www.bannerbank.com
- Banner Bank -
Issued by GeoTrust TLS RSA CA G1
About this certificate
This digital certificate with serial number 08:28:c6:2b:48:d9:c3:53:0a:8c:5e:fc:2c:75:4c:5b was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Banner Bank
Company registration number:
601 506 345
Organization: Banner Bank
Organization unit: IT
Organization: Banner Bank
Organization unit: IT
State / Province:
Washington
Locality: Walla Walla
Country: US
Locality: Walla Walla
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:28:c6:2b:48:d9:c3:53:0a:8c:5e:fc:2c:75:4c:5bSerial Number (int): 10845535187079411235779358465650412635
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 53:82:a5:88:62:5e:19:8e:39:b9:b6:a7:59:8d:a0:1c:05:2f:72:7f
AuthorityKeyId: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57
Fingerprint (sha1): 5a:81:ac:a2:df:c1:00:ad:b7:58:28:95:de:31:0d:11:e6:52:e1:79
Fingerprint (sha256): 1f:46:4c:e3:77:4d:51:de:5f:49:43:05:62:09:ca:1e:60:c3:8a:30:62:5b:96:cb:fc:2e:9e:4f:e1:dd:e7:49
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
Check the revocation status for certificate www.bannerbank.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.bannerbank.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.bannerbank.com
bannerbank.com
bannerbank.com
Other certificates including the domain name bannerbank.com
(limited to 100 certificates)
cashanalytics.bannerbank.com
conference.bannerbank.com
adfs-signing-adfs.bannerbank.com
myconference.bannerbank.com
www.bannerbank.com
www.bannerbank.com
uatux.bannerbank.com
promotions.bannerbank.com
san4.yext-cdn.com
qa.bannerbank.com
mailsecure.bannerbank.com
edit.bannerbank.com
edit.bannerbank.com
locations.bannerbank.com
san4.yext-cdn.com
secure.bannerbank.com
qa.bannerbank.com
san4.yext-cdn.com
agent.travelers.com
gateway.bannerbank.com
*.bannerbank.com
adfs-encryption-adfs.bannerbank.com
mailsecure.bannerbank.com
gateway.bannerbank.com
qa.bannerbank.com
san4.yext-cdn.com
mailsecure.bannerbank.com
www.bannerbank.com
qa.bannerbank.com
obb.bannerbank.com
qa.bannerbank.com
locations.bannerbank.com
mailsecure.bannerbank.com
secure.bannerbank.com
secure.bannerbank.com
agent.travelers.com
edit.bannerbank.com
qaedit.bannerbank.com
vpn.bannerbank.com
securefiles.bannerbank.com
qa.bannerbank.com
mailsecure.bannerbank.com
san4.yext-cdn.com
www.bannerbank.com
locations.bannerbank.com
*.dmz.bannerbank.com
*.dmz.bannerbank.com
*.bannerbank.com
mailsecure.bannerbank.com
obb.bannerbank.com
secure.bannerbank.com
edit.bannerbank.com
denali.bannerbank.com
uat.bannerbank.com
locations.bannerbank.com
estatements.bannerbank.com
qaedit.bannerbank.com
san4.yext-cdn.com
web1.bannerbank.com
myconference.bannerbank.com
secure.bannerbank.com
uatedit.bannerbank.com
san4.yext-cdn.com
gateway.bannerbank.com
internationalfx.bannerbank.com
securemail.bannerbank.com
edit.bannerbank.com
uat.bannerbank.com
www.bannerbank.com
san4.yext-cdn.com
locations.bannerbank.com
answers-embed.hsi.pagescdn.com
securefiles.bannerbank.com
webmail.bannerbank.com
locations.bannerbank.com
san4.yext-cdn.com
local.pharmacy.safeway.com
gateway.bannerbank.com
web2.bannerbank.com
secure.bannerbank.com
www.bannerbank.com
securefiles.bannerbank.com
www.bannerbank.com
edit.bannerbank.com
local.oldsecond.com
mygateway.bannerbank.com
edit.bannerbank.com
obb.bannerbank.com
local.pharmacy.safeway.com
qaux.bannerbank.com
web2.bannerbank.com
store-events.louandgrey.com
mailsecure.bannerbank.com
uatedit.bannerbank.com
san4.yext-cdn.com
web2.bannerbank.com
assistant.bannerbank.com
estatements.bannerbank.com
securefiles.bannerbank.com
covalent-notifications.bannerbank.com
conference.bannerbank.com
adfs-signing-adfs.bannerbank.com
myconference.bannerbank.com
www.bannerbank.com
www.bannerbank.com
uatux.bannerbank.com
promotions.bannerbank.com
san4.yext-cdn.com
qa.bannerbank.com
mailsecure.bannerbank.com
edit.bannerbank.com
edit.bannerbank.com
locations.bannerbank.com
san4.yext-cdn.com
secure.bannerbank.com
qa.bannerbank.com
san4.yext-cdn.com
agent.travelers.com
gateway.bannerbank.com
*.bannerbank.com
adfs-encryption-adfs.bannerbank.com
mailsecure.bannerbank.com
gateway.bannerbank.com
qa.bannerbank.com
san4.yext-cdn.com
mailsecure.bannerbank.com
www.bannerbank.com
qa.bannerbank.com
obb.bannerbank.com
qa.bannerbank.com
locations.bannerbank.com
mailsecure.bannerbank.com
secure.bannerbank.com
secure.bannerbank.com
agent.travelers.com
edit.bannerbank.com
qaedit.bannerbank.com
vpn.bannerbank.com
securefiles.bannerbank.com
qa.bannerbank.com
mailsecure.bannerbank.com
san4.yext-cdn.com
www.bannerbank.com
locations.bannerbank.com
*.dmz.bannerbank.com
*.dmz.bannerbank.com
*.bannerbank.com
mailsecure.bannerbank.com
obb.bannerbank.com
secure.bannerbank.com
edit.bannerbank.com
denali.bannerbank.com
uat.bannerbank.com
locations.bannerbank.com
estatements.bannerbank.com
qaedit.bannerbank.com
san4.yext-cdn.com
web1.bannerbank.com
myconference.bannerbank.com
secure.bannerbank.com
uatedit.bannerbank.com
san4.yext-cdn.com
gateway.bannerbank.com
internationalfx.bannerbank.com
securemail.bannerbank.com
edit.bannerbank.com
uat.bannerbank.com
www.bannerbank.com
san4.yext-cdn.com
locations.bannerbank.com
answers-embed.hsi.pagescdn.com
securefiles.bannerbank.com
webmail.bannerbank.com
locations.bannerbank.com
san4.yext-cdn.com
local.pharmacy.safeway.com
gateway.bannerbank.com
web2.bannerbank.com
secure.bannerbank.com
www.bannerbank.com
securefiles.bannerbank.com
www.bannerbank.com
edit.bannerbank.com
local.oldsecond.com
mygateway.bannerbank.com
edit.bannerbank.com
obb.bannerbank.com
local.pharmacy.safeway.com
qaux.bannerbank.com
web2.bannerbank.com
store-events.louandgrey.com
mailsecure.bannerbank.com
uatedit.bannerbank.com
san4.yext-cdn.com
web2.bannerbank.com
assistant.bannerbank.com
estatements.bannerbank.com
securefiles.bannerbank.com
covalent-notifications.bannerbank.com
Certificate
The complete raw certificate details for www.bannerbank.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgIQCCjGK0jZw1MKjF78LHVMWzANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTIwMDIwMzAwMDAwMFoXDTIyMDQwMzEyMDAwMFowgd8xHTAbBgNVBA8MFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAlVTMRswGQYLKwYB BAGCNzwCAQITCldhc2hpbmd0b24xFDASBgNVBAUTCzYwMSA1MDYgMzQ1MQswCQYD VQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEUMBIGA1UEBxMLV2FsbGEgV2Fs bGExFDASBgNVBAoTC0Jhbm5lciBCYW5rMQswCQYDVQQLEwJJVDEbMBkGA1UEAxMS d3d3LmJhbm5lcmJhbmsuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqKyR3+2RgHeghKfehOtvEOOJC7LSHN8DRXOBlBbBTV1xHuTDCoGjwMHMf2I ae58wSDtFaPpal94BP33TNC9IcYSNBRGx4WksUuYN2n/s/eayNiJNGscOMOsxTwK kDwhwLE+oiS0sawCPG2b9QVG4hkAFS1trwaxGwvYMNHHRdWDhMIaOlhy07ZgNWQ2 UEFOm1KXPd6UuhzhV6VwIvXiQ134wfuOaMm1/JZIKoYcGlAEeC1ulsnopgTKxmYJ AcWRkcteEuZ78nkKwgPxoVw+W8LyrXzItOIdu4iq99HAGjVaD3mDNuD2xUGU3bll vnT1xB5xETtP4gcLpDVzD0OjHQIDAQABo4IByDCCAcQwHwYDVR0jBBgwFoAUlE/U XYvkpOKmgP792PkA76O+AlcwHQYDVR0OBBYEFFOCpYhiXhmOObm2p1mNoBwFL3J/ MC0GA1UdEQQmMCSCEnd3dy5iYW5uZXJiYW5rLmNvbYIOYmFubmVyYmFuay5jb20w DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA/ BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vY2RwLmdlb3RydXN0LmNvbS9HZW9UcnVz dFRMU1JTQUNBRzEuY3JsMEsGA1UdIAREMEIwNwYJYIZIAYb9bAIBMCowKAYIKwYB BQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwBwYFZ4EMAQEwdgYI KwYBBQUHAQEEajBoMCYGCCsGAQUFBzABhhpodHRwOi8vc3RhdHVzLmdlb3RydXN0 LmNvbTA+BggrBgEFBQcwAoYyaHR0cDovL2NhY2VydHMuZ2VvdHJ1c3QuY29tL0dl b1RydXN0VExTUlNBQ0FHMS5jcnQwCQYDVR0TBAIwADATBgorBgEEAdZ5AgQDAQH/ BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfI+bg6uwuRtRuHYHHW5t2FjDI8YcxxI1 fvnMfmoA+R/pTKp75MtgdTdSOHNEerAnk5G5WcHkc8xB2A0mhx/WN6LBqfnvgnDK FQVfavZq+9wFWbhPg8IifyhrIXI4NGzd6qV9nNekrnpgiR7GzGONiY7X9oqloOtG W3nH/1I1CLqEKNgmXahXphb+R9HTzk+uF8k9cLNHacHQy0pf3z87P/Rtt4/JtEyJ ra3MMwJaBEEnHQFFtg49F9r44eDspQVoTRs0gu51CUSNWT9WtaUgU3lB7/JXXkmN LVFrVTphXzgDvZSCqMy8uab0fZThQaE5GiwEh4SHHrvTp9BgBeUd/A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqKyR3+2RgHeghKfehOt vEOOJC7LSHN8DRXOBlBbBTV1xHuTDCoGjwMHMf2Iae58wSDtFaPpal94BP33TNC9 IcYSNBRGx4WksUuYN2n/s/eayNiJNGscOMOsxTwKkDwhwLE+oiS0sawCPG2b9QVG 4hkAFS1trwaxGwvYMNHHRdWDhMIaOlhy07ZgNWQ2UEFOm1KXPd6UuhzhV6VwIvXi Q134wfuOaMm1/JZIKoYcGlAEeC1ulsnopgTKxmYJAcWRkcteEuZ78nkKwgPxoVw+ W8LyrXzItOIdu4iq99HAGjVaD3mDNuD2xUGU3bllvnT1xB5xETtP4gcLpDVzD0Oj HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10845535187079411235779358465650412635 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-04-03 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '601 506 345' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Walla Walla' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Banner Bank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bannerbank.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23560553310406350714420594881421930295725972083251045164850450229407072640983787153789455145418926756961825622731632214725896031235852126614430772239984268700406777820495586516553917083247331951368433342969269446537997477359789771848953151220917234512933568871069323960418654275647327890603568373969977632361130996315824032615627759135869033427580673062603711414971107901031706231330092239670822246006489551362041929195554085421920639466093546990673112927163095838340982019239174752418885810479553981331386980221517790566282982055330319677097373035475023440976991935467950576231700513803472555962064429352084060742429 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5382a588625e198e39b9b6a7598da01c052f727f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bannerbank.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bannerbank.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007c8f9b83abb0b91b51b876071d6e6dd858c323c61cc712357ef9cc7e6a00f91fe94caa7be4cb607537523873447ab0279391b959c1e473cc41d80d26871fd637a2c1a9f9ef8270ca15055f6af66afbdc0559b84f83c2227f286b217238346cddeaa57d9cd7a4ae7a60891ec6cc638d898ed7f68aa5a0eb465b79c7ff523508ba8428d8265da857a616fe47d1d3ce4fae17c93d70b34769c1d0cb4a5fdf3f3b3ff46db78fc9b44c89adadcc33025a0441271d0145b60e3d17daf8e1e0eca505684d1b3482ee7509448d593f56b5a520537941eff2575e498d2d516b553a615f3803bd9482a8ccbcb9a6f47d94e141a1391a2c048784871ebbd3a7d06005e51dfc