ct.max.co.il
- Leumi Card Ltd -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 03:fb:04:46:dd:61:e6:94:65:a5:6f:d3:96:b2:44:47 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Leumi Card Ltd
Organization:
Leumi Card Ltd
Organization unit: IT
Organization unit: IT
Locality:
Bnei Brak
Country: IL
Country: IL
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fb:04:46:dd:61:e6:94:65:a5:6f:d3:96:b2:44:47Serial Number (int): 5291037242971321815411348565637874759
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 11:bd:42:be:a5:bf:de:92:b5:2d:00:ee:ed:e7:2b:21:61:52:a4:73
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): e8:0f:8c:88:c5:03:44:88:a2:80:7e:02:62:14:7e:89:6c:db:34:96
Fingerprint (sha256): 19:2e:94:e7:ba:5d:39:1f:40:39:fe:e9:64:fa:d3:55:d7:5d:70:be:24:71:c9:12:d9:a2:38:4b:76:5b:b2:e3
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate ct.max.co.il
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ct.max.co.il
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ct.max.co.il
Other certificates including the domain name max.co.il
(limited to 100 certificates)
ct.max.co.il
media.max.co.il
businesslc.max.co.il
tracking.max.co.il
cbxapps.max.co.il
media.max.co.il
businesslc.max.co.il
home.max.co.il
scvt.max.co.il
online.max.co.il
api.max.co.il
affiliate.max.co.il
developers.max.co.il
apirt.max.co.il
*.adventure.max.co.il
media.max.co.il
gb.max.co.il
businesslcapi.max.co.il
gpack.uk
businesslc.max.co.il
app-dev.wearefairgame.com
affiliate.max.co.il
mpg.max.co.il
survey.max.co.il
api-ob.max.co.il
onlinelcapi.max.co.il
onlinelcapi.max.co.il
api-obauth-test.max.co.il
vi.max.co.il
api-test.max.co.il
media.max.co.il
developer.max.co.il
ct.max.co.il
smcm.max.co.il
esa.max.co.il
accessibility.max.co.il
api-ob-test.max.co.il
rest.max.co.il
tracking.max.co.il
accessibility.max.co.il
www.max.co.il
online.max.co.il
developer.max.co.il
www.weni.app
gb.max.co.il
dev.smarttif.dataauchan.fr
accessibility.max.co.il
work.max.co.il
home.max.co.il
ft.max.co.il
cbxapps.max.co.il
tracking.max.co.il
rest.max.co.il
ims.max.co.il
www.theotterco.ca
sky.max.co.il
work2.max.co.il
api-ob.max.co.il
www.sky.max.co.il
businessreports.max.co.il
api.max.co.il
tracking.max.co.il
accessibility.max.co.il
accessibility.max.co.il
developer.max.co.il
work.max.co.il
gb.max.co.il
api-test.max.co.il
www.acqua.app
with.global.chatie.me
taxcellence.aaddress.in
o10.max.co.il
esa.max.co.il
gb.max.co.il
bar-ltd.max.co.il
wsbalerts.com
salmonf.max.co.il
ct.max.co.il
ct.max.co.il
www.weni.app
api.max.co.il
p-cfreports.max.co.il
max.co.il
rsasigning.max.co.il
mpg-test.max.co.il
www.max.co.il
businessreports.max.co.il
enside.online
sky.max.co.il
rsasigning.max.co.il
onlinelcapi.max.co.il
www.max.co.il
businessreports.max.co.il
gb.max.co.il
o10.max.co.il
surveys.max.co.il
api-test.max.co.il
developer.max.co.il
fly.max.co.il
businessinfo.max.co.il
media.max.co.il
businesslc.max.co.il
tracking.max.co.il
cbxapps.max.co.il
media.max.co.il
businesslc.max.co.il
home.max.co.il
scvt.max.co.il
online.max.co.il
api.max.co.il
affiliate.max.co.il
developers.max.co.il
apirt.max.co.il
*.adventure.max.co.il
media.max.co.il
gb.max.co.il
businesslcapi.max.co.il
gpack.uk
businesslc.max.co.il
app-dev.wearefairgame.com
affiliate.max.co.il
mpg.max.co.il
survey.max.co.il
api-ob.max.co.il
onlinelcapi.max.co.il
onlinelcapi.max.co.il
api-obauth-test.max.co.il
vi.max.co.il
api-test.max.co.il
media.max.co.il
developer.max.co.il
ct.max.co.il
smcm.max.co.il
esa.max.co.il
accessibility.max.co.il
api-ob-test.max.co.il
rest.max.co.il
tracking.max.co.il
accessibility.max.co.il
www.max.co.il
online.max.co.il
developer.max.co.il
www.weni.app
gb.max.co.il
dev.smarttif.dataauchan.fr
accessibility.max.co.il
work.max.co.il
home.max.co.il
ft.max.co.il
cbxapps.max.co.il
tracking.max.co.il
rest.max.co.il
ims.max.co.il
www.theotterco.ca
sky.max.co.il
work2.max.co.il
api-ob.max.co.il
www.sky.max.co.il
businessreports.max.co.il
api.max.co.il
tracking.max.co.il
accessibility.max.co.il
accessibility.max.co.il
developer.max.co.il
work.max.co.il
gb.max.co.il
api-test.max.co.il
www.acqua.app
with.global.chatie.me
taxcellence.aaddress.in
o10.max.co.il
esa.max.co.il
gb.max.co.il
bar-ltd.max.co.il
wsbalerts.com
salmonf.max.co.il
ct.max.co.il
ct.max.co.il
www.weni.app
api.max.co.il
p-cfreports.max.co.il
max.co.il
rsasigning.max.co.il
mpg-test.max.co.il
www.max.co.il
businessreports.max.co.il
enside.online
sky.max.co.il
rsasigning.max.co.il
onlinelcapi.max.co.il
www.max.co.il
businessreports.max.co.il
gb.max.co.il
o10.max.co.il
surveys.max.co.il
api-test.max.co.il
developer.max.co.il
fly.max.co.il
businessinfo.max.co.il
Certificate
The complete raw certificate details for ct.max.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGijCCBXKgAwIBAgIQA/sERt1h5pRlpW/TlrJERzANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTkwMTIyMDAwMDAwWhcN MjEwMTIyMTIwMDAwWjBeMQswCQYDVQQGEwJJTDESMBAGA1UEBxMJQm5laSBCcmFr MRcwFQYDVQQKEw5MZXVtaSBDYXJkIEx0ZDELMAkGA1UECxMCSVQxFTATBgNVBAMT DGN0Lm1heC5jby5pbDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIt0 of84F95Ad6O0M+jkeD5SS4T3RR236w/otWW+g3EkQZsvUYEuS805xR/CAwdLspnd DmE+L7gqOEXmSDDm/T7CTZL8PtFfLURVWIjDtaEq9+BoatgrigI4vtYWxgEgvses EBjUp6DrBABRn5C/Q47w6VedzKIsTvbhXYUtSZoktCSq3cQJSwMD61HCwklroeFL OuRfSv9cR6lS1uW8Q0KyjgGUkO7E/9TL4gyzQ049FagrDikl+O+Esa/6JryB5kCK zbSO+P9HiuexzxbcPOYBo5POj1LROoc8sTbORqzSwSTpx7s6Ztm09EpXcbJiRYUM 6m97Lw32QxZVedTl5O0CAwEAAaOCA1MwggNPMB8GA1UdIwQYMBaAFA+AYRyCMWHV LyjnjUY4tCzhxtniMB0GA1UdDgQWBBQRvUK+pb/ekrUtAO7t5yshYVKkczAXBgNV HREEEDAOggxjdC5tYXguY28uaWwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8EZDBiMC+gLaArhilodHRwOi8vY3Js My5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc2LmNybDAvoC2gK4YpaHR0cDovL2Ny bDQuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwTAYDVR0gBEUwQzA3Bglg hkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29t L0NQUzAIBgZngQwBAgIwfAYIKwYBBQUHAQEEcDBuMCQGCCsGAQUFBzABhhhodHRw Oi8vb2NzcC5kaWdpY2VydC5jb20wRgYIKwYBBQUHMAKGOmh0dHA6Ly9jYWNlcnRz LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJTZWN1cmVTZXJ2ZXJDQS5jcnQwCQYD VR0TBAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHcApLkJkLQYWBSHuxOi zGdwCjw1mAT5G9+443fNDsgN3BAAAAFodZYTCQAABAMASDBGAiEA7rkROOvmXd9v 8fVvQa50tHrBFOwUt6VjQaBKk2Be5NYCIQC/1hbxe3XH3uszupZKqs7B1EOc8qoZ 81w9bDD1ExDq3AB2AId1v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMPAAAB aHWWE+YAAAQDAEcwRQIgK8QOoBc3S9+Dlkr3qz94gETEaytW+Ehznly0ush7tOMC IQC0mOKlGvgh4ZSgLu0qY4MBpDJOcrFtxn7l2/0AxqizPAB2APZclC/RdzAiFFQY CDCUVo7jTRMZM7/fDC8gC8xO8WTjAAABaHWWEyAAAAQDAEcwRQIhAPKtcVKc443J AtdJdoEKdHttMITsgpkXeAT6jG1FUiZiAiBeM9CGvcG6lZ9Wp/S7BZLLKkxx2qvy EAQ5djGe2YAYYTANBgkqhkiG9w0BAQsFAAOCAQEAJzoFM0q2h7AK6X26iTyocFxt OwMc/OxxCQJrgaVIP3O04EToJINam/T3mT+P+EixKhcUwWBFi667zLirodNi+NKY OqpXIe6rlnv1U4MQ7y4PGzjU4lXJ5/UMMsgOCxYrcJ6w4FKsCv2+904BWOsZs+h2 7UEBz7SQxksfDQ3WHkAiQJ2qMZKPTVDqAcMsOBxdHW3hD9Xb5iX95n9Ba42hmQPb CltmMSTw4oq9M8PFhGAhLXwi3HnbV4NM7JhR0Ay6ALgSkovoayMCxsw2B1MBjYMp zIApfhvV82Nxdys6tfaU9SnufWdcHqD6oT0JGjUR+Il3vnH8VsyhVG07bVmdNw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi3Sh/zgX3kB3o7Qz6OR4 PlJLhPdFHbfrD+i1Zb6DcSRBmy9RgS5LzTnFH8IDB0uymd0OYT4vuCo4ReZIMOb9 PsJNkvw+0V8tRFVYiMO1oSr34Ghq2CuKAji+1hbGASC+x6wQGNSnoOsEAFGfkL9D jvDpV53MoixO9uFdhS1JmiS0JKrdxAlLAwPrUcLCSWuh4Us65F9K/1xHqVLW5bxD QrKOAZSQ7sT/1MviDLNDTj0VqCsOKSX474Sxr/omvIHmQIrNtI74/0eK57HPFtw8 5gGjk86PUtE6hzyxNs5GrNLBJOnHuzpm2bT0SldxsmJFhQzqb3svDfZDFlV51OXk 7QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5291037242971321815411348565637874759 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-22 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bnei Brak' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Leumi Card Ltd' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ct.max.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17604638167818272737547714739774001312101812284797602395708742637754525072072438070517083567944570696481305062395193377300167387368896272453261241568664990561077609556712943197627176425044689854757068774159488129805982686882906198221724917356698749240314216567946509628169286686177689035125292964488428608590952110128804194698093935080862089119132196455987530522207988971720553966299589795092504153194831944387796890233697576352212327579423632163120587333656169386600234425583168302115045649038996893121967419577504214441965319136143672899347449587751096952738744727564912175251611803628274335144980078884009976128749 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 11bd42bea5bfde92b52d00eeede72b216152a473 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ct.max.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 0169007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000168759613090000040300483046022100eeb91138ebe65ddf6ff1f56f41ae74b47ac114ec14b7a56341a04a93605ee4d6022100bfd616f17b75c7deeb33ba964aaacec1d4439cf2aa19f35c3d6c30f51310eadc0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000168759613e6000004030047304502202bc40ea017374bdf83964af7ab3f788044c46b2b56f848739e5cb4bac87bb4e3022100b498e2a51af821e194a02eed2a638301a4324e72b16dc67ee5dbfd00c6a8b33c007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e300000168759613200000040300473045022100f2ad71529ce38dc902d74976810a747b6d3084ec8299177804fa8c6d4552266202205e33d086bdc1ba959f56a7f4bb0592cb2a4c71daabf210043976319ed9801861 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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