origin.group.bnpparibas
- BNP PARIBAS SA -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 42:d7:66:66:7e:a2:9b:5c:00:00:00:00:50:e1:d4:0b was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
BNP PARIBAS SA
Organization:
BNP PARIBAS SA
Locality:
Montreuil
Country: FR
Country: FR
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 42:d7:66:66:7e:a2:9b:5c:00:00:00:00:50:e1:d4:0bSerial Number (int): 88847468472633275361303348013667832843
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: f7:1c:ba:a2:99:55:11:3f:0e:9b:e9:93:21:68:89:63:83:b1:2c:e0
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): d8:22:a7:a7:f0:62:83:55:6b:82:24:90:b7:7a:f6:a1:7c:39:86:fd
Fingerprint (sha256): 1d:4e:4c:25:32:27:c4:c1:13:20:e7:2b:36:c8:15:be:bb:0c:4c:f7:4d:77:bc:52:73:4e:9a:ed:79:b3:80:3a
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate origin.group.bnpparibas
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for origin.group.bnpparibas
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
origin.group.bnpparibas
Other certificates including the domain name group.bnpparibas
(limited to 100 certificates)
group.bnpparibas.com
contrib-preprod-origin.group.bnpparibas
group.bnpparibas
cvcatcher.group.bnpparibas
group.bnpparibas
origin.group.bnpparibas
group.bnpparibas.com
cdn-preprod-origin.group.bnpparibas
origin.group.bnpparibas
origin.group.bnpparibas
contrib-preprod-origin.group.bnpparibas
group.bnpparibas.com
origin.group.bnpparibas
group.bnpparibas
group.bnpparibas
preprod-origin.group.bnpparibas
group.bnpparibas
ls.leasingsolutions.devp.api.group.bnpparibas
group.bnpparibas
sso-origin.group.bnpparibas
group.bnpparibas
cdn-preprod-origin.group.bnpparibas
matchmycv.group.bnpparibas
group.bnpparibas
group.bnpparibas.com
group.bnpparibas
preprod-origin.group.bnpparibas
contrib-preprod-origin.group.bnpparibas
group.bnpparibas.com
group.bnpparibas.com
www.group.bnpparibas
group.bnpparibas
contrib-preprod-origin.group.bnpparibas
www.group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
origin.group.bnpparibas
group.bnpparibas
group.bnpparibas
ls.leasingsolutions.devp.api.group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
cvcatcher.group.bnpparibas
contrib-preprod-origin.group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas.com
group.bnpparibas.com
mailhog.contrib-preprod-origin.group.bnpparibas
group.bnpparibas
sso-contrib-preprod-origin.group.bnpparibas
group.bnpparibas
contrib-preprod-origin.group.bnpparibas
contrib-preprod-origin.group.bnpparibas
group.bnpparibas
origin.group.bnpparibas
contrib-preprod-origin.group.bnpparibas
group.bnpparibas
cvcatcher.group.bnpparibas
group.bnpparibas
origin.group.bnpparibas
group.bnpparibas.com
cdn-preprod-origin.group.bnpparibas
origin.group.bnpparibas
origin.group.bnpparibas
contrib-preprod-origin.group.bnpparibas
group.bnpparibas.com
origin.group.bnpparibas
group.bnpparibas
group.bnpparibas
preprod-origin.group.bnpparibas
group.bnpparibas
ls.leasingsolutions.devp.api.group.bnpparibas
group.bnpparibas
sso-origin.group.bnpparibas
group.bnpparibas
cdn-preprod-origin.group.bnpparibas
matchmycv.group.bnpparibas
group.bnpparibas
group.bnpparibas.com
group.bnpparibas
preprod-origin.group.bnpparibas
contrib-preprod-origin.group.bnpparibas
group.bnpparibas.com
group.bnpparibas.com
www.group.bnpparibas
group.bnpparibas
contrib-preprod-origin.group.bnpparibas
www.group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
origin.group.bnpparibas
group.bnpparibas
group.bnpparibas
ls.leasingsolutions.devp.api.group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
cvcatcher.group.bnpparibas
contrib-preprod-origin.group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas
group.bnpparibas.com
group.bnpparibas.com
mailhog.contrib-preprod-origin.group.bnpparibas
group.bnpparibas
sso-contrib-preprod-origin.group.bnpparibas
group.bnpparibas
contrib-preprod-origin.group.bnpparibas
contrib-preprod-origin.group.bnpparibas
group.bnpparibas
origin.group.bnpparibas
Certificate
The complete raw certificate details for origin.group.bnpparibas in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHKzCCBhOgAwIBAgIQQtdmZn6im1wAAAAAUOHUCzANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x ODA0MTcwNjUyNTBaFw0yMDA0MTcwNzIyNDFaMFwxCzAJBgNVBAYTAkZSMRIwEAYD VQQHEwlNb250cmV1aWwxFzAVBgNVBAoTDkJOUCBQQVJJQkFTIFNBMSAwHgYDVQQD ExdvcmlnaW4uZ3JvdXAuYm5wcGFyaWJhczCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJ9u1alDdViVsJc9ISUUZ7xatvRXOkFbnySN4Fg2E7+TdJAh/7lZ 1lW0zjjCcQQCNceV0BAelQJovVru2cUEWGRHanpqK6ff2XtzB2oE2r+3rb22RCsg Uyt+yEie0abdsStLiLAtu43Ee0wdkse1d6U91vAbk5rv630HahDcfJ4kmYU+zoFy uHoOmqjDJq6LFCnDoXSMHTXGWGk4QeVGZnUaQEgGBWoeX+mgD3kjOoGIKjgsNMqA A8J0zioIq6i/pdfXddwQZDRP5trDZ+AxfzZOvsL4EyRh9Wmz8LvDrwhKdaSWNFjS JT3fH1GJj0VxfymdGH3tu18L4vJe1VApaZ0CAwEAAaOCA4gwggOEMCIGA1UdEQQb MBmCF29yaWdpbi5ncm91cC5ibnBwYXJpYmFzMIIB9gYKKwYBBAHWeQIEAgSCAeYE ggHiAeAAdwBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAWLSfBqh AAAEAwBIMEYCIQDWVgEQrlXvslg8MltM6lj4w4MwKla1YONjOZZLDJMlogIhAMfO f8MC7tddJLa61fwRFmg/s2joMyq2w8VHJyRg9v8EAHYA3esdK3oNT6Ygi4GtgWhw fi6OnQHVXIiNPRHEzbbsvswAAAFi0nwadwAABAMARzBFAiAw/pyT1HLZiY65oD3i BMUyH+kWw0lMy0MaYdrP7BzXsQIhAPrgikNRoLzGNrOC9Rg8DHfT9c75sxj1Ui3z F+loBVzHAHYAVhQGmi/XwuzT9eG9RLI+x0Z2ubyZEVzA75SYVdaJ0N0AAAFi0nwb FAAABAMARzBFAiB2t5EsrkM4yhGxc68f+n0qppTYxDwJjwsTRnnN9d9z+wIhAIy0 Qz24sFKR1QlpMIYXQhGd4lM4aCUI69QvZl2OaleUAHUAu9nfvB+KcbWTlCOXqpJ7 RzhXlQqrUugakJZkNo4e0YUAAAFi0nwcOQAABAMARjBEAiAjtWw8Fou020tI0uy7 7RpGaozx9JKPPuXMVvhMmDviEQIgKXl5gMoRY8jbuBtYjABcRYxfT4jhFRsgLNtO plNsm3MwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLmVudHJ1c3QubmV0L2xl dmVsMWsuY3JsMEsGA1UdIAREMEIwNgYKYIZIAYb6bAoBBTAoMCYGCCsGAQUFBwIB FhpodHRwOi8vd3d3LmVudHJ1c3QubmV0L3JwYTAIBgZngQwBAgIwaAYIKwYBBQUH AQEEXDBaMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAzBggr BgEFBQcwAoYnaHR0cDovL2FpYS5lbnRydXN0Lm5ldC9sMWstY2hhaW4yNTYuY2Vy MB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU981/p2DGCky/MB0GA1UdDgQWBBT3HLqi mVURPw6b6ZMhaIljg7Es4DAJBgNVHRMEAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQCy JPzSNyMaTsWh2So/vz0lyBi2lAWiWLwlapXW7n761+CcjYysQgEAOP1WvtsTCFwb aRkWSjhSObXEVw5xGK26HBqOiIK/mD1CXVtQGpZ4QDbitRc1MJuJDQOIXK3MCVcU wZxcgmGQECW0y3+DVcsjdf/OL28rf6K14ygQmQxkmbrLVYWHJiRc2wjbw/S0/zky LhGG84d909K/4oQGru3Cj7QVh1QcifGiRKvBUYtpI2KfUGYrsDCdCo7lIXRlk62t ILDo0pmun6+2deMxg0wQeuFKAG5EwfotF8/uKB9GV6OEY7FvraL5cPdUI3GzD+EV xt5D07VSKur4sDvTMdCt -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn27VqUN1WJWwlz0hJRRn vFq29Fc6QVufJI3gWDYTv5N0kCH/uVnWVbTOOMJxBAI1x5XQEB6VAmi9Wu7ZxQRY ZEdqemorp9/Ze3MHagTav7etvbZEKyBTK37ISJ7Rpt2xK0uIsC27jcR7TB2Sx7V3 pT3W8BuTmu/rfQdqENx8niSZhT7OgXK4eg6aqMMmrosUKcOhdIwdNcZYaThB5UZm dRpASAYFah5f6aAPeSM6gYgqOCw0yoADwnTOKgirqL+l19d13BBkNE/m2sNn4DF/ Nk6+wvgTJGH1abPwu8OvCEp1pJY0WNIlPd8fUYmPRXF/KZ0Yfe27Xwvi8l7VUClp nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 88847468472633275361303348013667832843 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-17 06:52:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-17 07:22:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montreuil' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BNP PARIBAS SA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'origin.group.bnpparibas' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20126545074774055757879286563236201452373115634036650364099866269004374340264855669138293485209227390381830518995197990676574545207366199239495487593359320466688669712945292110806313577951963204238987768515130085646708352436392760158941354367678219939681249824765553375351968078844392817321788407101139000047294058251232419699745392288171199845651689314836142761900514131919217973134192467203720185688834698421272714228167472498219555711489557134616064846904667682750161890123881852116726645018712985850050587615737848893143000712807490691395277233130827941059537292702940058483595828122569196577446392259446850546077 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin.group.bnpparibas' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f71cbaa29955113f0e9be9932168896383b12ce0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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