*.innovateuk.org
- The Technology Strategy Board -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0b:27:34:c3:0b:03:2f:4b:9c:ac:db:c7:4c:8f:56:4c was issued on by DigiCert Inc.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The Technology Strategy Board
Organization:
The Technology Strategy Board
State / Province:
Wiltshire
Locality: Swindon
Country: GB
Locality: Swindon
Country: GB
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:27:34:c3:0b:03:2f:4b:9c:ac:db:c7:4c:8f:56:4cSerial Number (int): 14825077669316198279376223078039115340
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 36:66:e4:0c:55:e8:71:da:53:9b:97:c5:4c:47:db:72:78:5c:66:16
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): 32:c2:e0:21:d9:ac:e0:f9:54:11:23:20:5a:0d:26:04:a2:03:88:2f
Fingerprint (sha256): 1c:6b:e5:47:7a:b8:7b:52:45:c7:85:aa:9d:74:bc:2b:65:95:af:ff:b2:04:ac:b8:50:06:7f:65:e2:7e:b9:bc
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g5.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g5.crl
Check the revocation status for certificate *.innovateuk.org
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.innovateuk.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.innovateuk.org
innovateuk.org
ifs.prod.innovateuk.org
assessor.ifs.prod.innovateuk.org
auth.prod.innovateuk.org
innovateuk.org
ifs.prod.innovateuk.org
assessor.ifs.prod.innovateuk.org
auth.prod.innovateuk.org
Other certificates including the domain name innovateuk.org
(limited to 100 certificates)
datavis.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aem.devops.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
aem.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
engage.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
images.info.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
govboard.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aem.devops.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
aem.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
engage.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
images.info.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
govboard.innovateuk.org
Certificate
The complete raw certificate details for *.innovateuk.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGwTCCBamgAwIBAgIQCyc0wwsDL0ucrNvHTI9WTDANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNTAyMTcwMDAwMDBaFw0xNjA0MjkxMjAwMDBa MHYxCzAJBgNVBAYTAkdCMRAwDgYDVQQHEwdTd2luZG9uMRIwEAYDVQQIEwlXaWx0 c2hpcmUxJjAkBgNVBAoTHVRoZSBUZWNobm9sb2d5IFN0cmF0ZWd5IEJvYXJkMRkw FwYDVQQDDBAqLmlubm92YXRldWsub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEA4ZN9rxXzM3FHHvArcUx1DoQUBQrUTMdQuoi4ZEUEu/F+4MGuaSjl D4w82f78oryi5/Busom80ivTa0WwnzhkrUbkVZU18vKWY62ZD6SHiLtMf1FUqJqD YQM1gWTkCW8bScAvIRVGlZlpQjjuLE775RTpDOvEhzx0xzttmL8ohPrndc2JgRkO GhBalf1gcI3j2ViDbkQD252RRhLUYK3lO6dsWtJYD/G3m3eyQQRGwZYEdO+TXeSy 4GgCWIcMX4LWgg3z4AWuAGrpzQSKaOeEez9lFdMImuQm6VBGg/m/Z9Mar8WN2bLz DIMBBD3OB7+dUiWtmwBqUFS1PtUWZXCNXGJVljTMJcfSzZJycQOF22VwcGprd+WF CF4sj1ixuF+nkFOy+ZBOsPZvyLsFairJJkCXP+4ocn0mHUj8L0RNpLu9aRzkM61U 1uR8Dphm/DqXPJI7i0kJclrMsXOR55FN2fqRBD+ArE+A5/2JoJu+Xgqjb4tB/Pwb bg2ajAAp1fzYcw+JgAn4vsXwoWsX6IZR2DEeKUWQ8h8JKJ+fpntMdlTDx8SPsNsR RSHDFPlQ6uPNAF6YqFx9VC69rmxqgqIIYysrQuzt9ZVmUktdrzGAsEoQ0gtUbZ6Y tWOjioe78ZBBuxS7PfLsRMsjYBGF/TP3L/H6zR3WpH+aGrt/j3rdO0MCAwEAAaOC Ak8wggJLMB8GA1UdIwQYMBaAFFFo/5CvAgd1PMzZZWRiohK4WXI7MB0GA1UdDgQW BBQ2ZuQMVehx2lObl8VMR9tyeFxmFjCBgAYDVR0RBHkwd4IQKi5pbm5vdmF0ZXVr Lm9yZ4IOaW5ub3ZhdGV1ay5vcmeCF2lmcy5wcm9kLmlubm92YXRldWsub3JngiBh c3Nlc3Nvci5pZnMucHJvZC5pbm5vdmF0ZXVrLm9yZ4IYYXV0aC5wcm9kLmlubm92 YXRldWsub3JnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwdQYDVR0fBG4wbDA0oDKgMIYuaHR0cDovL2NybDMuZGlnaWNlcnQu Y29tL3NoYTItaGEtc2VydmVyLWc1LmNybDA0oDKgMIYuaHR0cDovL2NybDQuZGln aWNlcnQuY29tL3NoYTItaGEtc2VydmVyLWc1LmNybDBMBgNVHSAERTBDMDcGCWCG SAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20v Q1BTMAgGBmeBDAECAjCBgwYIKwYBBQUHAQEEdzB1MCQGCCsGAQUFBzABhhhodHRw Oi8vb2NzcC5kaWdpY2VydC5jb20wTQYIKwYBBQUHMAKGQWh0dHA6Ly9jYWNlcnRz LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJIaWdoQXNzdXJhbmNlU2VydmVyQ0Eu Y3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggEBAH25Q8+GcPuvnpsJ iihPnVrzxap87z0+brgHWQiB9/GY3/I8qg6X9mhN0gb4HVmk/8q/+2wQaNiFRa/V FYkELiu/Aj0k1bojYst2yd9vCzSDQ+hqVDPNyAQKf6JoPfTaROvF1IRi6DZJDaOg RK4bmiLsEBkVsUOtgTmlQfWJo/rulWzZq4nda2nIb873XT8maaMT3OBr2fJFrRwp 68Uc6YD/x+kbwMcFcDLE0zJ09fqxuK2YKldnpCx0809Fxy0EOHQkSvV7N484NDWT hpIc0/RzxNAqF/bsAYmBsgT8rG84OdbG2TO3PSZF3oSLST16QLP+YHmxgqYYcmge fs8/FQU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4ZN9rxXzM3FHHvArcUx1 DoQUBQrUTMdQuoi4ZEUEu/F+4MGuaSjlD4w82f78oryi5/Busom80ivTa0Wwnzhk rUbkVZU18vKWY62ZD6SHiLtMf1FUqJqDYQM1gWTkCW8bScAvIRVGlZlpQjjuLE77 5RTpDOvEhzx0xzttmL8ohPrndc2JgRkOGhBalf1gcI3j2ViDbkQD252RRhLUYK3l O6dsWtJYD/G3m3eyQQRGwZYEdO+TXeSy4GgCWIcMX4LWgg3z4AWuAGrpzQSKaOeE ez9lFdMImuQm6VBGg/m/Z9Mar8WN2bLzDIMBBD3OB7+dUiWtmwBqUFS1PtUWZXCN XGJVljTMJcfSzZJycQOF22VwcGprd+WFCF4sj1ixuF+nkFOy+ZBOsPZvyLsFairJ JkCXP+4ocn0mHUj8L0RNpLu9aRzkM61U1uR8Dphm/DqXPJI7i0kJclrMsXOR55FN 2fqRBD+ArE+A5/2JoJu+Xgqjb4tB/Pwbbg2ajAAp1fzYcw+JgAn4vsXwoWsX6IZR 2DEeKUWQ8h8JKJ+fpntMdlTDx8SPsNsRRSHDFPlQ6uPNAF6YqFx9VC69rmxqgqII YysrQuzt9ZVmUktdrzGAsEoQ0gtUbZ6YtWOjioe78ZBBuxS7PfLsRMsjYBGF/TP3 L/H6zR3WpH+aGrt/j3rdO0MCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14825077669316198279376223078039115340 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-02-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-04-29 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Swindon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wiltshire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Technology Strategy Board' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.innovateuk.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 920270347300100777803084332677407966159490363789199079104963907287788131734449528723044486271973180395212932091022292394373986335978447898361960207139659817806926129027118671125728183884985038177349342220384269120582728203837597460431268984638483357844409060876668573396628261609157486909779998461532105542030829404661633757092069447503340795741345523535267234997374632747341094484996648589836708633788682874488073205733474878532977646129662800320929962008047746598480590655319997335097734377635518001874241707071470811158503134886201094113229203390546295200222492144141943207475990512909597658879650249528260514983989028581952623155680881103790538385300594246048887803962015140102063286653911740149297449023648944468534633510958028661005416895136265668884161864393909150292568725569857337965622830305913358423410832935206913003327694551351070991271573468999629233165633425596019879026513217748160263909532489113856803159770498273830921078414269886198184797244589801620362490837883574315626892229913019044332964379991997953454626362425782732024883230963974579139182692992206136862509550810732126305060742552808282086384873685209052848731639831808564523991264330026028240709430274807230802644080532599630771839329836156160599375297347 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3666e40c55e871da539b97c54c47db72785c6616 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.innovateuk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'innovateuk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ifs.prod.innovateuk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assessor.ifs.prod.innovateuk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auth.prod.innovateuk.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g5.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g5.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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