okta.surveymonkey.com
- SurveyMonkey Inc. -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 01:86:e5:39:33:58:cc:d3:82:72:8b:10:66:37:ba:cc was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
SurveyMonkey Inc.
Organization:
SurveyMonkey Inc.
State / Province:
California
Locality: Palo Alto
Country: US
Locality: Palo Alto
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:86:e5:39:33:58:cc:d3:82:72:8b:10:66:37:ba:ccSerial Number (int): 2029644978524170558161139428448778956
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: d6:4a:24:a0:b1:42:dc:ff:cc:c7:7b:24:91:b2:11:fc:83:55:04:2b
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 0b:d5:f8:1b:d7:d5:bd:05:0d:95:ec:b6:44:09:47:3c:c0:02:18:f7
Fingerprint (sha256): 1e:80:b6:bc:f3:3d:6b:d3:0f:b1:2a:2f:88:24:ea:3b:8a:31:77:21:01:e3:1c:7c:4a:74:52:15:9e:72:87:e7
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate okta.surveymonkey.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for okta.surveymonkey.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
okta.surveymonkey.com
Other certificates including the domain name surveymonkey.com
(limited to 100 certificates)
auth-dev-eu.surveymonkey.com
feedback.qualityhosting.de
e.ssl.fastly.net
auth-staging-us.surveymonkey.com
auth-staging-us.surveymonkey.com
go2.surveymonkey.com
*.surveymonkey.com
auth-dev-us.surveymonkey.com
smaudience.surveymonkey.com
styles.surveymonkey.com
survey.gradwell.com
auth-eu.surveymonkey.com
workplaceservices.surveymonkey.com
surveymonkey.map.fastly.net
*.outbound.surveymonkey.com
treehouse.surveymonkey.com
l.ssl.fastly.net
tls.automattic.com
auth-uat-eu.surveymonkey.com
auth-staging-us.surveymonkey.com
l.ssl.fastly.net
auth-eu.surveymonkey.com
scim.surveymonkey.com
sales.surveymonkey.com
*.flashpolling.com
survey.westernwindowsystems.com
auth-uat-us.surveymonkey.com
scim.surveymonkey.com
*.surveymonkey.com
leapfrog-ssl-10.gcs-web.com
supportsurvey.control4.com
auth-dev-us.surveymonkey.com
smartling.surveymonkey.com
surveys.myarg.com
*.domino.corp.surveymonkey.com
*.surveymonkey.com
auth-eu.surveymonkey.com
surveys.fredmangroup.com
auth-eu.surveymonkey.com
sales.surveymonkey.com
surveymonkey.com
auth-uat-eu.surveymonkey.com
surrogate.omegafamilysurrogates.com
*.flashpolling.com
cctld.surveymonkey.com
cctld.surveymonkey.com
auth-us.surveymonkey.com
scim.surveymonkey.com
styles.surveymonkey.com
auth-us.surveymonkey.com
tls.automattic.com
feedback.blackboardinsurance.com
smenterprise.surveymonkey.com
styles.surveymonkey.com
secure.surveymonkey.com
sales.surveymonkey.com
treehouse.surveymonkey.com
tls.automattic.com
www.surveymonkey.com
dns-vetting1.map.fastly.net
itsupport.surveymonkey.com
subdomains.surveymonkey.com
auth-staging-us.surveymonkey.com
auth-eu.surveymonkey.com
*.surveymonkey.com
*.e.ssl.fastly.net
scim.surveymonkey.com
cody-test.getgetfeedbackback.com
smainfo.surveymonkey.com
survey.faq.rakuten.net
auth-staging-eu.surveymonkey.com
auth-us.surveymonkey.com
surveymonkey.com
cx.surveymonkey.com
leapfrog-ssl-10.gcs-web.com
auth-uat-us.surveymonkey.com
scim.surveymonkey.com
sales.surveymonkey.com
go.surveymonkey.com
scim.surveymonkey.com
leapfrog-ssl-10.gcs-web.com
customerfeedback.surveymonkey.com
auth-dev-us.surveymonkey.com
surveymonkey.map.fastly.net
scim.surveymonkey.com
sales.surveymonkey.com
demo.engage.surveymonkey.com
surveymonkey.com
surveymonkey.com
auth-uat-us.surveymonkey.com
styles.surveymonkey.com
styles.surveymonkey.com
surveys.elkay.com
e.ssl.fastly.net
surveymonkey.map.fastly.net
certificates.getfeedback.com
eval.bts.com
view.e.surveymonkey.com
okta.surveymonkey.com
styles.surveymonkey.com
feedback.qualityhosting.de
e.ssl.fastly.net
auth-staging-us.surveymonkey.com
auth-staging-us.surveymonkey.com
go2.surveymonkey.com
*.surveymonkey.com
auth-dev-us.surveymonkey.com
smaudience.surveymonkey.com
styles.surveymonkey.com
survey.gradwell.com
auth-eu.surveymonkey.com
workplaceservices.surveymonkey.com
surveymonkey.map.fastly.net
*.outbound.surveymonkey.com
treehouse.surveymonkey.com
l.ssl.fastly.net
tls.automattic.com
auth-uat-eu.surveymonkey.com
auth-staging-us.surveymonkey.com
l.ssl.fastly.net
auth-eu.surveymonkey.com
scim.surveymonkey.com
sales.surveymonkey.com
*.flashpolling.com
survey.westernwindowsystems.com
auth-uat-us.surveymonkey.com
scim.surveymonkey.com
*.surveymonkey.com
leapfrog-ssl-10.gcs-web.com
supportsurvey.control4.com
auth-dev-us.surveymonkey.com
smartling.surveymonkey.com
surveys.myarg.com
*.domino.corp.surveymonkey.com
*.surveymonkey.com
auth-eu.surveymonkey.com
surveys.fredmangroup.com
auth-eu.surveymonkey.com
sales.surveymonkey.com
surveymonkey.com
auth-uat-eu.surveymonkey.com
surrogate.omegafamilysurrogates.com
*.flashpolling.com
cctld.surveymonkey.com
cctld.surveymonkey.com
auth-us.surveymonkey.com
scim.surveymonkey.com
styles.surveymonkey.com
auth-us.surveymonkey.com
tls.automattic.com
feedback.blackboardinsurance.com
smenterprise.surveymonkey.com
styles.surveymonkey.com
secure.surveymonkey.com
sales.surveymonkey.com
treehouse.surveymonkey.com
tls.automattic.com
www.surveymonkey.com
dns-vetting1.map.fastly.net
itsupport.surveymonkey.com
subdomains.surveymonkey.com
auth-staging-us.surveymonkey.com
auth-eu.surveymonkey.com
*.surveymonkey.com
*.e.ssl.fastly.net
scim.surveymonkey.com
cody-test.getgetfeedbackback.com
smainfo.surveymonkey.com
survey.faq.rakuten.net
auth-staging-eu.surveymonkey.com
auth-us.surveymonkey.com
surveymonkey.com
cx.surveymonkey.com
leapfrog-ssl-10.gcs-web.com
auth-uat-us.surveymonkey.com
scim.surveymonkey.com
sales.surveymonkey.com
go.surveymonkey.com
scim.surveymonkey.com
leapfrog-ssl-10.gcs-web.com
customerfeedback.surveymonkey.com
auth-dev-us.surveymonkey.com
surveymonkey.map.fastly.net
scim.surveymonkey.com
sales.surveymonkey.com
demo.engage.surveymonkey.com
surveymonkey.com
surveymonkey.com
auth-uat-us.surveymonkey.com
styles.surveymonkey.com
styles.surveymonkey.com
surveys.elkay.com
e.ssl.fastly.net
surveymonkey.map.fastly.net
certificates.getfeedback.com
eval.bts.com
view.e.surveymonkey.com
okta.surveymonkey.com
styles.surveymonkey.com
Certificate
The complete raw certificate details for okta.surveymonkey.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIQAYblOTNYzNOCcosQZje6zDANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMjAwMjIwMDAwMDAwWhcN MjExMjMxMTIwMDAwWjByMQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5p YTESMBAGA1UEBxMJUGFsbyBBbHRvMRowGAYDVQQKExFTdXJ2ZXlNb25rZXkgSW5j LjEeMBwGA1UEAxMVb2t0YS5zdXJ2ZXltb25rZXkuY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAtDD1KjXpQdnkTlbzcKJTmXd9eHEjvOb+0Wau3kff VqRdhAe7t3jSTSL/SHTVRci0DSGugEsmk+JLG4CW5dt/lnCaDB485WVimY3dpJFK J6BdS+GvURqb6UhlFuaMbJZZ/taikcknMBX67WGKhFqJIEew5PkPwDlNLgMNRay6 kTvrDA2j75Rv6hlIrjCwt5sHY0fUgCmIyZByDrUA1RcZsV6NeOYu6v3QKajyc1sq KYeUdhaF3ED1FLUx4HcYWjw2CMku3wbX4IEEenCn9+xLP4NXDzhao1TTY1/6hQ2Z LXqcHMO+BnaFuLj/HhdI2doyOerDS5HEVULsak53uM2iNwIDAQABo4IB8TCCAe0w HwYDVR0jBBgwFoAUD4BhHIIxYdUvKOeNRji0LOHG2eIwHQYDVR0OBBYEFNZKJKCx Qtz/zMd7JJGyEfyDVQQrMCAGA1UdEQQZMBeCFW9rdGEuc3VydmV5bW9ua2V5LmNv bTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zc2Nh LXNoYTItZzYuY3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc3Nj YS1zaGEyLWc2LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUF BwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB8Bggr BgEFBQcBAQRwMG4wJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNv bTBGBggrBgEFBQcwAoY6aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lD ZXJ0U0hBMlNlY3VyZVNlcnZlckNBLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB 1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAyXElausK5CgMNmCVpBo3o Q0JYgnQDt4M4ARYWnxMDFUrSQ5Ld6CGLKHlweErm/p09h5GpkFGbMnv3vfwUsbFz bn3aOS0zErgsVu5hfasonv5YvJnBDhhkpqtdZd+A3d0U4oWQ++j1KC1WoqlHB0+R Khu6i6r3fYhL2W5qPUJkLedgMfpSzE1BxjflzqyEP4ggqjiT9WOBlSy9v3TyZPCl iy96SQT56jWGbC1oUjb/IWoqyzKY7Pxuyt39MftEznfi5rT6Ix37R4QQdu4g3O1u ohazPcrOISKXL8ksfjY++6Rpq/GA4LzlaKGOQTHF7rSlZjTgfE7QP7/0AjtN6IuD -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDD1KjXpQdnkTlbzcKJT mXd9eHEjvOb+0Wau3kffVqRdhAe7t3jSTSL/SHTVRci0DSGugEsmk+JLG4CW5dt/ lnCaDB485WVimY3dpJFKJ6BdS+GvURqb6UhlFuaMbJZZ/taikcknMBX67WGKhFqJ IEew5PkPwDlNLgMNRay6kTvrDA2j75Rv6hlIrjCwt5sHY0fUgCmIyZByDrUA1RcZ sV6NeOYu6v3QKajyc1sqKYeUdhaF3ED1FLUx4HcYWjw2CMku3wbX4IEEenCn9+xL P4NXDzhao1TTY1/6hQ2ZLXqcHMO+BnaFuLj/HhdI2doyOerDS5HEVULsak53uM2i NwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2029644978524170558161139428448778956 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-31 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Palo Alto' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SurveyMonkey Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'okta.surveymonkey.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22747036823379040072604913461459195803994523203537810841222827737060974306131083727704869069838172274048921479108358347476939072131595264833159790566155339321099909885363033709150694959106047068736397087537683358700394880556346877565165732062707060219542374677351536253574435113248128552412201331998681115316375245487745537941567064280734401136406791972406542885151900099191504549977951422912936041151443537304474861072888766910003052821222741360369754812668123932657129957785111968003287952736005446379367981139392592782118435648723794077330825770840402367696211834495520797876689456360702200708944694003831571063351 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d64a24a0b142dcffccc77b2491b211fc8355042b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okta.surveymonkey.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00325c495abac2b90a030d982569068de8434258827403b783380116169f1303154ad24392dde8218b287970784ae6fe9d3d8791a990519b327bf7bdfc14b1b1736e7dda392d3312b82c56ee617dab289efe58bc99c10e1864a6ab5d65df80dddd14e28590fbe8f5282d56a2a947074f912a1bba8baaf77d884bd96e6a3d42642de76031fa52cc4d41c637e5ceac843f8820aa3893f56381952cbdbf74f264f0a58b2f7a4904f9ea35866c2d685236ff216a2acb3298ecfc6ecaddfd31fb44ce77e2e6b4fa231dfb47841076ee20dced6ea216b33dcace2122972fc92c7e363efba469abf180e0bce568a18e4131c5eeb4a56634e07c4ed03fbff4023b4de88b83