knymhv.ariat.com
- Criteo Technology SAS -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 08:79:b9:25:87:ba:5a:ca:52:21:aa:be:74:f2:f2:f2 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Criteo Technology SAS
Organization:
Criteo Technology SAS
State / Province:
Île-de-France
Locality: Paris
Country: FR
Locality: Paris
Country: FR
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:79:b9:25:87:ba:5a:ca:52:21:aa:be:74:f2:f2:f2Serial Number (int): 11265847105386494986565433322756043506
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 22:ce:06:e5:1e:a9:18:7e:e5:4c:26:61:f5:03:1f:28:64:1c:bd:10
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): e0:6e:3c:20:b8:b3:65:09:eb:c4:71:89:b4:b9:17:b7:a7:66:91:db
Fingerprint (sha256): 12:fd:38:bc:b9:d5:c9:f0:27:5f:b0:33:6c:4d:77:f7:1d:f4:c4:53:47:09:77:d6:7a:25:ad:39:56:3b:58:02
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate knymhv.ariat.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for knymhv.ariat.com
Public Key Algorithm
ECDSA
Key Size
256
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Agreement
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
knymhv.ariat.com
Other certificates including the domain name ariat.com
(limited to 100 certificates)
ads2.aryaka.net
ussappoqa.ariat.com
sv.citedisplay.com
*.ariat.com
tableau.ariat.com
vpn.ariat.com
ads2.aryaka.net
usmraexpe.ariat.com
akamai-san55.exacttarget.com
akamai-san55.exacttarget.com
vpn.ariat.com
ads2.aryaka.net
ussappoqa.ariat.com
sv.citedisplay.com
akamai-san55.exacttarget.com
ads2.aryaka.net
printzpl.uat.apoyar.eu
cucn-authentication.ariat.com
newb2b.ariat.com
ads2.aryaka.net
printzpl.uat.apoyar.eu
spam.ariat.com
aemail01.ariat.com
knymhv.ariat.com
newb2b.ariat.com
cups-im.ariat.com
ads2.aryaka.net
ads2.aryaka.net
ads2.aryaka.net
support.ariat.com
ussappoqawd.ariat.com
printzpl.uat.apoyar.eu
ussapsolmprod.ariat.com
ads2.aryaka.net
ads2.aryaka.net
printzpl.uat.apoyar.eu
printzpl.uat.apoyar.eu
mail.ariat.com
ussappoqa.ariat.com
ari-alteryxpw01.ariat.com
cucn-authentication.ariat.com
enews.ariat.com
*.ariat.com
ussappoqa.ariat.com
applications.ariat.com
reporting.ariat.com
sv.citedisplay.com
ads2.aryaka.net
araw08v401.ariat.com
b2b.ariat.com
usdc02.ariat.com
ads2.aryaka.net
aemail.ariat.com
printzpl.uat.apoyar.eu
sv.citedisplay.com
pages.email.ariat.com
www.ariat.com
ussapsolm.ariat.com
ads2.aryaka.net
ads2.aryaka.net
acsbc.ariat.com
accas01.ariat.com
ussappoqawd.ariat.com
ads2.aryaka.net
development-two24.ariat.com
ussappoqa.ariat.com
newb2b.ariat.com
printzpl.uat.apoyar.eu
ads2.aryaka.net
click.email.ariat.com
printzpl.uat.apoyar.eu
ads2.aryaka.net
ads2.aryaka.net
vpn.ariat.com
planning.ariat.com
ads2.aryaka.net
win.ariat.com
sv.citedisplay.com
*.ariat.com
ads2.aryaka.net
prtg.ariat.com
spam.ariat.com
aereturns.ariat.com
ads2.aryaka.net
ads2.aryaka.net
knymhv.ariat.com
development-two24.ariat.com
enews.ariat.com
mail.ariat.com
akamai-san55.exacttarget.com
ads2.aryaka.net
aeapplications.ariat.com
cucm-authentication.ariat.com
*.ariat.com
sv.citedisplay.com
development.ariat.com
ussappoqa.ariat.com
ads2.aryaka.net
usdc02.ariat.com
ads2.aryaka.net
ussappoqa.ariat.com
sv.citedisplay.com
*.ariat.com
tableau.ariat.com
vpn.ariat.com
ads2.aryaka.net
usmraexpe.ariat.com
akamai-san55.exacttarget.com
akamai-san55.exacttarget.com
vpn.ariat.com
ads2.aryaka.net
ussappoqa.ariat.com
sv.citedisplay.com
akamai-san55.exacttarget.com
ads2.aryaka.net
printzpl.uat.apoyar.eu
cucn-authentication.ariat.com
newb2b.ariat.com
ads2.aryaka.net
printzpl.uat.apoyar.eu
spam.ariat.com
aemail01.ariat.com
knymhv.ariat.com
newb2b.ariat.com
cups-im.ariat.com
ads2.aryaka.net
ads2.aryaka.net
ads2.aryaka.net
support.ariat.com
ussappoqawd.ariat.com
printzpl.uat.apoyar.eu
ussapsolmprod.ariat.com
ads2.aryaka.net
ads2.aryaka.net
printzpl.uat.apoyar.eu
printzpl.uat.apoyar.eu
mail.ariat.com
ussappoqa.ariat.com
ari-alteryxpw01.ariat.com
cucn-authentication.ariat.com
enews.ariat.com
*.ariat.com
ussappoqa.ariat.com
applications.ariat.com
reporting.ariat.com
sv.citedisplay.com
ads2.aryaka.net
araw08v401.ariat.com
b2b.ariat.com
usdc02.ariat.com
ads2.aryaka.net
aemail.ariat.com
printzpl.uat.apoyar.eu
sv.citedisplay.com
pages.email.ariat.com
www.ariat.com
ussapsolm.ariat.com
ads2.aryaka.net
ads2.aryaka.net
acsbc.ariat.com
accas01.ariat.com
ussappoqawd.ariat.com
ads2.aryaka.net
development-two24.ariat.com
ussappoqa.ariat.com
newb2b.ariat.com
printzpl.uat.apoyar.eu
ads2.aryaka.net
click.email.ariat.com
printzpl.uat.apoyar.eu
ads2.aryaka.net
ads2.aryaka.net
vpn.ariat.com
planning.ariat.com
ads2.aryaka.net
win.ariat.com
sv.citedisplay.com
*.ariat.com
ads2.aryaka.net
prtg.ariat.com
spam.ariat.com
aereturns.ariat.com
ads2.aryaka.net
ads2.aryaka.net
knymhv.ariat.com
development-two24.ariat.com
enews.ariat.com
mail.ariat.com
akamai-san55.exacttarget.com
ads2.aryaka.net
aeapplications.ariat.com
cucm-authentication.ariat.com
*.ariat.com
sv.citedisplay.com
development.ariat.com
ussappoqa.ariat.com
ads2.aryaka.net
usdc02.ariat.com
ads2.aryaka.net
Certificate
The complete raw certificate details for knymhv.ariat.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFDCCBPygAwIBAgIQCHm5JYe6WspSIaq+dPLy8jANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjQw MTE4MDAwMDAwWhcNMjQwNDE5MjM1OTU5WjBxMQswCQYDVQQGEwJGUjEXMBUGA1UE CAwOw45sZS1kZS1GcmFuY2UxDjAMBgNVBAcTBVBhcmlzMR4wHAYDVQQKExVDcml0 ZW8gVGVjaG5vbG9neSBTQVMxGTAXBgNVBAMTEGtueW1odi5hcmlhdC5jb20wWTAT BgcqhkjOPQIBBggqhkjOPQMBBwNCAAR7pqgbEBFicoojUoHTwh0PwJ0XjzUSnDvK r4rKtwocMxloc+Te7QJYRcVu6g0FtMHx594fbNtiAH4XlyfAra86o4IDiTCCA4Uw HwYDVR0jBBgwFoAUdIWAwGbH3zfez70pN6oDHb7tzRcwHQYDVR0OBBYEFCLOBuUe qRh+5UwmYfUDHyhkHL0QMBsGA1UdEQQUMBKCEGtueW1odi5hcmlhdC5jb20wPgYD VR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdp Y2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIDiDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCBlDBIoEagRIZCaHR0cDovL2NybDMuZGln aWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEyNTYyMDIwQ0ExLTEu Y3JsMEigRqBEhkJodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9i YWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcmwwgYcGCCsGAQUFBwEBBHsweTAk BggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMFEGCCsGAQUFBzAC hkVodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxHMlRM U1JTQVNIQTI1NjIwMjBDQTEtMS5jcnQwDAYDVR0TAQH/BAIwADCCAXsGCisGAQQB 1nkCBAIEggFrBIIBZwFlAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xa OnQAAAGNHA4YtwAABAMARjBEAiA6yjgz8iRf/LzJdrZJziM1DYkKPjdKg0Jq1djG FnEp7gIgAW4PCAbGGbtK/sNe4j1p2lrAlxzfvtgfbNsrEPasKmUAdQBIsONr2qZH NA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY0cDhhdAAAEAwBGMEQCID0dHdL5 L/5YLyfPjMMLZuPUs7Oe8ziB7zswiKuNxypKAiA5N3bGHBZn24Kp2H4DBGhDimI4 LFXnX32RBk0LDY7pkAB1ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/ur AAABjRwOGDwAAAQDAEYwRAIgIHyTxAuzb89ldsgXJMqkvlLn6rOphAMhe7Rb4FJE LocCIACj0K5gH28uxlnAkH3r9JBOhiyJ5La6+zD5O+42iabDMA0GCSqGSIb3DQEB CwUAA4IBAQC+lsEUuS1LyW5ts2+K68hIzfLWeFqFNUl3yiQfx55CATR2DYcqRt7t IvmANDUGV8hAAw8cHU1kdLnjhO4CMtnFFO9Uovb/JVfW7TbIhabDbuXs8u1sD4ER EfcDzBl6AsexBFDWodSyVuKxxkpVispWajNarQ407yJKDzNnrpP8B1THVvJgq41f 1i7Jd+5n7vz9aKutRYC2GY33t/Uv7waeKbGXenkWwVlhnY1oCk0t7tM0dqgttv2a l6Xazyju/KInDKmAbvm5SpSFN9RJhvWhS7oj3ALUjvfge3gRHWyX3hGRVkpFCwPr uVM8TG2xe+8kcGTfk8y9/y6O8UmyoGuU -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEe6aoGxARYnKKI1KB08IdD8CdF481 Epw7yq+KyrcKHDMZaHPk3u0CWEXFbuoNBbTB8efeH2zbYgB+F5cnwK2vOg== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11265847105386494986565433322756043506 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Île-de-France' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Criteo Technology SAS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'knymhv.ariat.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1 (ecPublicKey) . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.3.1.7 (prime256v1) . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (520 bits) 00047ba6a81b101162728a235281d3c21d0fc09d178f35129c3bcaaf8acab70a1c33196873e4deed025845c56eea0d05b4c1f1e7de1f6cdb62007e179727c0adaf3a . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 22ce06e51ea9187ee54c2661f5031f28641cbd10 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knymhv.ariat.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 0388 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (359 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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