www.1stbmt.com
- Glacier Bank -
Issued by GeoTrust EV RSA CA G2
About this certificate
This digital certificate with serial number 06:f8:07:9e:d0:cd:b7:75:07:9f:cf:01:e1:87:e5:b9 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Glacier Bank
Company registration number:
D093435
Organization: Glacier Bank
Organization: Glacier Bank
State / Province:
Montana
Locality: Kalispell
Country: US
Locality: Kalispell
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:f8:07:9e:d0:cd:b7:75:07:9f:cf:01:e1:87:e5:b9Serial Number (int): 9263212155164613492502293193240864185
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: dc:d5:f0:7d:5a:e3:c6:0f:fb:45:ca:ca:9d:e3:c4:4b:eb:3b:f0:8c
AuthorityKeyId: 28:d2:cf:ee:09:84:75:dd:b5:b2:b5:bf:3c:d5:a0:c6:73:88:5d:1f
Fingerprint (sha1): 5d:52:76:fb:89:98:65:84:f4:4d:e3:44:24:a8:35:84:70:09:e5:25
Fingerprint (sha256): 18:57:67:93:ee:46:21:c4:8b:a2:9e:67:30:ff:fb:bf:cd:54:c9:c0:32:27:80:72:1c:76:c4:fe:75:91:d2:a6
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustEVRSACAG2.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustEVRSACAG2.crl
Check the revocation status for certificate www.1stbmt.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.1stbmt.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA512 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.1stbmt.com
1stbmt.com
1stbmt.com
Other certificates including the domain name 1stbmt.com
(limited to 100 certificates)
www.1stbmt.com
www.1stbmt.com
www.1stbmt.com
mortgage.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
1stbmt.com
mortgage.gofirstbank.com
1stbmt.com
mortgage.gofirstbank.com
mortgage.1stbmt.com
mortgage.1stbmt.com
www.1stbmt.com
www.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.1stbmt.com
www.1stbmt.com
www.1stbmt.com
mortgage.1stbmt.com
www.1stbmt.com
mortgage.1stbmt.com
mortgage.valleybankhelena.com.roostify.com
1stbmt.com
mortgage.fsbwy.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.1stbmt.com
www.quickapply.1stbmt.com
1stbmt.com
mortgage.fcbutah.com.roostify.com
mortgage.collegiatepeaksbank.com.roostify.com
www.1stbmt.com
www.1stbmt.com
1stbmt.com
www.1stbmt.com
www.1stbmt.com
mortgage.collegiatepeaksbank.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.1stbmt.com
www.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
www.1stbmt.com
www.1stbmt.com
www.1stbmt.com
mortgage.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
1stbmt.com
mortgage.gofirstbank.com
1stbmt.com
mortgage.gofirstbank.com
mortgage.1stbmt.com
mortgage.1stbmt.com
www.1stbmt.com
www.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.1stbmt.com
www.1stbmt.com
www.1stbmt.com
mortgage.1stbmt.com
www.1stbmt.com
mortgage.1stbmt.com
mortgage.valleybankhelena.com.roostify.com
1stbmt.com
mortgage.fsbwy.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.1stbmt.com
www.quickapply.1stbmt.com
1stbmt.com
mortgage.fcbutah.com.roostify.com
mortgage.collegiatepeaksbank.com.roostify.com
www.1stbmt.com
www.1stbmt.com
1stbmt.com
www.1stbmt.com
www.1stbmt.com
mortgage.collegiatepeaksbank.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.1stbmt.com
www.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
www.1stbmt.com
Certificate
The complete raw certificate details for www.1stbmt.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG9TCCBd2gAwIBAgIQBvgHntDNt3UHn88B4YfluTANBgkqhkiG9w0BAQ0FADBE MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMR4wHAYDVQQDExVH ZW9UcnVzdCBFViBSU0EgQ0EgRzIwHhcNMjMwOTE5MDAwMDAwWhcNMjQwOTIxMjM1 OTU5WjCBwzETMBEGCysGAQQBgjc8AgEDEwJVUzEYMBYGCysGAQQBgjc8AgECEwdN b250YW5hMR0wGwYDVQQPDBRQcml2YXRlIE9yZ2FuaXphdGlvbjEQMA4GA1UEBRMH RDA5MzQzNTELMAkGA1UEBhMCVVMxEDAOBgNVBAgTB01vbnRhbmExEjAQBgNVBAcT CUthbGlzcGVsbDEVMBMGA1UEChMMR2xhY2llciBCYW5rMRcwFQYDVQQDEw53d3cu MXN0Ym10LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMJMgfz2 qKa1Ln9QowO7FLZcgTBXIP/hHRyh0H3YRI16FuYLuJ/HrO1WWRgiT75wRnrjpRz7 DTYRnV9/5qa157pftiXlhkD3kMNNhd0/adZoy7iodvAdYuSMmmAXDpyz+EzA936J eCGzBOr+6Fr6fdHq+8TPYNx+RENs/DiRfiE1eS80WK6NS8vlTiN9dsRIACx5QEhA OFGUYbPXSYQihPf9D2TxMdKa6IE81lF+nbESBAoY4ddc+lpRpPSFQFG3+LAAEzdE ksqJCwMksNcx5NtgpOFDHjuGhF/2EPWilDaO7mGPXdFxcoCnpX9X12X5W0uyHOMT DHaQAoyBqKvNGqECAwEAAaOCA2EwggNdMB8GA1UdIwQYMBaAFCjSz+4JhHXdtbK1 vzzVoMZziF0fMB0GA1UdDgQWBBTc1fB9WuPGD/tFysqd48RL6zvwjDAlBgNVHREE HjAcgg53d3cuMXN0Ym10LmNvbYIKMXN0Ym10LmNvbTBKBgNVHSAEQzBBMAsGCWCG SAGG/WwCATAyBgVngQwBATApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2lj ZXJ0LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjB1BgNVHR8EbjBsMDSgMqAwhi5odHRwOi8vY3JsMy5kaWdpY2Vy dC5jb20vR2VvVHJ1c3RFVlJTQUNBRzIuY3JsMDSgMqAwhi5odHRwOi8vY3JsNC5k aWdpY2VydC5jb20vR2VvVHJ1c3RFVlJTQUNBRzIuY3JsMHMGCCsGAQUFBwEBBGcw ZTAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMD0GCCsGAQUF BzAChjFodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vR2VvVHJ1c3RFVlJTQUNB RzIuY3J0MAwGA1UdEwEB/wQCMAAwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB1 AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABiq+oeKUAAAQDAEYw RAIgEbHHIhzde9UApTdjsbrA2wUEAm2cwgq4ZTIh3OMWOhcCICoTLGw0UvoK6Oo/ qA4yUs1MkelSRp8JstnRVyfMWpcEAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB 2bu/qznYhHMAAAGKr6h4nwAABAMARzBFAiEAnKBHP6Tu0sQBY8F5tjgkxTn70vZQ mvtDspMRIMR2EqoCIHWHeS8C9TrBziGKJWzDLoz0S8pP6Y2fipGUCRwt/dEUAHYA 2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGKr6h4ggAABAMARzBF AiEA++lE5IJQAzkITGHSxHmr2zZ/dX41AkAPjUfpbY5nLJECIHo5lW3l1VdBbFL3 GEwiV9jnXha2of9Mh9tFkaM05XpaMA0GCSqGSIb3DQEBDQUAA4IBAQApTulx5kTM NRhRweHRD5yEGeOyjb6CZWxZJhgi3e0Be4+zF79Tl4OTAAu0ubqpf6K7ppc+wsDk RT0gjJe8to4Tp3rF41/MdxtLqkUbaVkuYg2NwvjJrQFPExtBZtE036jAwRLugsXq 9SiAvbu0R+ZFTqldcoBBt2La960RnHJSkp6opIeZMTEJGDfjx2g0ifJae8E/2LMS /jf0VdZlE9D3bi3XWlUVkL7wJd7qREWczbk55/Q2l9V4E2wKVWevrWQrhxSloWsk 3+RwdurcbkriB4y5eua+F+z11u7NeuBv9IQWrfbmtvmwDlWJJsbRg1cB8s+uKn92 QV4mhtovYOWg -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkyB/PaoprUuf1CjA7sU tlyBMFcg/+EdHKHQfdhEjXoW5gu4n8es7VZZGCJPvnBGeuOlHPsNNhGdX3/mprXn ul+2JeWGQPeQw02F3T9p1mjLuKh28B1i5IyaYBcOnLP4TMD3fol4IbME6v7oWvp9 0er7xM9g3H5EQ2z8OJF+ITV5LzRYro1Ly+VOI312xEgALHlASEA4UZRhs9dJhCKE 9/0PZPEx0progTzWUX6dsRIEChjh11z6WlGk9IVAUbf4sAATN0SSyokLAySw1zHk 22Ck4UMeO4aEX/YQ9aKUNo7uYY9d0XFygKelf1fXZflbS7Ic4xMMdpACjIGoq80a oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9263212155164613492502293193240864185 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust EV RSA CA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montana' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'D093435' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montana' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kalispell' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Glacier Bank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.1stbmt.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24527958549031166306630753551927982820239129473041673681960909274754299661185745864055567112527574387416675477491175459677599145078776286663392806992991163543078306334457048353577529401337505426634738125817864601210159493722821360386751924665122374001937764386083007999086658067233600754193878142902310801290031042032506062841848347676458128454190681943890601862297730415167655248067037366348237838066067851474296217044036006441896457556345254882981629079633778776141193829150917743124566430884091742141694034964328627312903844077411055633869078381745587557044531587860151167979355995502348211496089716133112677472929 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 28d2cfee098475ddb5b2b5bf3cd5a0c673885d1f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dcd5f07d5ae3c60ffb45caca9de3c44beb3bf08c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.1stbmt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '1stbmt.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustEVRSACAG2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustEVRSACAG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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