sightline.mpac.ca
- Municipal Property Assessment Corporation -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 92:2b:59:62:ef:dc:77:3b:00:00:00:00:50:e1:88:36 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Municipal Property Assessment Corporation
Organization:
Municipal Property Assessment Corporation
Organization unit: Information Technology
Organization unit: Information Technology
State / Province:
Ontario
Locality: Pickering
Country: CA
Locality: Pickering
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 92:2b:59:62:ef:dc:77:3b:00:00:00:00:50:e1:88:36Serial Number (int): 194292369122562810506141509297417324598
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 74:b0:b7:68:cb:36:62:b7:b6:46:d9:3e:20:22:6d:11:38:d5:49:83
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): bc:e0:09:8f:40:da:9e:55:87:75:93:60:d3:17:41:30:13:dd:47:11
Fingerprint (sha256): 1d:3f:51:dd:49:c1:53:cb:7c:b1:38:dd:81:73:ef:29:ce:2f:c6:eb:f1:93:14:5a:a4:5f:61:41:c9:cd:53:41
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate sightline.mpac.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sightline.mpac.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sightline.mpac.ca
www.sightline.mpac.ca
www.sightline.mpac.ca
Other certificates including the domain name mpac.ca
(limited to 100 certificates)
*.aws.mpac.ca
it.oodc.com.ph
servicesdev.mpac.ca
b2buat.mpac.ca
*.aws.mpac.ca
soporte.cjgconsultores.com
support.akylade.com
acs-online.mpac.ca
it-helpdesk.hccom.org
guestportal.mpac.ca
*.aws.mpac.ca
it.oodc.com.ph
*.aws.mpac.ca
it.oodc.com.ph
services.mpac.ca
*.aws.mpac.ca
*.aws.mpac.ca
desk.mpac.ca
*.aws.mpac.ca
adfs.mpac.ca
*.aws.mpac.ca
b2b.data.mpac.ca
it.oodc.com.ph
services.mpac.ca
servicedesk.aws.mpac.ca
mpac.prd.mpac.ca
it.oodc.com.ph
it.oodc.com.ph
help.bookfocal.com
guestportal.mpac.ca
support.spidercost.com
help.tradetechnica.com
apps.mpac.ca
*.aws.mpac.ca
quiz.apexstrategygroup.org
*.aws.mpac.ca
b2b.data.mpac.ca
ra.mpac.ca
*.aws.mpac.ca
support.cosmicktechnologies.com
it.oodc.com.ph
apps2.mpac.ca
support.cosmicktechnologies.com
instream.mpac.ca
*.aws.mpac.ca
support.cosmicktechnologies.com
it.oodc.com.ph
support.orly.com
blackduck.aws.mpac.ca
helpdesk.al-mozon.com
api-acs-online.mpac.ca
support.45z.net
casper.mpac.ca
b2b.web.mpac.ca
helpdesk.ie-launch.com
help.tradetechnica.com
mgmttun.mpac.ca
support.thebestclaims.com
sightline.mpac.ca
b2b.web.mpac.ca
*.aws.mpac.ca
it.oodc.com.ph
servicesdev.mpac.ca
support.cosmicktechnologies.com
survey.makusafe.com
sclearpasslab.prd.mpac.ca
www.mpac.ca
it.oodc.com.ph
it.oodc.com.ph
*.k8s.mpac.ca
servicesuat.mpac.ca
support.foodaccessportal.org
apps2.mpac.ca
ClarityConnect.mpac.ca
mpac.ca
*.aws.mpac.ca
www.axi.sierraleone.mpac.ca
aws.mpac.ca
test1.mpac.ca
aaa.mpac.ca
sap-ec-npr-02.prd.mpac.ca
support.45z.net
annualreport.mpac.ca
apps2.mpac.ca
support.cosmicktechnologies.com
support.cosmicktechnologies.com
guestportal.mpaclab.net
anyconnect.mpac.ca
*.aws.mpac.ca
it.oodc.com.ph
sap-ec-prd-01.prd.mpac.ca
guestportal.mpac.ca
it.tnsos.help
it-helpdesk.hccom.org
webtrends.mpac.ca
api-acs-online1.mpac.ca
mpac.ca
servicedesk.mpac.ca
lync01.um.mpac.ca
portal.mpac.ca
it.oodc.com.ph
servicesdev.mpac.ca
b2buat.mpac.ca
*.aws.mpac.ca
soporte.cjgconsultores.com
support.akylade.com
acs-online.mpac.ca
it-helpdesk.hccom.org
guestportal.mpac.ca
*.aws.mpac.ca
it.oodc.com.ph
*.aws.mpac.ca
it.oodc.com.ph
services.mpac.ca
*.aws.mpac.ca
*.aws.mpac.ca
desk.mpac.ca
*.aws.mpac.ca
adfs.mpac.ca
*.aws.mpac.ca
b2b.data.mpac.ca
it.oodc.com.ph
services.mpac.ca
servicedesk.aws.mpac.ca
mpac.prd.mpac.ca
it.oodc.com.ph
it.oodc.com.ph
help.bookfocal.com
guestportal.mpac.ca
support.spidercost.com
help.tradetechnica.com
apps.mpac.ca
*.aws.mpac.ca
quiz.apexstrategygroup.org
*.aws.mpac.ca
b2b.data.mpac.ca
ra.mpac.ca
*.aws.mpac.ca
support.cosmicktechnologies.com
it.oodc.com.ph
apps2.mpac.ca
support.cosmicktechnologies.com
instream.mpac.ca
*.aws.mpac.ca
support.cosmicktechnologies.com
it.oodc.com.ph
support.orly.com
blackduck.aws.mpac.ca
helpdesk.al-mozon.com
api-acs-online.mpac.ca
support.45z.net
casper.mpac.ca
b2b.web.mpac.ca
helpdesk.ie-launch.com
help.tradetechnica.com
mgmttun.mpac.ca
support.thebestclaims.com
sightline.mpac.ca
b2b.web.mpac.ca
*.aws.mpac.ca
it.oodc.com.ph
servicesdev.mpac.ca
support.cosmicktechnologies.com
survey.makusafe.com
sclearpasslab.prd.mpac.ca
www.mpac.ca
it.oodc.com.ph
it.oodc.com.ph
*.k8s.mpac.ca
servicesuat.mpac.ca
support.foodaccessportal.org
apps2.mpac.ca
ClarityConnect.mpac.ca
mpac.ca
*.aws.mpac.ca
www.axi.sierraleone.mpac.ca
aws.mpac.ca
test1.mpac.ca
aaa.mpac.ca
sap-ec-npr-02.prd.mpac.ca
support.45z.net
annualreport.mpac.ca
apps2.mpac.ca
support.cosmicktechnologies.com
support.cosmicktechnologies.com
guestportal.mpaclab.net
anyconnect.mpac.ca
*.aws.mpac.ca
it.oodc.com.ph
sap-ec-prd-01.prd.mpac.ca
guestportal.mpac.ca
it.tnsos.help
it-helpdesk.hccom.org
webtrends.mpac.ca
api-acs-online1.mpac.ca
mpac.ca
servicedesk.mpac.ca
lync01.um.mpac.ca
portal.mpac.ca
Certificate
The complete raw certificate details for sightline.mpac.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIRAJIrWWLv3Hc7AAAAAFDhiDYwDQYJKoZIhvcNAQELBQAw gboxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMSgwJgYDVQQL Ex9TZWUgd3d3LmVudHJ1c3QubmV0L2xlZ2FsLXRlcm1zMTkwNwYDVQQLEzAoYykg MjAxMiBFbnRydXN0LCBJbmMuIC0gZm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxLjAs BgNVBAMTJUVudHJ1c3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgLSBMMUswHhcN MTgwNDA2MjAwNzIzWhcNMTkwNDA2MjAzNzIyWjCBpDELMAkGA1UEBhMCQ0ExEDAO BgNVBAgTB09udGFyaW8xEjAQBgNVBAcTCVBpY2tlcmluZzEyMDAGA1UEChMpTXVu aWNpcGFsIFByb3BlcnR5IEFzc2Vzc21lbnQgQ29ycG9yYXRpb24xHzAdBgNVBAsT FkluZm9ybWF0aW9uIFRlY2hub2xvZ3kxGjAYBgNVBAMTEXNpZ2h0bGluZS5tcGFj LmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA245BqwbdNI1zIdtU 9dYN/lE6QlaYM9phnB/5/pb67gEiZ0i9UcRKeApp7iMnhYPpK7eU475QdQSRK003 wDL8ZgHApchUei/Bsh7AzA3ry2TGj1fmqDEh5ldFJ7Xy8R8uz72lQt+RrNwwjjb6 /CVJZ1d5i5GN0U+3FGw9GhtkzlevTNCSP9Iv6aHs1zxKwyKHmi8W/9xtm64mUpoQ WVeDD9oyXt1TmbR9MtmZQVNrcQKL2PJdJph9FUjXGT+sy0tCnHOp13oraex/tNeq ZG1T0YeLPA+Sao9EyhNKzMo99X4puUSY/dNN4UBOpu5A9o3s6nV2TXewwWvQSeQm G1ZDOwIDAQABo4IDITCCAx0wMwYDVR0RBCwwKoIRc2lnaHRsaW5lLm1wYWMuY2GC FXd3dy5zaWdodGxpbmUubXBhYy5jYTCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFo AHYAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAFinK2U1wAABAMA RzBFAiEAvoEfYHIlE7m5/obLvNKEL3ypIFNqlFWBNUxOY7GHDfYCIE7F8s0kvk11 fB+g1kwbwN/PLk35iCMw61+EbbUbooMDAHYApLkJkLQYWBSHuxOizGdwCjw1mAT5 G9+443fNDsgN3BAAAAFinK2U9AAABAMARzBFAiEAjzQO8KwgYJElQlfXV8yC4rda ObztOKOT/6Ie2b8evUQCIExOl+CFkuyJalKZrc8/wGHlxdL2Nr/9inAbJ/vHojuH AHYAVhQGmi/XwuzT9eG9RLI+x0Z2ubyZEVzA75SYVdaJ0N0AAAFinK2VOwAABAMA RzBFAiEA1lzmivKJTrnzEERBkSKom5RckfCmvgfuFhuEXZC1CA8CIFjRHFYXOMzy O1LKHk1Xxuv50TRerRACr87ZL6Lc7S9NMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwMwYDVR0fBCwwKjAooCagJIYiaHR0cDov L2NybC5lbnRydXN0Lm5ldC9sZXZlbDFrLmNybDBLBgNVHSAERDBCMDYGCmCGSAGG +mwKAQUwKDAmBggrBgEFBQcCARYaaHR0cDovL3d3dy5lbnRydXN0Lm5ldC9ycGEw CAYGZ4EMAQICMGgGCCsGAQUFBwEBBFwwWjAjBggrBgEFBQcwAYYXaHR0cDovL29j c3AuZW50cnVzdC5uZXQwMwYIKwYBBQUHMAKGJ2h0dHA6Ly9haWEuZW50cnVzdC5u ZXQvbDFrLWNoYWluMjU2LmNlcjAfBgNVHSMEGDAWgBSConB03bxTP8971PfNf6dg xgpMvzAdBgNVHQ4EFgQUdLC3aMs2Yre2Rtk+ICJtETjVSYMwCQYDVR0TBAIwADAN BgkqhkiG9w0BAQsFAAOCAQEAuw+E9fzw1RijW+Hp2p5nFGdmknNNH7DSMlPkb1jI PYedJv7ix9uIREvzyKsdz93/iSf2bOM7SVsKV0cs6QdE9Ys3X3UctZXo3QuO4p2J A95kFImjRGqEZ+J3p7uZBr9rLFz6ozQbmQ50+BILewhH+RvztCGiF9e1xOnoryaG Fx6URgZNJVZBHnKFCkqlxkalhGyrbWwNn3USQMx9fVoN8lSzGuHB/nqO5/GLlQK1 jxQupYemSeRTJ5WiWxQFtmdWAyxHcz/NRAWtmSkDCfEHdPtnnNr3VtdlKdxm7G00 PKdDsSd7nX0v6IQAzO9qe3xL8WXS8QKhpaXnFv+0afj2Zg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA245BqwbdNI1zIdtU9dYN /lE6QlaYM9phnB/5/pb67gEiZ0i9UcRKeApp7iMnhYPpK7eU475QdQSRK003wDL8 ZgHApchUei/Bsh7AzA3ry2TGj1fmqDEh5ldFJ7Xy8R8uz72lQt+RrNwwjjb6/CVJ Z1d5i5GN0U+3FGw9GhtkzlevTNCSP9Iv6aHs1zxKwyKHmi8W/9xtm64mUpoQWVeD D9oyXt1TmbR9MtmZQVNrcQKL2PJdJph9FUjXGT+sy0tCnHOp13oraex/tNeqZG1T 0YeLPA+Sao9EyhNKzMo99X4puUSY/dNN4UBOpu5A9o3s6nV2TXewwWvQSeQmG1ZD OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 194292369122562810506141509297417324598 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-06 20:07:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-06 20:37:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pickering' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Municipal Property Assessment Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sightline.mpac.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27716338090063384050392016836680034864450574182449961507558576450362901359688743790147315254685021318084435323211226432598487862742548004100330070100772779554793123448525443743569731297171609450526829944871038029010008534271372967284505907812228155082513692704018719227830686172490115219225743988475246677475941448335559170197604844437578338007596491488480199441232725580173945881558880297114216742740661306104482612795237198235856053342021100956135977252222532886470299992333136749551784779817497936151297229226833345970157693275041922579442817759757899291809170810031813527913878420408586319866364956540706244412219 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sightline.mpac.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sightline.mpac.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 74b0b768cb3662b7b646d93e20226d1138d54983 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00bb0f84f5fcf0d518a35be1e9da9e6714676692734d1fb0d23253e46f58c83d879d26fee2c7db88444bf3c8ab1dcfddff8927f66ce33b495b0a57472ce90744f58b375f751cb595e8dd0b8ee29d8903de641489a3446a8467e277a7bb9906bf6b2c5cfaa3341b990e74f8120b7b0847f91bf3b421a217d7b5c4e9e8af2686171e9446064d2556411e72850a4aa5c646a5846cab6d6c0d9f751240cc7d7d5a0df254b31ae1c1fe7a8ee7f18b9502b58f142ea587a649e4532795a25b1405b66756032c47733fcd4405ad99290309f10774fb679cdaf756d76529dc66ec6d343ca743b1277b9d7d2fe88400ccef6a7b7c4bf165d2f102a1a5a5e716ffb469f8f666