xs4.richemont.com
- Richemont International SA -
Issued by DigiCert Global CA G2
About this certificate
This digital certificate with serial number 08:ee:8d:31:75:4a:03:14:b8:33:a1:ed:db:13:0b:02 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Richemont International SA
Organization:
Richemont International SA
Organization unit: GIS Connectivity
Organization unit: GIS Connectivity
State / Province:
Genève
Locality: Bellevue
Country: CH
Locality: Bellevue
Country: CH
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:ee:8d:31:75:4a:03:14:b8:33:a1:ed:db:13:0b:02Serial Number (int): 11872454356843915252359349507282111234
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f5:2e:4e:e0:18:f8:e2:1f:c7:37:cc:3e:4b:d6:d9:06:00:af:5f:9b
AuthorityKeyId: 24:6e:2b:2d:d0:6a:92:51:51:25:69:01:aa:9a:47:a6:89:e7:40:20
Fingerprint (sha1): 9f:3a:be:e7:a0:1a:82:8a:45:01:ac:92:30:b6:fb:99:8b:a2:76:15
Fingerprint (sha256): 17:61:ff:f3:2c:b9:1a:d2:2f:3a:b5:12:f3:a6:e3:1c:d9:dd:de:dd:64:a2:ae:9b:3e:ee:47:b3:4f:29:33:e0
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalCAG2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalCAG2.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalCAG2.crl
Check the revocation status for certificate xs4.richemont.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for xs4.richemont.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
xs4.richemont.com
Other certificates including the domain name richemont.com
(limited to 100 certificates)
preprod-iisfarm.richemont.com
careers.richemont.com
booster2.richemont.com
intranet.richemont.com
intranet.richemont.com
richemont.com
xsrna.richemont.com
xs.richemont.com
intranet.richemont.com
dam.richemont.com
intranet.richemont.com
belenus.richemont.com
collaboration.richemont.com
apps2013.richemont.com
linemedia.preprod.richemont.com
api-booster.richemont.com
preprod-apps2016.richemont.com
linemedia.preprod.richemont.com
media.richemont.com
vo1webdisp.richemont.com
wwsip.richemont.com
spark.nprd.val.elb.richemont.com
careers.richemont.com
booster.richemont.com
apps.richemont.com
www.richemont.com
preprod-apps2016.richemont.com
owa.richemont.com
intranet.richemont.com
preprod-apps2016.richemont.com
booster.richemont.com
intranet.richemont.com
linemedia.preprod.richemont.com
dam.richemont.com
linemedia.preprod.richemont.com
antispam.richemont.com
svn.richemont.com
apps2016.richemont.com
intranet.richemont.com
launchpad.richemont.com
visionnaire.richemont.com
epm-mobile.richemont.com
intranet.richemont.com
mdm.richemont.com
richemont.com
epm-mobile.richemont.com
eusip.richemont.com
www.quality.alange-soehne.com
jobs.richemont.com
jenkins-aws.richemont.com
search.richemont.com
launchpad.richemont.com
cyberjourney.richemont.com
api-booster.richemont.com
linemedia.preprod.richemont.com
admin.pre-booster.richemont.com
pre-booster.richemont.com
owa-sso.richemont.com
id-sso.richemont.com
scn01.richemont.com
intranet.preprod.richemont.com
owa-nosso.richemont.com
linemedia.preprod.richemont.com
epm-mobile.richemont.com
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
www.quality.alange-soehne.com
owa-nosso.richemont.com
careers.richemont.com
amer-ra.richemont.com
media.richemont.com
iisfarm.richemont.com
preprod-apps2013.richemont.com
emea-ra.richemont.com
xs4.richemont.com
inet.richemont.com
midgard.ch.richemont.com
aegis.ch.richemont.com
collaboration.richemont.com
intranet.richemont.com
linemedia.preprod.richemont.com
apps2016.richemont.com
owa.richemont.com
fileexchange.richemont.com
creative-academy.com
agile.quality.richemont.com
secure.richemont.com
cs.richemont.com
www.quality.alange-soehne.com
richemont.com
richemont.com
owa.richemont.com
agile.richemont.com
preprod-iisfarm.richemont.com
careers.richemont.com
*.richemont.com
belenus.richemont.com
www.lcboutiquenet.com
*.mytandem.eu
intranet.staging.richemont.com
careers.richemont.com
booster2.richemont.com
intranet.richemont.com
intranet.richemont.com
richemont.com
xsrna.richemont.com
xs.richemont.com
intranet.richemont.com
dam.richemont.com
intranet.richemont.com
belenus.richemont.com
collaboration.richemont.com
apps2013.richemont.com
linemedia.preprod.richemont.com
api-booster.richemont.com
preprod-apps2016.richemont.com
linemedia.preprod.richemont.com
media.richemont.com
vo1webdisp.richemont.com
wwsip.richemont.com
spark.nprd.val.elb.richemont.com
careers.richemont.com
booster.richemont.com
apps.richemont.com
www.richemont.com
preprod-apps2016.richemont.com
owa.richemont.com
intranet.richemont.com
preprod-apps2016.richemont.com
booster.richemont.com
intranet.richemont.com
linemedia.preprod.richemont.com
dam.richemont.com
linemedia.preprod.richemont.com
antispam.richemont.com
svn.richemont.com
apps2016.richemont.com
intranet.richemont.com
launchpad.richemont.com
visionnaire.richemont.com
epm-mobile.richemont.com
intranet.richemont.com
mdm.richemont.com
richemont.com
epm-mobile.richemont.com
eusip.richemont.com
www.quality.alange-soehne.com
jobs.richemont.com
jenkins-aws.richemont.com
search.richemont.com
launchpad.richemont.com
cyberjourney.richemont.com
api-booster.richemont.com
linemedia.preprod.richemont.com
admin.pre-booster.richemont.com
pre-booster.richemont.com
owa-sso.richemont.com
id-sso.richemont.com
scn01.richemont.com
intranet.preprod.richemont.com
owa-nosso.richemont.com
linemedia.preprod.richemont.com
epm-mobile.richemont.com
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
www.quality.alange-soehne.com
owa-nosso.richemont.com
careers.richemont.com
amer-ra.richemont.com
media.richemont.com
iisfarm.richemont.com
preprod-apps2013.richemont.com
emea-ra.richemont.com
xs4.richemont.com
inet.richemont.com
midgard.ch.richemont.com
aegis.ch.richemont.com
collaboration.richemont.com
intranet.richemont.com
linemedia.preprod.richemont.com
apps2016.richemont.com
owa.richemont.com
fileexchange.richemont.com
creative-academy.com
agile.quality.richemont.com
secure.richemont.com
cs.richemont.com
www.quality.alange-soehne.com
richemont.com
richemont.com
owa.richemont.com
agile.richemont.com
preprod-iisfarm.richemont.com
careers.richemont.com
*.richemont.com
belenus.richemont.com
www.lcboutiquenet.com
*.mytandem.eu
intranet.staging.richemont.com
Certificate
The complete raw certificate details for xs4.richemont.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgIQCO6NMXVKAxS4M6Ht2xMLAjANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMR4wHAYDVQQDExVE aWdpQ2VydCBHbG9iYWwgQ0EgRzIwHhcNMTkxMTI2MDAwMDAwWhcNMjAxMjEyMTIw MDAwWjCBjjELMAkGA1UEBhMCQ0gxEDAOBgNVBAgMB0dlbsOodmUxETAPBgNVBAcT CEJlbGxldnVlMSMwIQYDVQQKExpSaWNoZW1vbnQgSW50ZXJuYXRpb25hbCBTQTEZ MBcGA1UECxMQR0lTIENvbm5lY3Rpdml0eTEaMBgGA1UEAxMReHM0LnJpY2hlbW9u dC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTPLX+qJjHM4yb WyHUn3ygY4KuvlazYmC+zlofTzp9QHN6vwMCZE4EtLCrld6icqngl36fKNwOyEeA l4W6Uxrvq/HKgf1LcaHHLhQz1em557I1zYbyfbu5xG6f1Uajw5HwV9eV4Fc1s5Y1 PzFHldfydHxrUxz5jBO7nph73xChcpvm0CGjMZP9vzLptyxKepQwn90YIt30mWKU CXxFs/UZA2anUoZDnh2dmY2XEQ4QLaJZN18TJ3BAqE+uTnuLBeyTORYTivO97Dj1 4PGIft9gdR/3L4+l8rGSWOTE+slVeXzFAGdaoNWDb8y0K8NIZB502lQUQY943Omk bJXobVoLAgMBAAGjggHuMIIB6jAfBgNVHSMEGDAWgBQkbist0GqSUVElaQGqmkem iedAIDAdBgNVHQ4EFgQU9S5O4Bj44h/HN8w+S9bZBgCvX5swHAYDVR0RBBUwE4IR eHM0LnJpY2hlbW9udC5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjB3BgNVHR8EcDBuMDWgM6Axhi9odHRwOi8vY3JsMy5k aWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxDQUcyLmNybDA1oDOgMYYvaHR0cDov L2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsQ0FHMi5jcmwwTAYDVR0g BEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGln aWNlcnQuY29tL0NQUzAIBgZngQwBAgIwdAYIKwYBBQUHAQEEaDBmMCQGCCsGAQUF BzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wPgYIKwYBBQUHMAKGMmh0dHA6 Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbENBRzIuY3J0MAkG A1UdEwQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEB ALlZG7f5MPdnnycS0y1Z7njnUVUzRO1/hkd1Dkc4XTOQ6aY62cUW5j1aSq0iNVJ3 Zt4FviOEVRy8A2pjp6aQVh5h0abWWm5yiuDsB8/U94gDU3mDc8LO/Jxvokcix474 FEl1WFcKkYLkzp+QBJ3lx9qzfwXSLbwW2zzJyMHtb7CukFU33OMSL+4UGatpwMeN OXO7uhKaLCzOaY0P+yAtASxfrJgrsyb+gMcEJhTXaULhFxl5D8/E3t343ZpmMGfD 9QZSyHDhBhA91H0+H+be2pgNleAmTAxyO5VVyh5TIstPobwJf4Iaxaorz/GVwgYR TrSZ67ZyMmmptpMAjxPFAX0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zy1/qiYxzOMm1sh1J98 oGOCrr5Ws2Jgvs5aH086fUBzer8DAmROBLSwq5XeonKp4Jd+nyjcDshHgJeFulMa 76vxyoH9S3Ghxy4UM9XpueeyNc2G8n27ucRun9VGo8OR8FfXleBXNbOWNT8xR5XX 8nR8a1Mc+YwTu56Ye98QoXKb5tAhozGT/b8y6bcsSnqUMJ/dGCLd9JlilAl8RbP1 GQNmp1KGQ54dnZmNlxEOEC2iWTdfEydwQKhPrk57iwXskzkWE4rzvew49eDxiH7f YHUf9y+PpfKxkljkxPrJVXl8xQBnWqDVg2/MtCvDSGQedNpUFEGPeNzppGyV6G1a CwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11872454356843915252359349507282111234 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global CA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-12 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Genève' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bellevue' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Richemont International SA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GIS Connectivity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'xs4.richemont.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26666220016818841462989330952529412628559839461435712836586534832290497165697610564401780744670607914077334264583356660547255340492334364639922135976498864022657373526455504781661657333027679245205660701124100978772300379831766118889748706031881271759670263315958516071547848278719258720337327358483588451718846697926960190793516557930998553278126004692569287609527333822418317315887954754511065468601427453672072960615859431133565786430824442060395694361241812600705772628791722434947370928131394148787241529863142880007399396994892996382755900393303578681998404367675288568542185093169063352765610349133038447581707 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 246e2b2dd06a925151256901aa9a47a689e74020 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f52e4ee018f8e21fc737cc3e4bd6d90600af5f9b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xs4.richemont.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalCAG2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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