store.universalmusic.com
- Universal Music Group, Inc. -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 04:2b:23:3b:86:30:0b:1c:41:0a:1f:32:35:9a:23:a7 was issued on by DigiCert Inc.
With 21 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universal Music Group, Inc.
Organization:
Universal Music Group, Inc.
State / Province:
New York
Locality: New York
Country: US
Locality: New York
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:2b:23:3b:86:30:0b:1c:41:0a:1f:32:35:9a:23:a7Serial Number (int): 5540895348383449452331275458377819047
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: c8:ab:a3:5a:5f:f7:7b:df:23:9b:eb:dd:a8:41:59:74:2f:82:65:aa
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): cb:b2:d5:5e:0b:b7:f3:ce:32:72:56:01:6c:6a:23:e4:62:b0:9c:dc
Fingerprint (sha256): 18:e4:b5:8f:75:37:46:85:fe:db:dc:9e:0e:9f:d8:51:7c:e6:20:95:5c:2a:8d:27:19:fe:3c:0e:f2:af:da:53
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g1.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g1.crl
Check the revocation status for certificate store.universalmusic.com
21
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for store.universalmusic.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
store.universalmusic.com
shop.ritaora.com
shop.islandrecordsbeer.com
store.jamiroquai.com
shop.imthefreak.com
store.thisissigrid.com
shop.pure.com
uk.lordeofficialstore.com
ca.lordeofficialstore.com
store.nickmulvey.com
store.raskit.co.uk
shop.shanefilan.com
musicstore.niallhoran.com
store.deccaclassics.com
shop.cyberalma.com
store.thewho.com
store.flytetheband.co.uk
shop.paddington.com
store.samsmithworld.com
music.tearsforfears.com
store.sn1giggs.com
shop.ritaora.com
shop.islandrecordsbeer.com
store.jamiroquai.com
shop.imthefreak.com
store.thisissigrid.com
shop.pure.com
uk.lordeofficialstore.com
ca.lordeofficialstore.com
store.nickmulvey.com
store.raskit.co.uk
shop.shanefilan.com
musicstore.niallhoran.com
store.deccaclassics.com
shop.cyberalma.com
store.thewho.com
store.flytetheband.co.uk
shop.paddington.com
store.samsmithworld.com
music.tearsforfears.com
store.sn1giggs.com
Other certificates including the domain name universalmusic.com
(limited to 100 certificates)
acquia-sites.com
incapsula.com
acquia-sites.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
*.dev.investors.universalmusic.com
store.universalmusic.com
acquia-sites.com
incapsula.com
store.universalmusic.com
acquia-sites.com
acquia-sites.com
acquia-sites.com
etassets.universalmusic.com
incapsula.com
uc17.janrainengage.com
incapsula.com
store.universalmusic.com
store.universalmusic.com
incapsula.com
incapsula.com
store.universalmusic.com
preview.investors.universalmusic.com
store.universalmusic.com
incapsula.com
*.qa.investors.universalmusic.com
investors.universalmusic.com
incapsula.com
uutiskirje.universalmusic.com
*.janraincapture.com
uc18.janrainengage.com
universalmusic.com
store.universalmusic.com
incapsula.com
store.universalmusic.com
*.qa.investors.universalmusic.com
universalmusic.com
preview.dev.investors.universalmusic.com
incapsula.com
incapsula.com
*.dev.investors.universalmusic.com
acquia-sites.com
privacy.umusic.com
incapsula.com
shop.btobelabo.com
store.universalmusic.com
incapsula.com
store.universalmusic.com
preview.preprod.investors.universalmusic.com
incapsula.com
acquia-sites.com
*.janraincapture.com
uutiskirje.universalmusic.com
store.universalmusic.com
uc18.janrainengage.com
acquia-sites.com
store.universalmusic.com
incapsula.com
store.universalmusic.com
uc18.janrainengage.com
incapsula.com
acquia-sites.com
store.universalmusic.com
acquia-sites.com
incapsula.com
acquia-sites.com
incapsula.com
*.dev.investors.universalmusic.com
incapsula.com
universalmusic.com
*.qa.investors.universalmusic.com
uc17.janrainengage.com
universalmusic.com
store.universalmusic.com
universalmusic.com
incapsula.com
privacy.umusic.com
incapsula.com
*.qa.investors.universalmusic.com
store.universalmusic.com
store.universalmusic.com
incapsula.com
acquia-sites.com
incapsula.com
incapsula.com
store.universalmusic.com
incapsula.com
incapsula.com
go.universalmusic.com
incapsula.com
uc11.janraincapture.com
investors.universalmusic.com
incapsula.com
store.universalmusic.com
incapsula.com
incapsula.com
store.universalmusic.com
incapsula.com
acquia-sites.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
*.dev.investors.universalmusic.com
store.universalmusic.com
acquia-sites.com
incapsula.com
store.universalmusic.com
acquia-sites.com
acquia-sites.com
acquia-sites.com
etassets.universalmusic.com
incapsula.com
uc17.janrainengage.com
incapsula.com
store.universalmusic.com
store.universalmusic.com
incapsula.com
incapsula.com
store.universalmusic.com
preview.investors.universalmusic.com
store.universalmusic.com
incapsula.com
*.qa.investors.universalmusic.com
investors.universalmusic.com
incapsula.com
uutiskirje.universalmusic.com
*.janraincapture.com
uc18.janrainengage.com
universalmusic.com
store.universalmusic.com
incapsula.com
store.universalmusic.com
*.qa.investors.universalmusic.com
universalmusic.com
preview.dev.investors.universalmusic.com
incapsula.com
incapsula.com
*.dev.investors.universalmusic.com
acquia-sites.com
privacy.umusic.com
incapsula.com
shop.btobelabo.com
store.universalmusic.com
incapsula.com
store.universalmusic.com
preview.preprod.investors.universalmusic.com
incapsula.com
acquia-sites.com
*.janraincapture.com
uutiskirje.universalmusic.com
store.universalmusic.com
uc18.janrainengage.com
acquia-sites.com
store.universalmusic.com
incapsula.com
store.universalmusic.com
uc18.janrainengage.com
incapsula.com
acquia-sites.com
store.universalmusic.com
acquia-sites.com
incapsula.com
acquia-sites.com
incapsula.com
*.dev.investors.universalmusic.com
incapsula.com
universalmusic.com
*.qa.investors.universalmusic.com
uc17.janrainengage.com
universalmusic.com
store.universalmusic.com
universalmusic.com
incapsula.com
privacy.umusic.com
incapsula.com
*.qa.investors.universalmusic.com
store.universalmusic.com
store.universalmusic.com
incapsula.com
acquia-sites.com
incapsula.com
incapsula.com
store.universalmusic.com
incapsula.com
incapsula.com
go.universalmusic.com
incapsula.com
uc11.janraincapture.com
investors.universalmusic.com
incapsula.com
store.universalmusic.com
incapsula.com
incapsula.com
store.universalmusic.com
Certificate
The complete raw certificate details for store.universalmusic.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHMzCCBhugAwIBAgIQBCsjO4YwCxxBCh8yNZojpzANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNzEwMDIwMDAwMDBaFw0xOTAxMTUxMjAwMDBa MHwxCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhOZXcgWW9yazERMA8GA1UEBxMITmV3 IFlvcmsxJDAiBgNVBAoTG1VuaXZlcnNhbCBNdXNpYyBHcm91cCwgSW5jLjEhMB8G A1UEAxMYc3RvcmUudW5pdmVyc2FsbXVzaWMuY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEA1LBlS0DR9q2mSRBR6vcLmzdb+QR0O4UtOZhW/o/0gpaU lNXRSbJC09qhsS+fdLZTzeaS01iOfhLsPCIUsaKM7WrsnVbd5DcscA84NSBI7bSz 83y2H6xeBHuf/WupnoEfEAWEDTMdHP1rfSX0+724ehOJcxoOPhMBNkKEVNadefKy pPbkN89URWzPRJxbG+zEgUD1qcXBCKv/xJLFweCxm7qPaYyCunLjMWyDvP2xj+Q0 ytVvulN5PImYTtm7joWIzj0eMY1MB2YURA5NLQYFzAQLLZZC1za/x3Sttgjg+tyf jnHiT/H3+KUrqYXJil/RjWL0kapwlT2SEfjEDDpDKwIDAQABo4IDuzCCA7cwHwYD VR0jBBgwFoAUUWj/kK8CB3U8zNllZGKiErhZcjswHQYDVR0OBBYEFMiro1pf93vf I5vr3ahBWXQvgmWqMIIB6wYDVR0RBIIB4jCCAd6CGHN0b3JlLnVuaXZlcnNhbG11 c2ljLmNvbYIQc2hvcC5yaXRhb3JhLmNvbYIac2hvcC5pc2xhbmRyZWNvcmRzYmVl ci5jb22CFHN0b3JlLmphbWlyb3F1YWkuY29tghNzaG9wLmltdGhlZnJlYWsuY29t ghZzdG9yZS50aGlzaXNzaWdyaWQuY29tgg1zaG9wLnB1cmUuY29tghl1ay5sb3Jk ZW9mZmljaWFsc3RvcmUuY29tghljYS5sb3JkZW9mZmljaWFsc3RvcmUuY29tghRz dG9yZS5uaWNrbXVsdmV5LmNvbYISc3RvcmUucmFza2l0LmNvLnVrghNzaG9wLnNo YW5lZmlsYW4uY29tghltdXNpY3N0b3JlLm5pYWxsaG9yYW4uY29tghdzdG9yZS5k ZWNjYWNsYXNzaWNzLmNvbYISc2hvcC5jeWJlcmFsbWEuY29tghBzdG9yZS50aGV3 aG8uY29tghhzdG9yZS5mbHl0ZXRoZWJhbmQuY28udWuCE3Nob3AucGFkZGluZ3Rv bi5jb22CF3N0b3JlLnNhbXNtaXRod29ybGQuY29tghdtdXNpYy50ZWFyc2ZvcmZl YXJzLmNvbYISc3RvcmUuc24xZ2lnZ3MuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwdQYDVR0fBG4wbDA0oDKgMIYuaHR0 cDovL2NybDMuZGlnaWNlcnQuY29tL3NoYTItaGEtc2VydmVyLWcxLmNybDA0oDKg MIYuaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NoYTItaGEtc2VydmVyLWcxLmNy bDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczov L3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjCBgwYIKwYBBQUHAQEEdzB1 MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wTQYIKwYBBQUH MAKGQWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJIaWdo QXNzdXJhbmNlU2VydmVyQ0EuY3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQEL BQADggEBAIt+GDCH6P6H7ZrZvdONW+wifJc80XaBX658nzum9Ypzm7VOmuCAutDo EKQKBFiPsBD0dWUiza3JnNPA5sY9WoyhOj6CUcfywaoAFCMFEVFT090RXsFKroW+ yEsnXYBRBod4EKeE2L9/Qk0WUaROkCZ07HJ/pZQkVD2CIUk0ktAg45eL0Fzh9EmC Jv/06FGX4zn5Vg/ozJ2fWU7J3btoKvBpk1EzBxcC4zVvsKCbunSnqR6rAsjyE5QL AVJnLD1sviHtupQ/mV9eHW6mlZ5JuHUsbFr1NYwP8q3IleY4JqHL7x52MofAgmTB +Iwz+OyWtSVyDzXlhiWqudC0dLsRKFs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1LBlS0DR9q2mSRBR6vcL mzdb+QR0O4UtOZhW/o/0gpaUlNXRSbJC09qhsS+fdLZTzeaS01iOfhLsPCIUsaKM 7WrsnVbd5DcscA84NSBI7bSz83y2H6xeBHuf/WupnoEfEAWEDTMdHP1rfSX0+724 ehOJcxoOPhMBNkKEVNadefKypPbkN89URWzPRJxbG+zEgUD1qcXBCKv/xJLFweCx m7qPaYyCunLjMWyDvP2xj+Q0ytVvulN5PImYTtm7joWIzj0eMY1MB2YURA5NLQYF zAQLLZZC1za/x3Sttgjg+tyfjnHiT/H3+KUrqYXJil/RjWL0kapwlT2SEfjEDDpD KwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5540895348383449452331275458377819047 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-15 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universal Music Group, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'store.universalmusic.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26849504604313372008094968190917498674425791051066730730359430761202099947046163991321991500414159949724767958355106062804874529354412431092374014225996669246498080811371531701055103666367324462442901658812049128537745309346866443821751296409507634742831875669634379367426957078951182075104111271675808712973950258233757409244062961146887842312622634145693458744018543142339840130873871782635510823942222145296662334629045316635839742900290352651395894686014061644997840016483690314542293462471913989914716084014035304179001555625131219842570690061012958378626131077221925934740403964219753152745545206230985370911531 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c8aba35a5ff77bdf239bebdda84159742f8265aa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.universalmusic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.ritaora.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.islandrecordsbeer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.jamiroquai.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.imthefreak.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.thisissigrid.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.pure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uk.lordeofficialstore.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ca.lordeofficialstore.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.nickmulvey.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.raskit.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.shanefilan.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'musicstore.niallhoran.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.deccaclassics.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.cyberalma.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.thewho.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.flytetheband.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.paddington.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.samsmithworld.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'music.tearsforfears.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.sn1giggs.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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