saml-idp.test.op.fi
- OP Osuuskunta -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 1c:54:2e:cb:7f:09:37:f6:00:00:00:00:50:fb:f3:ab was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
OP Osuuskunta
Organization:
OP Osuuskunta
Locality:
Helsinki
Country: FI
Country: FI
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 1c:54:2e:cb:7f:09:37:f6:00:00:00:00:50:fb:f3:abSerial Number (int): 37655485931569069182346147797499900843
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 58:9e:07:9e:c0:b0:99:6c:8b:a2:a8:b3:1a:b0:a0:32:53:ac:51:a1
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 4a:d2:4e:8d:d2:eb:db:0e:e1:c6:d7:7b:4e:d5:e9:79:be:08:aa:28
Fingerprint (sha256): 14:30:aa:f5:d1:e6:da:a7:6f:10:e0:33:71:fb:ae:e6:f0:c2:24:fb:02:9e:7e:31:d2:ca:52:20:cb:d7:31:ca
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate saml-idp.test.op.fi
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for saml-idp.test.op.fi
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
saml-idp.test.op.fi
www.saml-idp.test.op.fi
www.saml-idp.test.op.fi
Other certificates including the domain name op.fi
(limited to 100 certificates)
pilot-cms.op.fi
tok1.op.fi
www.jyty.op.fi
www.pilotti1.op.fi
rea.tuotanto.op.fi
test.tags.services.op.fi
opwlsopersr1.op.fi
jtywlshv1mv2.op.fi
marketdata.op.fi
media.op.fi
kultaraha.osuuspankki.fi
m.op.fi
securemail.op.fi
instituutioidensalkunhallinta.op.fi
valtuutus.op.fi
tk1.op.fi
tuoteasiakirjat.op.fi
api.op.fi
uutiskirje-tribedo.op.fi
verkkomaksu.op.fi
vahinkoapu.op.fi
alm.op.fi
login.pohjola.fi
uusi.lompsa.op.fi
sni.cloudflaressl.com
ocm.tags.op.fi
saml-idp.id-broker.op.fi
extlyncfarm.lync.op-palvelut.fi
lr7-pilot-cms.op.fi
kultaraha.osuuspankki.fi
test.ocm.tags.op.fi
uutiskirje.op.fi
varainhoito.op.fi
sni.cloudflaressl.com
in.tupas.op.fi
marketdata.show.op.fi
dps.op.fi
sni.cloudflaressl.com
isam-mgmt-fed.opcloud.op.fi
hae-korvausta.op.fi
ostalaskulla.op.fi
sni.cloudflaressl.com
silta.wsmobdom.HE1.op.fi
wsk.op.fi
authorize.op.fi
webmail.op-palvelut.net
verkkomaksu.op.fi
vahinkoapu.op.fi
uutiskirje.op.fi
tes3.op.fi
pilot.op.fi
www2.op.fi
allekirjoitus.op.fi
cert-baltics.sca.op.fi
psd2.mtls.sandbox.apis.op.fi
uutiskirje-tribedo.op.fi
mtls.apis.op.fi
marketdata.op.fi
www.jyty.op.fi
kultaraha.op.fi
hoksaamo.op.fi
dmc.email.op.fi
historia.op.fi
uusi.lompsa.jyty.op.fi
allekirjoitus.op.fi
yritys.op.fi
pilot.lainaa.op.fi
saml-idp.test.op.fi
vea.op.fi
isb.op.fi
test.ocm.tags.op.fi
sp.op.fi
kokeile.op.fi
pilot.saana.op.fi
marketdata.op.fi
ocm.tags.op.fi
oidc-client-registration.op.fi
vuosi.op.fi
uutiskirje.op.fi
ocm.tags.op.fi
uutiskirje-tribedo.op.fi
saavutettava.op.fi
lainaa.op.fi
isb-test.op.fi
kultaraha.osuuspankki.fi
static.apiauth.services.op.fi
c104s412vm011.op.fi
sni.cloudflaressl.com
c104s412vm011.op.fi
saml-idp.test.op.fi
wsk.extranet.asiakastesti.op.fi
OPMQSSB.OP.FI
isb.op.fi
securemail.op.fi
webprod.pohjola.fi
isam-web.opcloud.op.fi
vahinkoapu.pohjola.fi
saml-idp.test.op.fi
SAPBCM.op.fi
paivittaispalvelu.op.fi
tok1.op.fi
www.jyty.op.fi
www.pilotti1.op.fi
rea.tuotanto.op.fi
test.tags.services.op.fi
opwlsopersr1.op.fi
jtywlshv1mv2.op.fi
marketdata.op.fi
media.op.fi
kultaraha.osuuspankki.fi
m.op.fi
securemail.op.fi
instituutioidensalkunhallinta.op.fi
valtuutus.op.fi
tk1.op.fi
tuoteasiakirjat.op.fi
api.op.fi
uutiskirje-tribedo.op.fi
verkkomaksu.op.fi
vahinkoapu.op.fi
alm.op.fi
login.pohjola.fi
uusi.lompsa.op.fi
sni.cloudflaressl.com
ocm.tags.op.fi
saml-idp.id-broker.op.fi
extlyncfarm.lync.op-palvelut.fi
lr7-pilot-cms.op.fi
kultaraha.osuuspankki.fi
test.ocm.tags.op.fi
uutiskirje.op.fi
varainhoito.op.fi
sni.cloudflaressl.com
in.tupas.op.fi
marketdata.show.op.fi
dps.op.fi
sni.cloudflaressl.com
isam-mgmt-fed.opcloud.op.fi
hae-korvausta.op.fi
ostalaskulla.op.fi
sni.cloudflaressl.com
silta.wsmobdom.HE1.op.fi
wsk.op.fi
authorize.op.fi
webmail.op-palvelut.net
verkkomaksu.op.fi
vahinkoapu.op.fi
uutiskirje.op.fi
tes3.op.fi
pilot.op.fi
www2.op.fi
allekirjoitus.op.fi
cert-baltics.sca.op.fi
psd2.mtls.sandbox.apis.op.fi
uutiskirje-tribedo.op.fi
mtls.apis.op.fi
marketdata.op.fi
www.jyty.op.fi
kultaraha.op.fi
hoksaamo.op.fi
dmc.email.op.fi
historia.op.fi
uusi.lompsa.jyty.op.fi
allekirjoitus.op.fi
yritys.op.fi
pilot.lainaa.op.fi
saml-idp.test.op.fi
vea.op.fi
isb.op.fi
test.ocm.tags.op.fi
sp.op.fi
kokeile.op.fi
pilot.saana.op.fi
marketdata.op.fi
ocm.tags.op.fi
oidc-client-registration.op.fi
vuosi.op.fi
uutiskirje.op.fi
ocm.tags.op.fi
uutiskirje-tribedo.op.fi
saavutettava.op.fi
lainaa.op.fi
isb-test.op.fi
kultaraha.osuuspankki.fi
static.apiauth.services.op.fi
c104s412vm011.op.fi
sni.cloudflaressl.com
c104s412vm011.op.fi
saml-idp.test.op.fi
wsk.extranet.asiakastesti.op.fi
OPMQSSB.OP.FI
isb.op.fi
securemail.op.fi
webprod.pohjola.fi
isam-web.opcloud.op.fi
vahinkoapu.pohjola.fi
saml-idp.test.op.fi
SAPBCM.op.fi
paivittaispalvelu.op.fi
Certificate
The complete raw certificate details for saml-idp.test.op.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHMDCCBhigAwIBAgIQHFQuy38JN/YAAAAAUPvzqzANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x OTEyMTcxMTMzMjhaFw0yMjAyMjAxMjAzMjdaMFYxCzAJBgNVBAYTAkZJMREwDwYD VQQHEwhIZWxzaW5raTEWMBQGA1UEChMNT1AgT3N1dXNrdW50YTEcMBoGA1UEAxMT c2FtbC1pZHAudGVzdC5vcC5maTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI2VYlW0y1vvXQ/lpR2Fa/JO01H5DRuKJQeN8Hl4qLQBPZZMOVYZIfR28vOg YJhWlUV6/jzaDsHC7hUAhEqlVHzVCcRNgSokgQ3dc6hgO3Wp7aQ+Z9jkHU8BciXD OB5jNm+GjktsORUCHYcshObkeKk2Oum9r7F1DaaiJlkN0TMVrI+YRNBzAj9VzyUi uwGj7GJFPvh+8dm3pvFBNn7oVyzIJj6ZeZPO3xInGGQX3AeNLQ86Y2DWPcpr67rm ohrs5SYtJ9Dqwfg+mCdZAC9FZGkYcAk0Bc1BZxnwQ//A1o82awey4AhPdKVZoz23 0vybbOU/CT8y0uh/kluLo59HDrMCAwEAAaOCA5MwggOPMDcGA1UdEQQwMC6CE3Nh bWwtaWRwLnRlc3Qub3AuZmmCF3d3dy5zYW1sLWlkcC50ZXN0Lm9wLmZpMIIB9gYK KwYBBAHWeQIEAgSCAeYEggHiAeAAdwCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDB tOr/XqCDDwAAAW8Tvea6AAAEAwBIMEYCIQDwtnV93MzlO6oB+kBuBYSaA9gbIpj8 Qzt3WCTkmDl59gIhALTJqnpmwDxqKCdirROk4vc4RuJr2q0nH/P6daRDFWCtAHUA VYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAFvE73mvwAABAMARjBE AiA6wR0xX9b9A3zAasCvAQFxxGCrDHoJNR1x/qmNIddUuQIgZ+aupexRznUZkmys rhPH4smcpDXXUh8l/FmhUEjCU3gAdgBWFAaaL9fC7NP14b1Esj7HRna5vJkRXMDv lJhV1onQ3QAAAW8TvebOAAAEAwBHMEUCIC2EgqyMvEcuUMJ7+hme8Zy0bVVWX/wP WNT+EyPhM9f+AiEAhx92LMvbxKUpncqW5YdM1eYT3qastHVCovqisKv6A2wAdgCk uQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAW8TvebVAAAEAwBHMEUC IQDGTA+F1Y2f4dVGXQlokq7rFPlFtOmyAFC6L7voBo1ZfAIgWY8tgPABe2XqqMfh dLudXT3iRjGV4D8hNdzbiWWuH68wDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMBMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6Ly9jcmwuZW50cnVzdC5u ZXQvbGV2ZWwxay5jcmwwSwYDVR0gBEQwQjA2BgpghkgBhvpsCgEFMCgwJgYIKwYB BQUHAgEWGmh0dHA6Ly93d3cuZW50cnVzdC5uZXQvcnBhMAgGBmeBDAECAjBoBggr BgEFBQcBAQRcMFowIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0 MDMGCCsGAQUFBzAChidodHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxay1jaGFpbjI1 Ni5jZXIwHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3zX+nYMYKTL8wHQYDVR0OBBYE FFieB57AsJlsi6KosxqwoDJTrFGhMAkGA1UdEwQCMAAwDQYJKoZIhvcNAQELBQAD ggEBAHG8Kmtc2cmreTlkSniKuxhvopXMgBzOCK3gVA0v88aVUilHC04wmyMvaAKZ mohICFHCXExZx/0avgVTXGAjDh5S1zpbDRLftZvbiY6yGnmyzxXhoKbvt3NXUQ9K e04iCTFTGDzD81Fq7aA5KzILGEOxBs/rc/79+Y2X4mBVVmqraj0xeKjZMwUDdAOk 4itPYlD8nnWn87gWMcH+FgtpwXUaWDWdPcnx5eBe/g5GYehPMlMvk5qXlsTytd1B XT6z+Tgm4kOIdOj8VIHkyjzqNIiKDqFZ916WhgGJhD3vJjKLRrR5l37TAysyLMEB bAAXRKM8A96iHkbt/ZX+Qd3qexQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjZViVbTLW+9dD+WlHYVr 8k7TUfkNG4olB43weXiotAE9lkw5Vhkh9Hby86BgmFaVRXr+PNoOwcLuFQCESqVU fNUJxE2BKiSBDd1zqGA7dantpD5n2OQdTwFyJcM4HmM2b4aOS2w5FQIdhyyE5uR4 qTY66b2vsXUNpqImWQ3RMxWsj5hE0HMCP1XPJSK7AaPsYkU++H7x2bem8UE2fuhX LMgmPpl5k87fEicYZBfcB40tDzpjYNY9ymvruuaiGuzlJi0n0OrB+D6YJ1kAL0Vk aRhwCTQFzUFnGfBD/8DWjzZrB7LgCE90pVmjPbfS/Jts5T8JPzLS6H+SW4ujn0cO swIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 37655485931569069182346147797499900843 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-17 11:33:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-20 12:03:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Helsinki' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OP Osuuskunta' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'saml-idp.test.op.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17873265055417943456977711808991939694770673308832056297716821726022203973498612585233428330338565755714463995090848111883739685228101315311019512771717831561921756388611194713357876263769513161215136000462036335736451777825002115786934716782928482180658571337437238441304173228873499676295260137956050848166756746089310804071214048234790138266296759136059892088540570121216379556189348338522333064152361864189579889817987157434175660501965809985493664922661428579558914353370150821851538069504350059973354146936593910204604511981475868876146564452001366441953228320609135771749553222725476754773538401776210935221939 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saml-idp.test.op.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.saml-idp.test.op.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 589e079ec0b0996c8ba2a8b31ab0a03253ac51a1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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