SPOREVPN01H.international.gc.ca
- Global Affairs Canada -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 0a:14:ce:7b:e3:5f:97:e4:c3:ff:c5:95:f4:8f:9e:5e was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Global Affairs Canada
Organization:
Global Affairs Canada
State / Province:
Ontario
Locality: Ottawa
Country: CA
Locality: Ottawa
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:14:ce:7b:e3:5f:97:e4:c3:ff:c5:95:f4:8f:9e:5eSerial Number (int): 13400313886830859259858044367687097950
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 31:2c:e2:03:f0:83:08:52:e2:49:68:51:d9:cf:0e:9e:dc:2b:91:84
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 05:2c:22:73:e0:2d:f4:b6:ce:9f:f6:ac:7f:78:89:fd:df:1a:ca:b9
Fingerprint (sha256): 19:15:77:e9:7a:1c:76:11:8c:c0:aa:8f:f4:eb:86:92:93:c6:a4:4a:b5:6b:05:33:02:31:b5:a2:77:27:69:66
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate SPOREVPN01H.international.gc.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for SPOREVPN01H.international.gc.ca
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
SPOREVPN01H.international.gc.ca
Other certificates including the domain name international.gc.ca
(limited to 100 certificates)
mailgateway.dev.international.gc.ca
sdcvpn01h.international.gc.ca
dalasvpn01h.international.gc.ca
www.listserv.international.gc.ca
data.international.gc.ca
eam-systest.sp.international.gc.ca
develang.international.gc.ca
develang.international.gc.ca
data.international.gc.ca
dev-travel.international.gc.ca
rm3hq.international.gc.ca
rm3hq.international.gc.ca
SP.international.gc.ca
signetweb.international.gc.ca
MXICOVPN01H.international.gc.ca
pilotasa01.international.gc.ca
piprod2.international.gc.ca
sdcvpn01h.international.gc.ca
goa-oma.international.gc.ca
w01.international.gc.ca
sl.media.international.gc.ca
elang.international.gc.ca
www.international.gc.ca
w03.international.gc.ca
guestportal11.international.gc.ca
w05.international.gc.ca
iec-eic.international.gc.ca
rm2dg.international.gc.ca
travel-smart.international.gc.ca
signetweb.international.gc.ca
SEOULVPN01H.international.gc.ca
dev-goa-oma.international.gc.ca
AEMDispatcher.international.gc.ca
appdemo.international.gc.ca
sdcvpn01h.international.gc.ca
DELHIVPN01H.international.gc.ca
staffing-les.international.gc.ca
rm3hq.international.gc.ca
SPOREVPN01H.international.gc.ca
w06.international.gc.ca
as-dev.international.gc.ca
guestportal.international.gc.ca
FS-QA.international.gc.ca
w05.international.gc.ca
listservdev.international.gc.ca
eam-dev.sp.international.gc.ca
TOKYOVPN01H.international.gc.ca
SP-QA.international.gc.ca
eam.sp.international.gc.ca
collab.international.gc.ca
tcse-ts15.international.gc.ca
travel-smart.international.gc.ca
CRCASVPN01.international.gc.ca
wcdev.international.gc.ca
seoulvpn01h.international.gc.ca
dev-goa-oma.international.gc.ca
wc.international.gc.ca
rm1ac.international.gc.ca
GANZUVPN01H.international.gc.ca
wifi-pilot.international.gc.ca
eam-dev.sp.international.gc.ca
evoswa.international.gc.ca
pi.international.gc.ca
rm2dg.international.gc.ca
pi.international.gc.ca
bilat.international.gc.ca
*.international.gc.ca
*.dev.cloud-nuage.international.gc.ca
intl-ts16.international.gc.ca
appdemo.international.gc.ca
wc.international.gc.ca
w05.international.gc.ca
signetweb.international.gc.ca
CNGNYVPN01H.international.gc.ca
elang.international.gc.ca
wifiauth1.d.r.dfait-maeci.gc.ca
tradefacts-donneescommerciales.international.gc.ca
mailgateway.international.gc.ca
rm4rz.international.gc.ca
www.listserv.dfait-maeci.gc.ca
signetweb.international.gc.ca
rm2dg.international.gc.ca
elang.international.gc.ca
kompass-iec-eic.international.gc.ca
www1.international.gc.ca
*.dev.cloud-nuage.international.gc.ca
SPOREVPN01H.international.gc.ca
dv05.international.gc.ca
tcsf-ts16.international.gc.ca
FS-DEV.international.gc.ca
www1.international.gc.ca
mailgateway.dev.international.gc.ca
wc.international.gc.ca
lbpvpn01h.international.gc.ca
develang.international.gc.ca
rm1ac.international.gc.ca
mailgateway.dev.international.gc.ca
wc.international.gc.ca
HQL-PMKWC02.p.dfait-maeci.gc.ca
ExchangeServer-QA.d.r.dfait-maeci.gc.ca
sdcvpn01h.international.gc.ca
dalasvpn01h.international.gc.ca
www.listserv.international.gc.ca
data.international.gc.ca
eam-systest.sp.international.gc.ca
develang.international.gc.ca
develang.international.gc.ca
data.international.gc.ca
dev-travel.international.gc.ca
rm3hq.international.gc.ca
rm3hq.international.gc.ca
SP.international.gc.ca
signetweb.international.gc.ca
MXICOVPN01H.international.gc.ca
pilotasa01.international.gc.ca
piprod2.international.gc.ca
sdcvpn01h.international.gc.ca
goa-oma.international.gc.ca
w01.international.gc.ca
sl.media.international.gc.ca
elang.international.gc.ca
www.international.gc.ca
w03.international.gc.ca
guestportal11.international.gc.ca
w05.international.gc.ca
iec-eic.international.gc.ca
rm2dg.international.gc.ca
travel-smart.international.gc.ca
signetweb.international.gc.ca
SEOULVPN01H.international.gc.ca
dev-goa-oma.international.gc.ca
AEMDispatcher.international.gc.ca
appdemo.international.gc.ca
sdcvpn01h.international.gc.ca
DELHIVPN01H.international.gc.ca
staffing-les.international.gc.ca
rm3hq.international.gc.ca
SPOREVPN01H.international.gc.ca
w06.international.gc.ca
as-dev.international.gc.ca
guestportal.international.gc.ca
FS-QA.international.gc.ca
w05.international.gc.ca
listservdev.international.gc.ca
eam-dev.sp.international.gc.ca
TOKYOVPN01H.international.gc.ca
SP-QA.international.gc.ca
eam.sp.international.gc.ca
collab.international.gc.ca
tcse-ts15.international.gc.ca
travel-smart.international.gc.ca
CRCASVPN01.international.gc.ca
wcdev.international.gc.ca
seoulvpn01h.international.gc.ca
dev-goa-oma.international.gc.ca
wc.international.gc.ca
rm1ac.international.gc.ca
GANZUVPN01H.international.gc.ca
wifi-pilot.international.gc.ca
eam-dev.sp.international.gc.ca
evoswa.international.gc.ca
pi.international.gc.ca
rm2dg.international.gc.ca
pi.international.gc.ca
bilat.international.gc.ca
*.international.gc.ca
*.dev.cloud-nuage.international.gc.ca
intl-ts16.international.gc.ca
appdemo.international.gc.ca
wc.international.gc.ca
w05.international.gc.ca
signetweb.international.gc.ca
CNGNYVPN01H.international.gc.ca
elang.international.gc.ca
wifiauth1.d.r.dfait-maeci.gc.ca
tradefacts-donneescommerciales.international.gc.ca
mailgateway.international.gc.ca
rm4rz.international.gc.ca
www.listserv.dfait-maeci.gc.ca
signetweb.international.gc.ca
rm2dg.international.gc.ca
elang.international.gc.ca
kompass-iec-eic.international.gc.ca
www1.international.gc.ca
*.dev.cloud-nuage.international.gc.ca
SPOREVPN01H.international.gc.ca
dv05.international.gc.ca
tcsf-ts16.international.gc.ca
FS-DEV.international.gc.ca
www1.international.gc.ca
mailgateway.dev.international.gc.ca
wc.international.gc.ca
lbpvpn01h.international.gc.ca
develang.international.gc.ca
rm1ac.international.gc.ca
mailgateway.dev.international.gc.ca
wc.international.gc.ca
HQL-PMKWC02.p.dfait-maeci.gc.ca
ExchangeServer-QA.d.r.dfait-maeci.gc.ca
Certificate
The complete raw certificate details for SPOREVPN01H.international.gc.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH2zCCBsOgAwIBAgIQChTOe+Nfl+TD/8WV9I+eXjANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MTExMDIxNTAzMzNaFw0yMjEyMDExNTAzMzJaMHoxCzAJBgNVBAYTAkNBMRAwDgYD VQQIEwdPbnRhcmlvMQ8wDQYDVQQHEwZPdHRhd2ExHjAcBgNVBAoTFUdsb2JhbCBB ZmZhaXJzIENhbmFkYTEoMCYGA1UEAxMfU1BPUkVWUE4wMUguaW50ZXJuYXRpb25h bC5nYy5jYTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALhV/yzGuUeF 8s4jwJtWFJrFH9a1Ynho18hSFe63EqBTinCAW4J9KLhijlQPM5KIcg1oPFKlNmqM 2dFcqEFVyRI8qPml6r2ULP0svbGzKoD0tmOea8ebPG/rgPjVbPRJWUTbvZgsySR/ tzfUafj8Dm6HKwsOQdgi64uoBcSivl1UVy6Kw2FIsrTY9WvUYgqdainpPPpw2g13 HXky5F0pNFAA8w9UK+UiynqzUTxoSri1EGwFhx6pKMjRM+2LOUl06FrC0CcQYNf9 jM6lWGwq4Mru7YTrId2WnE/gtDzj2dJCe6NEfFfUcJRtJEgyIRYW9GLNLWAVsSMr 67LV7jnhilEnI+IzDuY8RawuZO+evMex1VaWV1/72SLICTqjBYSVCT83rKUE8jZu luB7V39vQNunrSLnaD2oDF8bqgRuyu8C3UVbu5vhenvslBOCoGd1bnJL/DCem6O9 8N8XKYi0wFr6Kviw1KYlTnqtCjhhbLR4WyCEwqlLIiNhJ2K3HBtyyk2zDi9BMR8p +A/gQZf3oPtjdTxtSRulMOAiiwgrnpWDRX0M6j7G8RKJyjp2r6hMJRpobciF7JUm ogJtaA+Iscz0abtD3/U7ReqZlFhtLJQXOZm2JX3a5RjBhjWi9YWlNq7T3AhF3G8G S9M6U2N5+oPpjK0A4ROLHnPvJTAqdZOrAgMBAAGjggMaMIIDFjAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBQxLOID8IMIUuJJaFHZzw6e3CuRhDAfBgNVHSMEGDAWgBSC onB03bxTP8971PfNf6dgxgpMvzBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUHMAGG F2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8vYWlh LmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwMwYDVR0fBCwwKjAooCagJIYi aHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFrLmNybDAqBgNVHREEIzAhgh9T UE9SRVZQTjAxSC5pbnRlcm5hdGlvbmFsLmdjLmNhMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwTAYDVR0gBEUwQzA3BgpghkgB hvpsCgEFMCkwJwYIKwYBBQUHAgEWG2h0dHBzOi8vd3d3LmVudHJ1c3QubmV0L3Jw YTAIBgZngQwBAgIwggF8BgorBgEEAdZ5AgQCBIIBbASCAWgBZgB1AFYUBpov18Ls 0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABfOEtS9QAAAQDAEYwRAIgYfk2Egfx iQj7QZ1trDaXd0whm0a5onGjCCYa5MkS+m0CIGG22WYvGD+EPUtGTHa1La+96lkL XfQtLVhSraqvtj6bAHUA36Veq2iCTx9sre64X04+WurNohKkal6OOxLAIERcKnMA AAF84S1LwgAABAMARjBEAiBVgyz8ZptwRfA6xKrcwwG/xfdZdXC8/mWOoZpYrxH/ RQIgUzm6nxJDqenxjOwiItAZ/JknXPxBqi7nVtGF3l1XWcAAdgBGpVXrdfqRIDC1 oolp9PN9ESxBdL79SbiFq/L8cP5tRwAAAXzhLU2JAAAEAwBHMEUCIBnFuPShHif6 FJdFV5caTHCJ3gwrFJWM4uSdiLjcz8ZOAiEAhdUCQjYynK00DWwXqF58ON8zj9WR 93najis1PTMVEzcwDQYJKoZIhvcNAQELBQADggEBAH+lItoqeLYPQuA4A3uNtB/y 0NcaXhS3epLWb7w5WMFl7rug9MfgopaEgwqLs3ATIP7oa/mW29SmO/9udlJSfFEO CFf/AcuAlJgBr+ibQpzz+Y/wz7iNnFHIIM5roGNV+lGTtdL1AR9qfOU6BCEznrMB uxLiEgmBRGc3GG4HjLuXuymHGNw0uXojOYkP2gy2dkovgadhfUlrNa8MziFCZPdC B4dxqJ4VGiLnO/iIKpG+L2hgxAW5oT58BlQS13ztquPNqNfFTAlFnfzxNA//Ojcy RMg0236BbmQ325zHddJQAmLxccuQd9m3wgYYvM4/Cg4eI1NuoxA27I4tmV4Lo0s= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuFX/LMa5R4XyziPAm1YU msUf1rVieGjXyFIV7rcSoFOKcIBbgn0ouGKOVA8zkohyDWg8UqU2aozZ0VyoQVXJ Ejyo+aXqvZQs/Sy9sbMqgPS2Y55rx5s8b+uA+NVs9ElZRNu9mCzJJH+3N9Rp+PwO bocrCw5B2CLri6gFxKK+XVRXLorDYUiytNj1a9RiCp1qKek8+nDaDXcdeTLkXSk0 UADzD1Qr5SLKerNRPGhKuLUQbAWHHqkoyNEz7Ys5SXToWsLQJxBg1/2MzqVYbCrg yu7thOsh3ZacT+C0POPZ0kJ7o0R8V9RwlG0kSDIhFhb0Ys0tYBWxIyvrstXuOeGK UScj4jMO5jxFrC5k7568x7HVVpZXX/vZIsgJOqMFhJUJPzespQTyNm6W4HtXf29A 26etIudoPagMXxuqBG7K7wLdRVu7m+F6e+yUE4KgZ3Vuckv8MJ6bo73w3xcpiLTA Wvoq+LDUpiVOeq0KOGFstHhbIITCqUsiI2EnYrccG3LKTbMOL0ExHyn4D+BBl/eg +2N1PG1JG6Uw4CKLCCuelYNFfQzqPsbxEonKOnavqEwlGmhtyIXslSaiAm1oD4ix zPRpu0Pf9TtF6pmUWG0slBc5mbYlfdrlGMGGNaL1haU2rtPcCEXcbwZL0zpTY3n6 g+mMrQDhE4sec+8lMCp1k6sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13400313886830859259858044367687097950 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-02 15:03:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-01 15:03:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ottawa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Global Affairs Canada' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SPOREVPN01H.international.gc.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 752024962582428914801235112590080186289828962618337805763197965068505476130747910595278708000295728852910586411305201401365881962132330363424120130004823241408081684692306023666693046412385719846738371787450792867052938281751201180437984317321476245351097739731780811625628526695360154558827307665475540506563749954894173161138722988896944646904042403003592156946297464835909934227682731251494333001262321440066172047636509602565501735378170955463948196677570438758664130072507255370893978288744978810933540606015832847915650221559631884385594987628850694104510834800397101344627032598595996495783629279943132188668723496349199071855698909020975623989790344347411664059241286939815754750320308166142566662236324501027034315288049258840946036415803009128776254722340279680309759574404507906075936490698590494807050942865203754491663122961124952651031594389998700666855913932107139348704279941096244426065276580314248652214718946238342724234564304386924446421238661337123747599452376676139169863932300752455787082601955793454583838880751789848888702393459749504945807098977106020479225167197920424487250087811151488983255601782082451147908075369436444821683866374743766847854895178444577879525171931501844733288739089162278308028978091 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 312ce203f0830852e2496851d9cf0e9edc2b9184 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (35 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'SPOREVPN01H.international.gc.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 01660075005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd0000017ce12d4bd40000040300463044022061f9361207f18908fb419d6dac3697774c219b46b9a271a308261ae4c912fa6d022061b6d9662f183f843d4b464c76b52dafbdea590b5df42d2d5852adaaafb63e9b007500dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a730000017ce12d4bc20000040300463044022055832cfc669b7045f03ac4aadcc301bfc5f7597570bcfe658ea19a58af11ff4502205339ba9f1243a9e9f18cec2222d019fc99275cfc41aa2ee756d185de5d5759c000760046a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d470000017ce12d4d890000040300473045022019c5b8f4a11e27fa14974557971a4c7089de0c2b14958ce2e49d88b8dccfc64e02210085d5024236329cad340d6c17a85e7c38df338fd591f779da8e2b353d33151337 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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