instore.destinationxl.com
- DESTINATION XL GROUP INC. -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 08:7e:1b:5e:d5:09:1a:32:0a:d4:9c:21:a5:4c:38:e4 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
DESTINATION XL GROUP INC.
Organization:
DESTINATION XL GROUP INC.
State / Province:
Massachusetts
Locality: Canton
Country: US
Locality: Canton
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:7e:1b:5e:d5:09:1a:32:0a:d4:9c:21:a5:4c:38:e4Serial Number (int): 11288608508892601329343689289607428324
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 31:6c:58:14:51:3e:be:f8:ed:91:bf:51:04:5c:18:24:37:1e:59:28
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): ca:da:a0:1f:f8:bf:59:b3:63:dc:c3:41:92:7c:d8:15:c7:86:01:10
Fingerprint (sha256): 18:e7:8e:22:5d:15:f7:32:2c:59:cd:52:45:b5:a6:5f:63:92:78:cc:5f:58:e8:62:73:fb:f0:ad:57:dc:6e:8c
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate instore.destinationxl.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for instore.destinationxl.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
instore.destinationxl.com
beta.instore.destinationxl.com
instore.beta.destinationxl.com
beta.instore.destinationxl.com
instore.beta.destinationxl.com
Other certificates including the domain name destinationxl.com
(limited to 100 certificates)
preview-testl.destinationxl.com
leapfrog-ssl-15.gcs-web.com
landing.destinationxl.com
UAT.BETA.DESTINATIONXL.COM
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
leapfrog-ssl-15.gcs-web.com
landing.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
destinationxl.com
landing.destinationxl.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
prodl.destinationxl.com
leapfrog-ssl-15.gcs-web.com
www.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
www.destinationxl.com
www.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
landing.destinationxl.com
preview-testl.destinationxl.com
vlgstb.destinationxl.com
landing.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
instore.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
instore.destinationxl.com
www.destinationxl.com
leapfrog-ssl-15.gcs-web.com
uat.crm.destinationxl.com
careers.destinationxl.com
destinationxl.com
mail.cmal.com
preview.destinationxl.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
gifts.destinationxl.com
qa-gifts.dxl.com
instore.destinationxl.com
www.destinationxl.com
www.destinationxl.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
careers.destinationxl.com
careers.destinationxl.com
landing.destinationxl.com
beta.destinationxl.com
leapfrog-ssl-15.gcs-web.com
destinationxl.com
careers.destinationxl.com
leapfrog-ssl-15.gcs-web.com
UAT.BETA.DESTINATIONXL.COM
landing.destinationxl.com
landing.destinationxl.com
leapfrog-ssl-15.gcs-web.com
www.destinationxl.com
leapfrog-ssl-15.gcs-web.com
*.destinationxl.com
www.destinationxl.com
landing.destinationxl.com
prodl.destinationxl.com
leapfrog-ssl-15.gcs-web.com
www.destinationxl.com
landing.destinationxl.com
UAT.BETA.DESTINATIONXL.COM
landing.destinationxl.com
www.destinationxl.com
instore.mtm.uat.gamma.destinationxl.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
leapfrog-ssl-15.gcs-web.com
www.destinationxl.com
www.destinationxl.com
devl.beta.destinationxl.com
leapfrog-ssl-15.gcs-web.com
landing.destinationxl.com
careers.destinationxl.com
careers.destinationxl.com
landing.destinationxl.com
landing.destinationxl.com
vlgstb.destinationxl.com
help.dxl.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
www.destinationxl.com
mail.cmal.com
www.destinationxl.com
destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
landing.destinationxl.com
UAT.BETA.DESTINATIONXL.COM
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
leapfrog-ssl-15.gcs-web.com
landing.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
destinationxl.com
landing.destinationxl.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
prodl.destinationxl.com
leapfrog-ssl-15.gcs-web.com
www.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
www.destinationxl.com
www.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
landing.destinationxl.com
preview-testl.destinationxl.com
vlgstb.destinationxl.com
landing.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
instore.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
instore.destinationxl.com
www.destinationxl.com
leapfrog-ssl-15.gcs-web.com
uat.crm.destinationxl.com
careers.destinationxl.com
destinationxl.com
mail.cmal.com
preview.destinationxl.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
leapfrog-ssl-15.gcs-web.com
leapfrog-ssl-15.gcs-web.com
gifts.destinationxl.com
qa-gifts.dxl.com
instore.destinationxl.com
www.destinationxl.com
www.destinationxl.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
careers.destinationxl.com
careers.destinationxl.com
landing.destinationxl.com
beta.destinationxl.com
leapfrog-ssl-15.gcs-web.com
destinationxl.com
careers.destinationxl.com
leapfrog-ssl-15.gcs-web.com
UAT.BETA.DESTINATIONXL.COM
landing.destinationxl.com
landing.destinationxl.com
leapfrog-ssl-15.gcs-web.com
www.destinationxl.com
leapfrog-ssl-15.gcs-web.com
*.destinationxl.com
www.destinationxl.com
landing.destinationxl.com
prodl.destinationxl.com
leapfrog-ssl-15.gcs-web.com
www.destinationxl.com
landing.destinationxl.com
UAT.BETA.DESTINATIONXL.COM
landing.destinationxl.com
www.destinationxl.com
instore.mtm.uat.gamma.destinationxl.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
leapfrog-ssl-15.gcs-web.com
www.destinationxl.com
www.destinationxl.com
devl.beta.destinationxl.com
leapfrog-ssl-15.gcs-web.com
landing.destinationxl.com
careers.destinationxl.com
careers.destinationxl.com
landing.destinationxl.com
landing.destinationxl.com
vlgstb.destinationxl.com
help.dxl.com
leapfrog-ssl-15.gcs-web.com
careers.destinationxl.com
www.destinationxl.com
mail.cmal.com
www.destinationxl.com
destinationxl.com
leapfrog-ssl-15.gcs-web.com
Certificate
The complete raw certificate details for instore.destinationxl.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIQCH4bXtUJGjIK1JwhpUw45DANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0yMDA4MjIwMDAwMDBaFw0yMTA4MjcxMjAwMDBaMH4xCzAJBgNVBAYTAlVTMRYw FAYDVQQIEw1NYXNzYWNodXNldHRzMQ8wDQYDVQQHEwZDYW50b24xIjAgBgNVBAoT GURFU1RJTkFUSU9OIFhMIEdST1VQIElOQy4xIjAgBgNVBAMTGWluc3RvcmUuZGVz dGluYXRpb254bC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC +zgt3YUT5THBdAMAFabx1ZoiLKCkbkN3hcGkZxQ2paVHOvSyeij/X3MzXMccITkt 2kv2Bv+t2fNS9s3MmZ3pTQKRL9st4BZz1jZn7KLxzCT2YMsojkWD8GJbMpRP8G2b QWJtFuPZ2/6YjY5qyOimkiRyAocIMyzWtDM0ZEN/cqimvuHXyNKfaTwcuYRzWwOq CFnjgT5hIs7Gi22Q6akvLkGpZXx2vtemyjMT78hZJyBz5YKylGFDBZ6FNIcvkx6O NuQJGapGPnsPplTxOpJ6xYBoXKpHXdSZWhJNFNm8jqKZY1qvjPoA3vb1Qvyb/71q YOwa3x4J0qG4gO8coYNRAgMBAAGjggIBMIIB/TAfBgNVHSMEGDAWgBSQWP+wnHWo UVR3se3yo0MWOJ5sxTAdBgNVHQ4EFgQUMWxYFFE+vvjtkb9RBFwYJDceWSgwZAYD VR0RBF0wW4IZaW5zdG9yZS5kZXN0aW5hdGlvbnhsLmNvbYIeYmV0YS5pbnN0b3Jl LmRlc3RpbmF0aW9ueGwuY29tgh5pbnN0b3JlLmJldGEuZGVzdGluYXRpb254bC5j b20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vY2RwLmdlb3RydXN0LmNvbS9HZW9U cnVzdFJTQUNBMjAxOC5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggr BgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIw dQYIKwYBBQUHAQEEaTBnMCYGCCsGAQUFBzABhhpodHRwOi8vc3RhdHVzLmdlb3Ry dXN0LmNvbTA9BggrBgEFBQcwAoYxaHR0cDovL2NhY2VydHMuZ2VvdHJ1c3QuY29t L0dlb1RydXN0UlNBQ0EyMDE4LmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkC BAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAgzEHF/JsRabI/bFxqbfSRwkeK XyBnjCaG0QTDHfhoja2xhZMyMo2lXV5SMeeIXjJjnUIAg4cx3Y/nZv+RQAVTQK0f P5Aoz8OeWzReoBa09gnRXuZJOPtcHkjnBIhT2+LxYblIR3+U7pWPoNVxtoy5Zu+8 RdbLHRqFLnuoMorJcn9MFnObrqy7lihrP0lZIbIAdP0TCrfmwFQhSIlE67ejETWQ 9GBIvWh9dXryQAo0OfpevKhiqBXylIFXEYHLVDhqHxSKP++Ct34+wz5I+gpV8DZJ LrCZO0AFUQ9LzSYQht9AUYMaX4THN/sIc5BBo6lV8dzebKUPr9FXCL1oFr3u -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvs4Ld2FE+UxwXQDABWm 8dWaIiygpG5Dd4XBpGcUNqWlRzr0snoo/19zM1zHHCE5LdpL9gb/rdnzUvbNzJmd 6U0CkS/bLeAWc9Y2Z+yi8cwk9mDLKI5Fg/BiWzKUT/Btm0FibRbj2dv+mI2Oasjo ppIkcgKHCDMs1rQzNGRDf3Kopr7h18jSn2k8HLmEc1sDqghZ44E+YSLOxottkOmp Ly5BqWV8dr7XpsozE+/IWScgc+WCspRhQwWehTSHL5MejjbkCRmqRj57D6ZU8TqS esWAaFyqR13UmVoSTRTZvI6imWNar4z6AN729UL8m/+9amDsGt8eCdKhuIDvHKGD UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11288608508892601329343689289607428324 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-27 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Massachusetts' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Canton' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DESTINATION XL GROUP INC.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'instore.destinationxl.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24614112091241382636782372938904594634901263858911214109446868992414923430600886523900856822911020508699205425366928852625780295024947470654430132107793666377809968954123286123034636143625688430907603208323532188412723259195508318511581647944984696381225569024366987680365495777428031066868188186043598057639954550103491103745327347536360148767681568260025594790054249065735993641587339495644894496049258501066554831117082368176307955145083391796995348036053407720186330343025010991372463168261646161458047679802052250943821468156612745333369970463146973215835154508281301544049279204054945523784510846688206205846353 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 316c5814513ebef8ed91bf51045c1824371e5928 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'instore.destinationxl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beta.instore.destinationxl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'instore.beta.destinationxl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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