remote.bokf.com
- BOK Financial Corporation -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 1c:a1:aa:61:79:f6:af:5a:31:a3:8e:76:4b:b8:28:49 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
BOK Financial Corporation
Organization:
BOK Financial Corporation
State / Province:
Oklahoma
Locality: Tulsa
Country: US
Locality: Tulsa
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 1c:a1:aa:61:79:f6:af:5a:31:a3:8e:76:4b:b8:28:49Serial Number (int): 38057799408712046375039105285574109257
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: d5:54:19:76:7b:93:d9:df:01:f8:39:e7:68:2c:f8:3d:88:06:11:1a
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 89:40:d0:8d:a7:74:28:13:b1:78:6e:5e:63:15:b9:41:98:eb:06:e6
Fingerprint (sha256): 13:bc:d5:5e:bd:44:95:ff:12:07:15:df:52:94:e1:96:4a:6c:c3:79:e5:2f:83:34:cc:9b:11:a6:60:ad:b6:c5
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate remote.bokf.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for remote.bokf.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
remote.bokf.com
btcasaasp001p.bok.com
btcasaasp001p.bok.com
Other certificates including the domain name bokf.com
(limited to 100 certificates)
homenow-d.bokf.com
chat.bokf.com
onlinebanking.bokfinancial.com
VRT-CDT-F02-UAP.bokf.com
demo.spendcontrol.bokf.com
tradeadvance.bokf.com
tradeadvance.bokf.com
m3.treasurysource.bokf.com
mortgagenow.bokf.com
insights.bokf.com
thebeacon.bokf.com
onlinebanking.bokfinancial.com
treasurysource2.bokf.com
onlinebanking.bokfinancial.com
homenow-t.bokf.com
mortgagebanker.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
www.bokfinancial.com
fxadvance.bokf.com
media.bokf.com
FXAdvance3.bokf.com
s.bokf.com
homenow.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
www.bokf.com
remote.bokf.com
startrightauth.bokf.com
FXAdvance2.bokf.com
homenow-t.bokf.com
imperva.com
magnet.bokf.com
m2.businesssource.bokf.com
imperva.com
mortgage.bokf.com
treasurysource.bokf.com
bankconnect.bokf.com
startright.bokf.com
fxadvance.bokf.com
homenow-t.bokf.com
cashvault.bokf.com
m2.treasurysource.bokf.com
bankconnecttest.bokf.com
imperva.com
homenow.bokf.com
mortgagebanker.bokf.com
*.portal.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
remote.bokf.com
investor.bokf.com
thebeacon.bokf.com
businesssource2.bokf.com
clientsource.bokf.com
imperva.com
homenow-mqa.bokf.com
mortgagenow.bokf.com
imperva.com
response.bokf.com
evision.bokf.com
securemail.bokf.com
mortgage.bokf.com
mortgage.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
remote.bokf.com
businesssource2.bokf.com
vrt-cdt-f02-uap.bokf.com
*.portal.bokf.com
spendcontrol.bokf.com
onlinebanking.bokfinancial.com
www.spendcontrol.bokf.com
dbpsamlsso.bokf.com
remitviewdemo.bokf.com
go.bokf.com
remitviewdemo.bokf.com
eserviceswc.bokf.com
demo.webera.bokf.com
imperva.com
investor.bokf.com
FXAdvance2.bokf.com
maintenance.bokf.com
homenow-d.bokf.com
owa.bokf.com
payweb.bokf.com
www.bokfinancial.com
businesssource.bokf.com
homenow.bokf.com
cs.bokf.com
homenow-t.bokf.com
www.bokfinancial.com
remote.bokf.com
m.businesssource.bokf.com
eserviceswc.bokf.com
pospay.bokf.com
returnsource.bokf.com
mortgagebanker.bokf.com
FXAdvance3.bokf.com
securemail.bokf.com
businesssource.bokf.com
BusinessSource.bokf.com
FXAdvance3.bokf.com
treasurysource2.bokf.com
chat.bokf.com
onlinebanking.bokfinancial.com
VRT-CDT-F02-UAP.bokf.com
demo.spendcontrol.bokf.com
tradeadvance.bokf.com
tradeadvance.bokf.com
m3.treasurysource.bokf.com
mortgagenow.bokf.com
insights.bokf.com
thebeacon.bokf.com
onlinebanking.bokfinancial.com
treasurysource2.bokf.com
onlinebanking.bokfinancial.com
homenow-t.bokf.com
mortgagebanker.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
www.bokfinancial.com
fxadvance.bokf.com
media.bokf.com
FXAdvance3.bokf.com
s.bokf.com
homenow.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
www.bokf.com
remote.bokf.com
startrightauth.bokf.com
FXAdvance2.bokf.com
homenow-t.bokf.com
imperva.com
magnet.bokf.com
m2.businesssource.bokf.com
imperva.com
mortgage.bokf.com
treasurysource.bokf.com
bankconnect.bokf.com
startright.bokf.com
fxadvance.bokf.com
homenow-t.bokf.com
cashvault.bokf.com
m2.treasurysource.bokf.com
bankconnecttest.bokf.com
imperva.com
homenow.bokf.com
mortgagebanker.bokf.com
*.portal.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
remote.bokf.com
investor.bokf.com
thebeacon.bokf.com
businesssource2.bokf.com
clientsource.bokf.com
imperva.com
homenow-mqa.bokf.com
mortgagenow.bokf.com
imperva.com
response.bokf.com
evision.bokf.com
securemail.bokf.com
mortgage.bokf.com
mortgage.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
remote.bokf.com
businesssource2.bokf.com
vrt-cdt-f02-uap.bokf.com
*.portal.bokf.com
spendcontrol.bokf.com
onlinebanking.bokfinancial.com
www.spendcontrol.bokf.com
dbpsamlsso.bokf.com
remitviewdemo.bokf.com
go.bokf.com
remitviewdemo.bokf.com
eserviceswc.bokf.com
demo.webera.bokf.com
imperva.com
investor.bokf.com
FXAdvance2.bokf.com
maintenance.bokf.com
homenow-d.bokf.com
owa.bokf.com
payweb.bokf.com
www.bokfinancial.com
businesssource.bokf.com
homenow.bokf.com
cs.bokf.com
homenow-t.bokf.com
www.bokfinancial.com
remote.bokf.com
m.businesssource.bokf.com
eserviceswc.bokf.com
pospay.bokf.com
returnsource.bokf.com
mortgagebanker.bokf.com
FXAdvance3.bokf.com
securemail.bokf.com
businesssource.bokf.com
BusinessSource.bokf.com
FXAdvance3.bokf.com
treasurysource2.bokf.com
Certificate
The complete raw certificate details for remote.bokf.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIQHKGqYXn2r1oxo452S7goSTANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDA0MTgwMDQ1NDBaFw0yNTA1MDEwMDQ1MzlaMG4xCzAJBgNVBAYTAlVTMREwDwYD VQQIEwhPa2xhaG9tYTEOMAwGA1UEBxMFVHVsc2ExIjAgBgNVBAoTGUJPSyBGaW5h bmNpYWwgQ29ycG9yYXRpb24xGDAWBgNVBAMTD3JlbW90ZS5ib2tmLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM94NaStLPCQVlalf87IsgdPNL1C 1GP3fkrolALVqXS/UgZCfJnlC1ikSpYabEIBUbof06KuWMwIxYyijQTEQfcTu0gr uQqE8UYt2DuLDYKD9IqFhyjeha9q7q4BpyHHIOl7wYkd8I9NTsIXuRYXE6CnZzT6 T/He6v0AyqCWfpD0fptzWtFxRZ/rdEtiJGLCejyNlguTNOrdw9PNIGoAyzq5EJlo 7wVr8GHqC/RQVEbRTtk6WbasKO2Es7xn8q4f0Tl+Hum34n0LzwMpcbdG7abFIKj2 4PIZqNlbNohbHZCntooib7VY8LGrGF9JMuYCbWInaYvFrBeseQ1VA5Wgx0MCAwEA AaOCAX0wggF5MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNVUGXZ7k9nfAfg552gs +D2IBhEaMB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU981/p2DGCky/MGgGCCsGAQUF BwEBBFwwWjAjBggrBgEFBQcwAYYXaHR0cDovL29jc3AuZW50cnVzdC5uZXQwMwYI KwYBBQUHMAKGJ2h0dHA6Ly9haWEuZW50cnVzdC5uZXQvbDFrLWNoYWluMjU2LmNl cjAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLmVudHJ1c3QubmV0L2xldmVs MWsuY3JsMDEGA1UdEQQqMCiCD3JlbW90ZS5ib2tmLmNvbYIVYnRjYXNhYXNwMDAx cC5ib2suY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwEwYDVR0gBAwwCjAIBgZngQwBAgIwEwYKKwYBBAHWeQIEAwEB/wQC BQAwDQYJKoZIhvcNAQELBQADggEBAHOpOe+rFsb9xgz1/MjfOhf33vTC7j8Mw1UW OQr5jgjJnP0EQNQ3lhvfqb1bAPlTYBy8ni8UnpJduV4pKIScf6tsHq8BlJImBKsg qcV+VRARp2CIknpenXuXSUIf0xMbseK9EutxgOUm07rUaniEXr+xIWWRR9DpCNy+ hE/vfm9ft4RuAXbYPBCpvNPnqftOU0goL2pDJ0hAR07opmJXyctgcBHc05COItyG c9M9mT5ggxGkKb89N3Ist5k2UP2eo5htIX6b5c3m8zC9H70o9DBvjU99XSJwi20g 3Tgt7BvQ+dCcSNql83mC60P9tE9GNrAFGHNxkgEBIX5ibrwFhU8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3g1pK0s8JBWVqV/zsiy B080vULUY/d+SuiUAtWpdL9SBkJ8meULWKRKlhpsQgFRuh/Toq5YzAjFjKKNBMRB 9xO7SCu5CoTxRi3YO4sNgoP0ioWHKN6Fr2rurgGnIccg6XvBiR3wj01Owhe5FhcT oKdnNPpP8d7q/QDKoJZ+kPR+m3Na0XFFn+t0S2IkYsJ6PI2WC5M06t3D080gagDL OrkQmWjvBWvwYeoL9FBURtFO2TpZtqwo7YSzvGfyrh/ROX4e6bfifQvPAylxt0bt psUgqPbg8hmo2Vs2iFsdkKe2iiJvtVjwsasYX0ky5gJtYidpi8WsF6x5DVUDlaDH QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 38057799408712046375039105285574109257 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-18 00:45:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-01 00:45:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Oklahoma' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tulsa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BOK Financial Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'remote.bokf.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26190606663431180388894214145069524616087716227369135217782908036601377117730783167334993907692324207596891957482811613616264975530957556768083746549093663689767978018524233073629250218348735690973579417866417837741958723992967299726941178318776558670615264489473767184995371781360141153935398407195843758407488169899839226651313155139522031515525120860015297866090557162825716948776078901407753065070566448161395780795181814271289253841968194460550017399016210201736365337334119861806482681948337853290282014357557684791566559819734691339035638112571567250345239516064734374965579474233938244574439197717713960093507 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d55419767b93d9df01f839e7682cf83d8806111a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'remote.bokf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'btcasaasp001p.bok.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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