onlinelcapi.max.co.il
- Leumi Card Ltd -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 01:ed:9c:26:92:b3:3f:d3:4d:c9:5f:b6:ca:43:9d:e6 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Leumi Card Ltd
Organization:
Leumi Card Ltd
Organization unit: IT
Organization unit: IT
Locality:
Bnei Brak
Country: IL
Country: IL
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:ed:9c:26:92:b3:3f:d3:4d:c9:5f:b6:ca:43:9d:e6Serial Number (int): 2562969463227525786080434462551940582
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: dd:90:c0:49:99:e9:41:40:50:f1:d9:41:a8:a1:c7:bf:31:bf:67:1d
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 17:8c:36:c5:91:ae:eb:2b:66:61:b0:ff:b6:1e:aa:08:64:78:a5:68
Fingerprint (sha256): 13:76:68:1a:b8:72:ae:e3:06:c9:5c:c9:4a:c6:03:cd:29:db:72:d4:60:2a:a0:1c:c0:5c:c8:42:6c:13:a0:12
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate onlinelcapi.max.co.il
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for onlinelcapi.max.co.il
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
onlinelcapi.max.co.il
Other certificates including the domain name max.co.il
(limited to 100 certificates)
ct.max.co.il
media.max.co.il
businesslc.max.co.il
tracking.max.co.il
cbxapps.max.co.il
media.max.co.il
businesslc.max.co.il
home.max.co.il
scvt.max.co.il
online.max.co.il
api.max.co.il
affiliate.max.co.il
developers.max.co.il
apirt.max.co.il
*.adventure.max.co.il
media.max.co.il
gb.max.co.il
businesslcapi.max.co.il
gpack.uk
businesslc.max.co.il
app-dev.wearefairgame.com
affiliate.max.co.il
mpg.max.co.il
survey.max.co.il
api-ob.max.co.il
onlinelcapi.max.co.il
onlinelcapi.max.co.il
api-obauth-test.max.co.il
vi.max.co.il
api-test.max.co.il
media.max.co.il
developer.max.co.il
ct.max.co.il
smcm.max.co.il
esa.max.co.il
accessibility.max.co.il
api-ob-test.max.co.il
rest.max.co.il
tracking.max.co.il
accessibility.max.co.il
www.max.co.il
online.max.co.il
developer.max.co.il
www.weni.app
gb.max.co.il
dev.smarttif.dataauchan.fr
accessibility.max.co.il
work.max.co.il
home.max.co.il
ft.max.co.il
cbxapps.max.co.il
tracking.max.co.il
rest.max.co.il
ims.max.co.il
www.theotterco.ca
sky.max.co.il
work2.max.co.il
api-ob.max.co.il
www.sky.max.co.il
businessreports.max.co.il
api.max.co.il
tracking.max.co.il
accessibility.max.co.il
accessibility.max.co.il
developer.max.co.il
work.max.co.il
gb.max.co.il
api-test.max.co.il
www.acqua.app
with.global.chatie.me
taxcellence.aaddress.in
o10.max.co.il
esa.max.co.il
gb.max.co.il
bar-ltd.max.co.il
wsbalerts.com
salmonf.max.co.il
ct.max.co.il
ct.max.co.il
www.weni.app
api.max.co.il
p-cfreports.max.co.il
max.co.il
rsasigning.max.co.il
mpg-test.max.co.il
www.max.co.il
businessreports.max.co.il
enside.online
sky.max.co.il
rsasigning.max.co.il
onlinelcapi.max.co.il
www.max.co.il
businessreports.max.co.il
gb.max.co.il
o10.max.co.il
surveys.max.co.il
api-test.max.co.il
developer.max.co.il
fly.max.co.il
businessinfo.max.co.il
media.max.co.il
businesslc.max.co.il
tracking.max.co.il
cbxapps.max.co.il
media.max.co.il
businesslc.max.co.il
home.max.co.il
scvt.max.co.il
online.max.co.il
api.max.co.il
affiliate.max.co.il
developers.max.co.il
apirt.max.co.il
*.adventure.max.co.il
media.max.co.il
gb.max.co.il
businesslcapi.max.co.il
gpack.uk
businesslc.max.co.il
app-dev.wearefairgame.com
affiliate.max.co.il
mpg.max.co.il
survey.max.co.il
api-ob.max.co.il
onlinelcapi.max.co.il
onlinelcapi.max.co.il
api-obauth-test.max.co.il
vi.max.co.il
api-test.max.co.il
media.max.co.il
developer.max.co.il
ct.max.co.il
smcm.max.co.il
esa.max.co.il
accessibility.max.co.il
api-ob-test.max.co.il
rest.max.co.il
tracking.max.co.il
accessibility.max.co.il
www.max.co.il
online.max.co.il
developer.max.co.il
www.weni.app
gb.max.co.il
dev.smarttif.dataauchan.fr
accessibility.max.co.il
work.max.co.il
home.max.co.il
ft.max.co.il
cbxapps.max.co.il
tracking.max.co.il
rest.max.co.il
ims.max.co.il
www.theotterco.ca
sky.max.co.il
work2.max.co.il
api-ob.max.co.il
www.sky.max.co.il
businessreports.max.co.il
api.max.co.il
tracking.max.co.il
accessibility.max.co.il
accessibility.max.co.il
developer.max.co.il
work.max.co.il
gb.max.co.il
api-test.max.co.il
www.acqua.app
with.global.chatie.me
taxcellence.aaddress.in
o10.max.co.il
esa.max.co.il
gb.max.co.il
bar-ltd.max.co.il
wsbalerts.com
salmonf.max.co.il
ct.max.co.il
ct.max.co.il
www.weni.app
api.max.co.il
p-cfreports.max.co.il
max.co.il
rsasigning.max.co.il
mpg-test.max.co.il
www.max.co.il
businessreports.max.co.il
enside.online
sky.max.co.il
rsasigning.max.co.il
onlinelcapi.max.co.il
www.max.co.il
businessreports.max.co.il
gb.max.co.il
o10.max.co.il
surveys.max.co.il
api-test.max.co.il
developer.max.co.il
fly.max.co.il
businessinfo.max.co.il
Certificate
The complete raw certificate details for onlinelcapi.max.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGmzCCBYOgAwIBAgIQAe2cJpKzP9NNyV+2ykOd5jANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTkwMTI0MDAwMDAwWhcN MjEwMTI0MTIwMDAwWjBnMQswCQYDVQQGEwJJTDESMBAGA1UEBxMJQm5laSBCcmFr MRcwFQYDVQQKEw5MZXVtaSBDYXJkIEx0ZDELMAkGA1UECxMCSVQxHjAcBgNVBAMT FW9ubGluZWxjYXBpLm1heC5jby5pbDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBANvAtlmwsYPQ+WuMC3Qdt7Rf53fatDPxDiI30hkqt/3IyxFPisxqD3Hc k8hhb29tIytaEBS6EeXb6iJ4PZgH0HNX+V5NwvroG7tdzZI/G+vbOSNjDBc1Hor1 sbNDgYFyFjo3J1aseaxFn+eRycxUboFwXAiCuVvRKYTrV4vPyO77DWb5P6HrzC0d Sl2DqovoeGTAvwQ2Xlxg1+TkS692SrxLprpBZ7gU/2137/kNsLq4quXIhZ+z6r5U g3ScoOJg2urTNsosByiBjD2Rt8djuKfqZB8ErM99avorsQEebvdPnM5qi+AoAXm5 6q3UhpZSNi4tRGwM3ObwT2skuBQHyTcCAwEAAaOCA1swggNXMB8GA1UdIwQYMBaA FA+AYRyCMWHVLyjnjUY4tCzhxtniMB0GA1UdDgQWBBTdkMBJmelBQFDx2UGooce/ Mb9nHTAgBgNVHREEGTAXghVvbmxpbmVsY2FwaS5tYXguY28uaWwwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8EZDBi MC+gLaArhilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc2LmNy bDAvoC2gK4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5j cmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwfAYIKwYBBQUHAQEEcDBu MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wRgYIKwYBBQUH MAKGOmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJTZWN1 cmVTZXJ2ZXJDQS5jcnQwCQYDVR0TBAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIB agFoAHUA9lyUL9F3MCIUVBgIMJRWjuNNExkzv98MLyALzE7xZOMAAAFogAH5wwAA BAMARjBEAiABQQjGb1AKOLCl5/R+L3OHktp9ZyP+rNxnYf58GhqgfgIgOFIHVEfN SiqOgYGvYI5K/CK1iqhOBba6DoY85kW0Y5MAdwCHdb/nWXz4jEOZX73zbv9WjUdW Nv9KtWDBtOr/XqCDDwAAAWiAAfr9AAAEAwBIMEYCIQCOe9UiZubEX4VEIwRViHlS ATkfjEVvj3evHKFt48vhawIhAOkQh3BHCXN/nXqfLPeW/H5lYAzzkdUqQ4opS546 mZWjAHYAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFogAH7GQAA BAMARzBFAiEAlv11MrXqMFZShBUEma7tUZ8AzmhYWewJ70e8i6XmdrkCIAqWINHW 6byjzmdk5KDeZYc2kIAramRjcy2WjupS97qVMA0GCSqGSIb3DQEBCwUAA4IBAQAy etGQ3NGIccxcvwSD6BdDfTLW/+lEHpY2yGlAqeMJmi+qilvwpQlGvs89LUY+p1+/ I8+aWgujNlMO7iyEZC2MknAupFHfsKfoVKaocMhsKtu6Hsnm4dgcd5HRMx1h6PxF Bi4oEBZPFNmohOk9NkbHAFnxXpk4FTWzvVcQxqFKQzYpg1US31uON3qq0/twKi1d ReBXtJa0fbEGH7stPWAT4+lwQvq8GRg78WtNGOm+/cweu4yyoWw6e5lmI9hKucQn QB/jnfbjSyb/EtQ6ZPocFgyaxP/Kv0UsoIXwSdfamMXarL3BBDEUGQ0HNi1G2xPH QVXek3RvWwAxEi3G5BL/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA28C2WbCxg9D5a4wLdB23 tF/nd9q0M/EOIjfSGSq3/cjLEU+KzGoPcdyTyGFvb20jK1oQFLoR5dvqIng9mAfQ c1f5Xk3C+ugbu13Nkj8b69s5I2MMFzUeivWxs0OBgXIWOjcnVqx5rEWf55HJzFRu gXBcCIK5W9EphOtXi8/I7vsNZvk/oevMLR1KXYOqi+h4ZMC/BDZeXGDX5ORLr3ZK vEumukFnuBT/bXfv+Q2wuriq5ciFn7PqvlSDdJyg4mDa6tM2yiwHKIGMPZG3x2O4 p+pkHwSsz31q+iuxAR5u90+czmqL4CgBebnqrdSGllI2Li1EbAzc5vBPayS4FAfJ NwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2562969463227525786080434462551940582 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-24 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bnei Brak' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Leumi Card Ltd' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'onlinelcapi.max.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27741218767502840223938110328755131807789988614424492427356440788874554121068961253414448789160096284420889386382372944613911508814694019081592445689722380149566722823441452409057540905004413207876732126189028829746788286545112059484479293115858268453936476876092288478193657665414222424246173634078356117318539977758993517490306645694917981565420871189978507580640241090354215095402211026163879013110214094293794087800396525702802418102475311896829807288044226731587111689092898543830897228573915305794884793149444725837874521365988836817131324583085357649530506156087903289252916760240483031216366324026827067607351 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dd90c04999e9414050f1d941a8a1c7bf31bf671d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onlinelcapi.max.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00327ad190dcd18871cc5cbf0483e817437d32d6ffe9441e9636c86940a9e3099a2faa8a5bf0a50946becf3d2d463ea75fbf23cf9a5a0ba336530eee2c84642d8c92702ea451dfb0a7e854a6a870c86c2adbba1ec9e6e1d81c7791d1331d61e8fc45062e2810164f14d9a884e93d3646c70059f15e99381535b3bd5710c6a14a433629835512df5b8e377aaad3fb702a2d5d45e057b496b47db1061fbb2d3d6013e3e97042fabc19183bf16b4d18e9befdcc1ebb8cb2a16c3a7b996623d84ab9c427401fe39df6e34b26ff12d43a64fa1c160c9ac4ffcabf452ca085f049d7da98c5daacbdc1043114190d07362d46db13c74155de93746f5b0031122dc6e412ff