galaxy.abc.com
- The Walt Disney Company -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 59:0e:e3:85:65:c4:ea:df:95:35:d9:e0:e8:b2:7c:1d was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The Walt Disney Company
Organization:
The Walt Disney Company
State / Province:
California
Locality: Burbank
Country: US
Locality: Burbank
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 59:0e:e3:85:65:c4:ea:df:95:35:d9:e0:e8:b2:7c:1dSerial Number (int): 118378598456698688212314369720019221533
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: d2:3c:1b:f3:91:77:23:5f:b8:46:05:32:fc:e3:a7:a4:c0:e8:70:2e
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 58:0c:99:9f:ed:31:e6:97:d6:45:30:7c:bd:ce:14:3d:d3:14:d6:03
Fingerprint (sha256): 16:b5:3c:04:ed:ef:8e:43:35:20:df:cf:9d:13:84:53:18:4a:bd:1e:7b:ea:8f:2e:b7:31:94:2b:85:c3:04:43
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate galaxy.abc.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for galaxy.abc.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
galaxy.abc.com
Other certificates including the domain name abc.com
(limited to 100 certificates)
emx.abc.com
j3.shared.global.fastly.net
v2.shared.global.fastly.net
emindex.net.abc.com
bvl-emg-emsetup.swna.wdpr.disney.com
Mobile-west.disney.com
etsdev.abc.com
secure.cdn.media.oscar.abc.com
test.gatekeeper.us-abc.symphony.edgedatg.com
fcast.qa.cdn.abc.com
fantasy.espn.com
v2.shared.global.fastly.net
staging.gatekeeper.us-abc.symphony.edgedatg.com
secureaccess.abc.com
api.partners.abc.com
watchdisneyfe.com
staging.gatekeeper.us-abc.symphony.edgedatg.com
api.presentation.watchabc.go.com
mobile-west.disney.com
dsl-prod.media.disney.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
emsoundminerdev.net.abc.com
blogs.abc.com
soundminer.net.abc.com
mobile-east.disney.com
api.contents.watchabc.go.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
v2.shared.global.fastly.net
newsmamdev.abc.com
j3.shared.global.fastly.net
emx.abc.com
splunk.mit.abc.com
static.ddb.go.com
nyoffair.abc.com
www.gist.abc.com
mobile-east.disney.com
vdigateqa.abc.com
fcast.cdn.abc.com
j3.shared.global.fastly.net
j3.shared.global.fastly.net
dev.gatekeeper.us-abc.symphony.edgedatg.com
api2.abc.go.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
api.watchabc.go.com
qa.gatekeeper.us-abc.symphony.edgedatg.com
emindexdb.net.abc.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
boesfx.net.abc.com
idolvote-test.abc.com
v2.shared.global.fastly.net
vdigate.abc.com
nyoffair.abc.com
v2.shared.global.fastly.net
vdigate1.abc.com
asperaconsole.abc.com
dwtsvote-live-test.abc.com
soundminer.net.abc.com
splunk.mit.abc.com
emmedia.disney.com
idolvote.abc.com
fcast.cdn.abc.com
sw88.abc.com
secure.cdn.media.oscar.abc.com
staging.gatekeeper.us-abc.symphony.edgedatg.com
emsoundminerdev.net.abc.com
mpowr-aprimo.net.abc.com
secure.cdn.media.oscar.abc.com
v2.shared.global.fastly.net
static.ddb.go.com
watchdisneyfe.com
dev.sweepstakes.abc.com
j3.shared.global.fastly.net
bvl-emg-emsetup.swna.wdpr.disney.com
dwtsvote.abc.com
api.partners.abc.com
mobile-west.disney.com
watchdisneyfe.com
emreach-staging.net.abc.com
dev.gatekeeper.us-abc.symphony.edgedatg.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
OCNA.wdw.disney.com
dev.gatekeeper.us-abc.symphony.edgedatg.com
galaxy.abc.com
test.gatekeeper.us-abc.symphony.edgedatg.com
api.presentation.watchabc.go.com
mc.twdcmarketing.com
api.abc.go.com
fcast.cdn.abc.com
api.partners.abc.com
remotesupport.abc.com
v2.shared.global.fastly.net
api.watchabc.go.com
watchdisneyfe.com
vdigate.abc.com
api.watchabc.go.com
api.abc.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
v2.shared.global.fastly.net
devemx.net.abc.com
fcast.qa.cdn.abc.com
j3.shared.global.fastly.net
v2.shared.global.fastly.net
emindex.net.abc.com
bvl-emg-emsetup.swna.wdpr.disney.com
Mobile-west.disney.com
etsdev.abc.com
secure.cdn.media.oscar.abc.com
test.gatekeeper.us-abc.symphony.edgedatg.com
fcast.qa.cdn.abc.com
fantasy.espn.com
v2.shared.global.fastly.net
staging.gatekeeper.us-abc.symphony.edgedatg.com
secureaccess.abc.com
api.partners.abc.com
watchdisneyfe.com
staging.gatekeeper.us-abc.symphony.edgedatg.com
api.presentation.watchabc.go.com
mobile-west.disney.com
dsl-prod.media.disney.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
emsoundminerdev.net.abc.com
blogs.abc.com
soundminer.net.abc.com
mobile-east.disney.com
api.contents.watchabc.go.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
v2.shared.global.fastly.net
newsmamdev.abc.com
j3.shared.global.fastly.net
emx.abc.com
splunk.mit.abc.com
static.ddb.go.com
nyoffair.abc.com
www.gist.abc.com
mobile-east.disney.com
vdigateqa.abc.com
fcast.cdn.abc.com
j3.shared.global.fastly.net
j3.shared.global.fastly.net
dev.gatekeeper.us-abc.symphony.edgedatg.com
api2.abc.go.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
api.watchabc.go.com
qa.gatekeeper.us-abc.symphony.edgedatg.com
emindexdb.net.abc.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
boesfx.net.abc.com
idolvote-test.abc.com
v2.shared.global.fastly.net
vdigate.abc.com
nyoffair.abc.com
v2.shared.global.fastly.net
vdigate1.abc.com
asperaconsole.abc.com
dwtsvote-live-test.abc.com
soundminer.net.abc.com
splunk.mit.abc.com
emmedia.disney.com
idolvote.abc.com
fcast.cdn.abc.com
sw88.abc.com
secure.cdn.media.oscar.abc.com
staging.gatekeeper.us-abc.symphony.edgedatg.com
emsoundminerdev.net.abc.com
mpowr-aprimo.net.abc.com
secure.cdn.media.oscar.abc.com
v2.shared.global.fastly.net
static.ddb.go.com
watchdisneyfe.com
dev.sweepstakes.abc.com
j3.shared.global.fastly.net
bvl-emg-emsetup.swna.wdpr.disney.com
dwtsvote.abc.com
api.partners.abc.com
mobile-west.disney.com
watchdisneyfe.com
emreach-staging.net.abc.com
dev.gatekeeper.us-abc.symphony.edgedatg.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
OCNA.wdw.disney.com
dev.gatekeeper.us-abc.symphony.edgedatg.com
galaxy.abc.com
test.gatekeeper.us-abc.symphony.edgedatg.com
api.presentation.watchabc.go.com
mc.twdcmarketing.com
api.abc.go.com
fcast.cdn.abc.com
api.partners.abc.com
remotesupport.abc.com
v2.shared.global.fastly.net
api.watchabc.go.com
watchdisneyfe.com
vdigate.abc.com
api.watchabc.go.com
api.abc.com
prod.gatekeeper.us-abc.symphony.edgedatg.com
v2.shared.global.fastly.net
devemx.net.abc.com
fcast.qa.cdn.abc.com
Certificate
The complete raw certificate details for galaxy.abc.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIQWQ7jhWXE6t+VNdng6LJ8HTANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MjA4MDExODQ5MjBaFw0yMzA4MzExODQ5MjBaMG8xCzAJBgNVBAYTAlVTMRMwEQYD VQQIEwpDYWxpZm9ybmlhMRAwDgYDVQQHEwdCdXJiYW5rMSAwHgYDVQQKExdUaGUg V2FsdCBEaXNuZXkgQ29tcGFueTEXMBUGA1UEAxMOZ2FsYXh5LmFiYy5jb20wggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMdUDpKLfZf0uHPmAeqEwxZxd/ 81vzKAIpztiIiFFT0YpmNJ3rehXXSyEmDe4ZXGmAvEkQylIbaXtLKyfaj2PaceFt 5mw+d9O1eroKgzRUap9EqudY0F9AEyHXX6V+ts7Smjq+sFl1qOb4vVS7kUC0rlyL H0eZLU49rZgEathBRG09Ekqdxq1+S+tyk9YMxWnzUD2D/GH8kb/yziB1IRBC6oV2 jEh07Us4j+wdaAbXWFNsaAoMXY6CT5iaecb3jlk52FmUqybvbJl0g6InSggDheYz rjYoI13IvkKrsOu2bVbQyF1kP8y4YlkVr1snUwdhY11I+fvtyI1fM6mcWmaLAgMB AAGjggGeMIIBmjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTSPBvzkXcjX7hGBTL8 46ekwOhwLjAfBgNVHSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzBoBggrBgEF BQcBAQRcMFowIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMG CCsGAQUFBzAChidodHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5j ZXIwMwYDVR0fBCwwKjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZl bDFrLmNybDAZBgNVHREEEjAQgg5nYWxheHkuYWJjLmNvbTAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEwGA1UdIARFMEMwNwYK YIZIAYb6bAoBBTApMCcGCCsGAQUFBwIBFhtodHRwczovL3d3dy5lbnRydXN0Lm5l dC9ycGEwCAYGZ4EMAQICMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5qu+CdXOKKVrWmS0NlVsUG4AEMKWeJ5CLRkJkMZoUz+IrKmgcqdXN Avaa2PLorOpK+fwSaByG0Rgi7QKWrT1+1v3mZdWVFdYtwIB2MmXc7eqoib2bDhYW TaXC4Rt837uW0PRKCyLuovVES2AsKtudtD3hm/WTGaVx1gcSaBT2EwaKJtUbpchu npWXkVhEbxZ+qXJ5FSGPm0MbIXFe270B6xzJnLPPY/n/+5HsTZUuk49AfHK1rctm oaCmlrVAA1dWd5vBlV0m/oOd2RCC4VzonOIeE0qfYDJ+eJ7/E5uarPr2oxDJ+Krl t4Hz1z/7ibgXrFwmC4p9B6vpMUJjIwq7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHVA6Si32X9Lhz5gHqhM MWcXf/Nb8ygCKc7YiIhRU9GKZjSd63oV10shJg3uGVxpgLxJEMpSG2l7Sysn2o9j 2nHhbeZsPnfTtXq6CoM0VGqfRKrnWNBfQBMh11+lfrbO0po6vrBZdajm+L1Uu5FA tK5cix9HmS1OPa2YBGrYQURtPRJKncatfkvrcpPWDMVp81A9g/xh/JG/8s4gdSEQ QuqFdoxIdO1LOI/sHWgG11hTbGgKDF2Ogk+YmnnG945ZOdhZlKsm72yZdIOiJ0oI A4XmM642KCNdyL5Cq7Drtm1W0MhdZD/MuGJZFa9bJ1MHYWNdSPn77ciNXzOpnFpm iwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 118378598456698688212314369720019221533 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-01 18:49:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-31 18:49:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Burbank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Walt Disney Company' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'galaxy.abc.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25810434097366678127798235754129562077842680174299379583421310340557639412935712187281844427197418987027470064047641861486357285525207388093667804709496746439467408739198388682395495142831644023854793900736086372583220371150457144170246418720156590870255909857728854690157898994955038340712064615834489589266422749584388151663708691846782222353421389940170458556239610067850525593189711149446343652956319301331378837171485799398107138772809843748184290640758263990592692533530994025380552032531478509591682366697479238283764041181948507501844577886635310490907699121190420555379803556632122622549538872765579613857419 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d23c1bf39177235fb8460532fce3a7a4c0e8702e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'galaxy.abc.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0039aaef8275738a295ad6992d0d955b141b800430a59e27908b464264319a14cfe22b2a681ca9d5cd02f69ad8f2e8acea4af9fc12681c86d11822ed0296ad3d7ed6fde665d59515d62dc080763265dcedeaa889bd9b0e16164da5c2e11b7cdfbb96d0f44a0b22eea2f5444b602c2adb9db43de19bf59319a571d607126814f613068a26d51ba5c86e9e95979158446f167ea9727915218f9b431b21715edbbd01eb1cc99cb3cf63f9fffb91ec4d952e938f407c72b5adcb66a1a0a696b540035756779bc1955d26fe839dd91082e15ce89ce21e134a9f60327e789eff139b9aacfaf6a310c9f8aae5b781f3d73ffb89b817ac5c260b8a7d07abe9314263230abb