spendcontrol.bokf.com
- MasterCard International Incorporated -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 1e:3e:9f:35:dd:65:31:33:59:16:e2:7e:79:c8:94:04 was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
MasterCard International Incorporated
Organization:
MasterCard International Incorporated
Locality:
Waterloo
Country: BE
Country: BE
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 1e:3e:9f:35:dd:65:31:33:59:16:e2:7e:79:c8:94:04Serial Number (int): 40201991449514750393149916109930533892
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 60:95:9a:5e:c5:dc:92:2c:1b:c2:88:aa:73:dd:e6:a0:e7:2e:5c:46
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 67:fd:9d:fb:4f:1c:6b:ec:7a:bb:f2:08:bf:23:cb:01:86:88:ca:1b
Fingerprint (sha256): 15:62:45:57:3b:17:07:6a:c2:89:cb:58:a3:00:e9:68:15:02:ae:61:dd:dc:41:5d:a0:1e:9b:7f:56:67:2c:4d
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate spendcontrol.bokf.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for spendcontrol.bokf.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
spendcontrol.bokf.com
Other certificates including the domain name bokf.com
(limited to 100 certificates)
homenow-d.bokf.com
chat.bokf.com
onlinebanking.bokfinancial.com
VRT-CDT-F02-UAP.bokf.com
demo.spendcontrol.bokf.com
tradeadvance.bokf.com
tradeadvance.bokf.com
m3.treasurysource.bokf.com
mortgagenow.bokf.com
insights.bokf.com
thebeacon.bokf.com
onlinebanking.bokfinancial.com
treasurysource2.bokf.com
onlinebanking.bokfinancial.com
homenow-t.bokf.com
mortgagebanker.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
www.bokfinancial.com
fxadvance.bokf.com
media.bokf.com
FXAdvance3.bokf.com
s.bokf.com
homenow.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
www.bokf.com
remote.bokf.com
startrightauth.bokf.com
FXAdvance2.bokf.com
homenow-t.bokf.com
imperva.com
magnet.bokf.com
m2.businesssource.bokf.com
imperva.com
mortgage.bokf.com
treasurysource.bokf.com
bankconnect.bokf.com
startright.bokf.com
fxadvance.bokf.com
homenow-t.bokf.com
cashvault.bokf.com
m2.treasurysource.bokf.com
bankconnecttest.bokf.com
imperva.com
homenow.bokf.com
mortgagebanker.bokf.com
*.portal.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
remote.bokf.com
investor.bokf.com
thebeacon.bokf.com
businesssource2.bokf.com
clientsource.bokf.com
imperva.com
homenow-mqa.bokf.com
mortgagenow.bokf.com
imperva.com
response.bokf.com
evision.bokf.com
securemail.bokf.com
mortgage.bokf.com
mortgage.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
remote.bokf.com
businesssource2.bokf.com
vrt-cdt-f02-uap.bokf.com
*.portal.bokf.com
spendcontrol.bokf.com
onlinebanking.bokfinancial.com
www.spendcontrol.bokf.com
dbpsamlsso.bokf.com
remitviewdemo.bokf.com
go.bokf.com
remitviewdemo.bokf.com
eserviceswc.bokf.com
demo.webera.bokf.com
imperva.com
investor.bokf.com
FXAdvance2.bokf.com
maintenance.bokf.com
homenow-d.bokf.com
owa.bokf.com
payweb.bokf.com
www.bokfinancial.com
businesssource.bokf.com
homenow.bokf.com
cs.bokf.com
homenow-t.bokf.com
www.bokfinancial.com
remote.bokf.com
m.businesssource.bokf.com
eserviceswc.bokf.com
pospay.bokf.com
returnsource.bokf.com
mortgagebanker.bokf.com
FXAdvance3.bokf.com
securemail.bokf.com
businesssource.bokf.com
BusinessSource.bokf.com
FXAdvance3.bokf.com
treasurysource2.bokf.com
chat.bokf.com
onlinebanking.bokfinancial.com
VRT-CDT-F02-UAP.bokf.com
demo.spendcontrol.bokf.com
tradeadvance.bokf.com
tradeadvance.bokf.com
m3.treasurysource.bokf.com
mortgagenow.bokf.com
insights.bokf.com
thebeacon.bokf.com
onlinebanking.bokfinancial.com
treasurysource2.bokf.com
onlinebanking.bokfinancial.com
homenow-t.bokf.com
mortgagebanker.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
www.bokfinancial.com
fxadvance.bokf.com
media.bokf.com
FXAdvance3.bokf.com
s.bokf.com
homenow.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
www.bokf.com
remote.bokf.com
startrightauth.bokf.com
FXAdvance2.bokf.com
homenow-t.bokf.com
imperva.com
magnet.bokf.com
m2.businesssource.bokf.com
imperva.com
mortgage.bokf.com
treasurysource.bokf.com
bankconnect.bokf.com
startright.bokf.com
fxadvance.bokf.com
homenow-t.bokf.com
cashvault.bokf.com
m2.treasurysource.bokf.com
bankconnecttest.bokf.com
imperva.com
homenow.bokf.com
mortgagebanker.bokf.com
*.portal.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
remote.bokf.com
investor.bokf.com
thebeacon.bokf.com
businesssource2.bokf.com
clientsource.bokf.com
imperva.com
homenow-mqa.bokf.com
mortgagenow.bokf.com
imperva.com
response.bokf.com
evision.bokf.com
securemail.bokf.com
mortgage.bokf.com
mortgage.bokf.com
san-38-s12.tlsprovisioning.exacttarget.com
remote.bokf.com
businesssource2.bokf.com
vrt-cdt-f02-uap.bokf.com
*.portal.bokf.com
spendcontrol.bokf.com
onlinebanking.bokfinancial.com
www.spendcontrol.bokf.com
dbpsamlsso.bokf.com
remitviewdemo.bokf.com
go.bokf.com
remitviewdemo.bokf.com
eserviceswc.bokf.com
demo.webera.bokf.com
imperva.com
investor.bokf.com
FXAdvance2.bokf.com
maintenance.bokf.com
homenow-d.bokf.com
owa.bokf.com
payweb.bokf.com
www.bokfinancial.com
businesssource.bokf.com
homenow.bokf.com
cs.bokf.com
homenow-t.bokf.com
www.bokfinancial.com
remote.bokf.com
m.businesssource.bokf.com
eserviceswc.bokf.com
pospay.bokf.com
returnsource.bokf.com
mortgagebanker.bokf.com
FXAdvance3.bokf.com
securemail.bokf.com
businesssource.bokf.com
BusinessSource.bokf.com
FXAdvance3.bokf.com
treasurysource2.bokf.com
Certificate
The complete raw certificate details for spendcontrol.bokf.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGvjCCBaagAwIBAgIQHj6fNd1lMTNZFuJ+eciUBDANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MzA0MDMyMDE3MjBaFw0yNDA0MDMyMDE3MjBaMHAxCzAJBgNVBAYTAkJFMREwDwYD VQQHEwhXYXRlcmxvbzEuMCwGA1UEChMlTWFzdGVyQ2FyZCBJbnRlcm5hdGlvbmFs IEluY29ycG9yYXRlZDEeMBwGA1UEAxMVc3BlbmRjb250cm9sLmJva2YuY29tMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkHVomdlmTLNmYnGu0oZcAKO 6PgjWo22JVgjCBOn0wZ4oc2ET/GIBvVeME/L9N0TYvK3fGnWkDO0kjce6LX0jNwj 3sZ5P0EcYJL7Tw7qjAyvHCfATp02lNV7lym7/rWnVnC/Qb+9U+yff1tG+M2WzPiS jR9wpNXIl0JDpwLzm6Gse2l0knausFc2wPC94KePU4lRDcBezVAdz3rWGuo3PHnC +6vydrO5+HqBjtYqIrfuZxsIsZljJSPcTsINWwjzLLdP5nS5q6MZ1KM2xmmGC1Uk wChLsmIp1DuLGTFRykqGYD/2w58EQrLoN6/9CnkLyFn5pj1ASggmuOrxYx394QID AQABo4IDBzCCAwMwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUYJWaXsXckiwbwoiq c93moOcuXEYwHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3zX+nYMYKTL8waAYIKwYB BQUHAQEEXDBaMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAz BggrBgEFBQcwAoYnaHR0cDovL2FpYS5lbnRydXN0Lm5ldC9sMWstY2hhaW4yNTYu Y2VyMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2 ZWwxay5jcmwwIAYDVR0RBBkwF4IVc3BlbmRjb250cm9sLmJva2YuY29tMA4GA1Ud DwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATBMBgNVHSAERTBDMDcGCmCG SAGG+mwKAQUwKTAnBggrBgEFBQcCARYbaHR0cHM6Ly93d3cuZW50cnVzdC5uZXQv cnBhMAgGBmeBDAECAjCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHUAO1N3dT4t uYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGHSMRcywAABAMARjBEAiBdAQli Df6Z+hVNUdaFGP54Xpb1PLvznk7T/F1N5Sy4gAIgGiZNeveW9VBydG/Ew8IfiZVC /fWXvMic9/H7Xq2jjNIAdQBz2Z6JG0yWeKAgfUed5rLGHNBRXnEZKoxrgBB6wXdy tQAAAYdIxFzVAAAEAwBGMEQCIAYxDIKQLqAAnQ1dOaOQYQYS/oOtNM7ZFgTf04qt HbfFAiARZa1VnC9/lXG9D//Z8oeY0+qzuMogRUtkx1lnhFac7AB3AO7N0GTV2xrO xVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABh0jEXTQAAAQDAEgwRgIhAPyM1V1E 4TwO+NnmE0ziEyKcz1fgeqv/DXO10tFxsUTGAiEAnUX0oRk6I32HXRZ6OqqJVpGd AW/fm1vNpbsGf6H2Vc0wDQYJKoZIhvcNAQELBQADggEBAKNsEIOmmL0yJJSD+uee ZvQThAyJHMdUzz3nf382LKQPgjpsF1RMqucQofOmQjHhVtwlaNVT8FTpnhH0UtDd uBLypCsjnRPfEMJYYW5qhiMPmUQb5zY5dvQpZbgPJhdL88JRnccQCBWphCixs0QH O274nhBkx1dKxxXaTtrkhFIOORENfA65noxXfVVr70YQOuvFv3AG6aQ9CkSPu5/t UVwgMxtLbBxU1JCuyP0Bs3McF+BgoVYjLPjTHGgaWPuMijILuFZ8GvzV8vT7y/b2 E4EWK85AjT3Bm/wj4IVIpI/MKuU4lPEIp1A8OoA7fzQU9vNZU23bK/MscoqzLfu5 3sU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkHVomdlmTLNmYnGu0oZ cAKO6PgjWo22JVgjCBOn0wZ4oc2ET/GIBvVeME/L9N0TYvK3fGnWkDO0kjce6LX0 jNwj3sZ5P0EcYJL7Tw7qjAyvHCfATp02lNV7lym7/rWnVnC/Qb+9U+yff1tG+M2W zPiSjR9wpNXIl0JDpwLzm6Gse2l0knausFc2wPC94KePU4lRDcBezVAdz3rWGuo3 PHnC+6vydrO5+HqBjtYqIrfuZxsIsZljJSPcTsINWwjzLLdP5nS5q6MZ1KM2xmmG C1UkwChLsmIp1DuLGTFRykqGYD/2w58EQrLoN6/9CnkLyFn5pj1ASggmuOrxYx39 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 40201991449514750393149916109930533892 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-03 20:17:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-03 20:17:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Waterloo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MasterCard International Incorporated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'spendcontrol.bokf.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24017742150062642002326963408882452843081349691393185064033269451577125994590075016232899155220272019180248134902092306989565945567279952159048850889791005964976285289255946271395818294625535202782680578024470231315426666828805229873287274700613991370236177848627988648131737581459426206340835313972573424845056557614143340309985725725994021139913607595467338049939252881102056377398541013239753132692478172149486531889185119727971825146910587518280471034748303217840924114755178822120181274893518414603133182994921745541076445807715240700567854233540195623242171678945586543777692145697500379499386430141495752130017 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 60959a5ec5dc922c1bc288aa73dde6a0e72e5c46 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'spendcontrol.bokf.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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