Io vPlAPgUNdvV7Me4y0wM05gluFJXdmKDrNGWEYTcgQRBK7oyYSSPXqkLRIrt9abUj iV89IGd+7jw8M6g2WYuSvti8kZvW49L7b/uO39BXU2uwTn8Y1ff58WRKUFKacbPK I7sxEVAMzyR1Em3ftTc+fVlqabtJjsicFSvYAEPKdypnDS/moHUFTZ7Rc/l0vRXz WwLaDo1aYhQMRXDDcUezkuKE7/Tf48JB83Ds6LuLeQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr16aXf2E6OSrsEmJXTdM CMduodc2wWr3ioa6BlPOYYpmzOONZbcpHncaEbcme8nI+jFNXxu42G3cvc7dXlIt Abq8gFo11KGGH1I3SkweWH99Ze5CuQxF/NNbnG0FVhk7SxUjA1eC5EOuIczoDh8h l6f7V/7ev0YBAVq99E/zij7oM0Tyk2CXikzlfkt+SE3uvDf26ZwdACo161jcEEbc 8yLKkzJhTXwHHeOdekUbfGFRReXSO4Tt2mFjQ4CU0OWWpvk8AxQBnT7mJHwGVpRq 2KZoyzeUs8hrYKiuNygeywopRZ+gq8FhOjhy2HTaWyx3cCYKfKnTVrZJwnRzsCbB aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12143211370031740683770819392206177627 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Exton' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Analytical Graphics Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.agi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22138353845409394426461266965783613007606988722489700787229876424797554664241403848597203582739879980491701454914053906706263727666715022114434897485712039905202771758567965598334955977788696456413854206826529052543138630544985395479910664403678993592991359138065599105116499430965013954478949977886559446434508406035675456048760509564176880275672328884883645643002915775182641252416570105127974383531744056463983581333712622353014950512275802701808551305646887833909613840430420976695790341331784352512514326479728345934220085653161895326881636662789027871102558015026860967605732590628680663661707991749864790081897 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 02f8c1084850989e0a3103dee7493e148e983f86 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.agi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sso.agi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (131 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076002979bef09e393921f056739f63a577e5be577d9c600af8f94d5d265c255dc784000001767bb466700000040300473045022048d3fa8d62aef0a948a7d9a733f1afa0a2ad79b9babbfd4ac0e6a5c8dfe0e2a9022100deba55104ba8f22c24d2ae0a4e987227e29bb4655a70b0fdbf2f98e5625115ac0075002245450759552456963fa12ff1f76d86e0232663adc04b7f5dc6835c6ee20f02000001767bb466c8000004030046304402201b39b9fbad533cfe41d3f770be4c43b3362263a59736ce4dae1f8c40e43a7c1502205486d1eab9d893f45d09ba21e0ba648c4ed49ace9e21571536aeb81d63ac6789 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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