*.zipwhip.com
- Zipwhip, Inc. -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0f:15:f6:84:07:3e:42:7c:8d:a9:73:4f:3e:67:d2:18 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Zipwhip, Inc.
Organization:
Zipwhip, Inc.
Organization unit: IT
Organization unit: IT
State / Province:
Washington
Locality: Seattle
Country: US
Locality: Seattle
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:15:f6:84:07:3e:42:7c:8d:a9:73:4f:3e:67:d2:18Serial Number (int): 20052458103924582110930573539808891416
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: e7:89:d7:0d:8d:66:ec:1e:96:c7:b7:93:ad:e4:5a:9e:e7:e0:3f:7f
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): c0:f4:4c:9e:ee:e4:b2:17:1d:bc:87:a1:73:e3:9f:53:bc:f1:9b:2f
Fingerprint (sha256): 1f:64:3d:ad:ec:58:02:63:53:c5:07:90:b4:28:b6:a0:cd:53:f0:10:84:29:a5:74:53:7d:90:48:ee:45:79:33
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g1.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g1.crl
Check the revocation status for certificate *.zipwhip.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.zipwhip.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.zipwhip.com
zipwhip.com
rancher.zipwhip.com
zipwhip.com
rancher.zipwhip.com
Other certificates including the domain name zipwhip.com
(limited to 100 certificates)
adltrust.kinnser.com
api-status.zipwhip.com
adltrust.kinnser.com
developers.zipwhip.com
*.zipwhip.com
app-status.cloudsign.jp
*.us-west-2.aws.zwprod.io
zipwhip.com
creative.zipwhip.com
adltrust.kinnser.com
5714504251867136-fe2.pantheonsite.io
us-west-2.aws.zwcoreprod.io
adltrust.kinnser.com
5714504251867136-fe2.pantheonsite.io
app-status.cloudsign.jp
*.zipwhip.com
api-status.zipwhip.com
adltrust.kinnser.com
5690665774088192-fe2.pantheonsite.io
5714504251867136-fe2.pantheonsite.io
cloud-status.dimensiondata.com
*.us-west-2.aws.zwcustlifecycle.io
zipwhip.com
creative.zipwhip.com
5738196700758016-fe3.pantheonsite.io
adltrust.kinnser.com
api-status.zipwhip.com
api-status.zipwhip.com
api-status.zipwhip.com
api-verifications.zipwhip.com
*.us-west-2.aws.zwprod.io
att-status.zipwhip.com
adltrust.kinnser.com
app-status.cloudsign.jp
tls.automattic.com
app-status.cloudsign.jp
app-status.cloudsign.jp
api-status.zipwhip.com
*.qa.int.zipwhip.com
developers.zipwhip.com
5714504251867136-fe2.pantheonsite.io
tls.automattic.com
*.dev.int.zipwhip.com
att-status.zipwhip.com
app-status.cloudsign.jp
tls.automattic.com
*.zipwhip.com
tls.automattic.com
zwmail.zipwhip.com
registry-beta.zipwhip.com
5766752193478656-fe4.pantheonsite.io
api.us.aws.zipwhip.com
www.zipwhip.com
registry-beta.zipwhip.com
5714504251867136-fe2.pantheonsite.io
tls.automattic.com
api-status.zipwhip.com
api-verifications-beta.zipwhip.com
app-status.cloudsign.jp
5738196700758016-fe3.pantheonsite.io
zipnet.zipwhip.com
adltrust.kinnser.com
api-status.zipwhip.com
5738196700758016-fe3.pantheonsite.io
api-status.zipwhip.com
5690665774088192-fe2.pantheonsite.io
api-status.zipwhip.com
verifications-beta.zipwhip.com
adltrust.kinnser.com
www.zipwhip.com
app-status.cloudsign.jp
app-status.cloudsign.jp
5690665774088192-fe2.pantheonsite.io
adltrust.kinnser.com
cloud-status.dimensiondata.com
adltrust.kinnser.com
5714504251867136-fe2.pantheonsite.io
app-status.cloudsign.jp
adltrust.kinnser.com
app-status.cloudsign.jp
adltrust.kinnser.com
auth.zipwhip.com
cloud-status.dimensiondata.com
5738196700758016-fe3.pantheonsite.io
app-status.cloudsign.jp
smart.zipwhip.com
adltrust.kinnser.com
smart.zipwhip.com
5690665774088192-fe2.pantheonsite.io
app-status.cloudsign.jp
api-status.zipwhip.com
tls.automattic.com
5738196700758016-fe3.pantheonsite.io
att-status.zipwhip.com
app-status.cloudsign.jp
5714504251867136-fe2.pantheonsite.io
developers.zipwhip.com
us-west-2.aws.zwprodint.io
adltrust.kinnser.com
*.zipwhip.com
api-status.zipwhip.com
adltrust.kinnser.com
developers.zipwhip.com
*.zipwhip.com
app-status.cloudsign.jp
*.us-west-2.aws.zwprod.io
zipwhip.com
creative.zipwhip.com
adltrust.kinnser.com
5714504251867136-fe2.pantheonsite.io
us-west-2.aws.zwcoreprod.io
adltrust.kinnser.com
5714504251867136-fe2.pantheonsite.io
app-status.cloudsign.jp
*.zipwhip.com
api-status.zipwhip.com
adltrust.kinnser.com
5690665774088192-fe2.pantheonsite.io
5714504251867136-fe2.pantheonsite.io
cloud-status.dimensiondata.com
*.us-west-2.aws.zwcustlifecycle.io
zipwhip.com
creative.zipwhip.com
5738196700758016-fe3.pantheonsite.io
adltrust.kinnser.com
api-status.zipwhip.com
api-status.zipwhip.com
api-status.zipwhip.com
api-verifications.zipwhip.com
*.us-west-2.aws.zwprod.io
att-status.zipwhip.com
adltrust.kinnser.com
app-status.cloudsign.jp
tls.automattic.com
app-status.cloudsign.jp
app-status.cloudsign.jp
api-status.zipwhip.com
*.qa.int.zipwhip.com
developers.zipwhip.com
5714504251867136-fe2.pantheonsite.io
tls.automattic.com
*.dev.int.zipwhip.com
att-status.zipwhip.com
app-status.cloudsign.jp
tls.automattic.com
*.zipwhip.com
tls.automattic.com
zwmail.zipwhip.com
registry-beta.zipwhip.com
5766752193478656-fe4.pantheonsite.io
api.us.aws.zipwhip.com
www.zipwhip.com
registry-beta.zipwhip.com
5714504251867136-fe2.pantheonsite.io
tls.automattic.com
api-status.zipwhip.com
api-verifications-beta.zipwhip.com
app-status.cloudsign.jp
5738196700758016-fe3.pantheonsite.io
zipnet.zipwhip.com
adltrust.kinnser.com
api-status.zipwhip.com
5738196700758016-fe3.pantheonsite.io
api-status.zipwhip.com
5690665774088192-fe2.pantheonsite.io
api-status.zipwhip.com
verifications-beta.zipwhip.com
adltrust.kinnser.com
www.zipwhip.com
app-status.cloudsign.jp
app-status.cloudsign.jp
5690665774088192-fe2.pantheonsite.io
adltrust.kinnser.com
cloud-status.dimensiondata.com
adltrust.kinnser.com
5714504251867136-fe2.pantheonsite.io
app-status.cloudsign.jp
adltrust.kinnser.com
app-status.cloudsign.jp
adltrust.kinnser.com
auth.zipwhip.com
cloud-status.dimensiondata.com
5738196700758016-fe3.pantheonsite.io
app-status.cloudsign.jp
smart.zipwhip.com
adltrust.kinnser.com
smart.zipwhip.com
5690665774088192-fe2.pantheonsite.io
app-status.cloudsign.jp
api-status.zipwhip.com
tls.automattic.com
5738196700758016-fe3.pantheonsite.io
att-status.zipwhip.com
app-status.cloudsign.jp
5714504251867136-fe2.pantheonsite.io
developers.zipwhip.com
us-west-2.aws.zwprodint.io
adltrust.kinnser.com
*.zipwhip.com
Certificate
The complete raw certificate details for *.zipwhip.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIQDxX2hAc+QnyNqXNPPmfSGDANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNzA3MTgwMDAwMDBaFw0yMDA5MTYxMjAwMDBa MHExCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdT ZWF0dGxlMRYwFAYDVQQKEw1aaXB3aGlwLCBJbmMuMQswCQYDVQQLEwJJVDEWMBQG A1UEAwwNKi56aXB3aGlwLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJq1mL5F6UcoRwoDW1cZNTrmiNYrBusfI0hFhNwXnAbDDtPDZFR9yQ9t0KE yCc8Y7w9lb9l6wFVne2F6GNkcS3A42WCi0G9b+JcawmtcGi0XTBp1DIqUhThJJZd Md3eju+TUP4A4ouPAg5DBGVaz3TuPSWhUBUxb2LsNmkPhDoY+gdZ6Sr2YgX7s5ZC KD1J478ihqaKs/+DLm7z2uUfVLZ4qjbB1ONMOITmUkFj6/O7pkhZyVEKB5HUgltR YYDM/vcEXub7y5THmPQjuCkIbmLdCqyDjzJcii/f7F0Qmwl5wA+gfvoAIpAtXnDt LhVdUlGXLhM8z2iMAr26lOCanwkCAwEAAaOCAggwggIEMB8GA1UdIwQYMBaAFFFo /5CvAgd1PMzZZWRiohK4WXI7MB0GA1UdDgQWBBTnidcNjWbsHpbHt5Ot5Fqe5+A/ fzA6BgNVHREEMzAxgg0qLnppcHdoaXAuY29tggt6aXB3aGlwLmNvbYITcmFuY2hl ci56aXB3aGlwLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMHUGA1UdHwRuMGwwNKAyoDCGLmh0dHA6Ly9jcmwzLmRpZ2lj ZXJ0LmNvbS9zaGEyLWhhLXNlcnZlci1nMS5jcmwwNKAyoDCGLmh0dHA6Ly9jcmw0 LmRpZ2ljZXJ0LmNvbS9zaGEyLWhhLXNlcnZlci1nMS5jcmwwTAYDVR0gBEUwQzA3 BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQu Y29tL0NQUzAIBgZngQwBAgIwgYMGCCsGAQUFBwEBBHcwdTAkBggrBgEFBQcwAYYY aHR0cDovL29jc3AuZGlnaWNlcnQuY29tME0GCCsGAQUFBzAChkFodHRwOi8vY2Fj ZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEySGlnaEFzc3VyYW5jZVNlcnZl ckNBLmNydDAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQCakEOLTX24 4BEQKrEtzoQvaonx6v8hUwbrDfZxtAF+HE9ZtMyTD+FW0v4bVESVCegHAWOgcYON 0AlFezG/cIRncSqcZi5eh2c4hHTsWR8ZfgVBoiZ+Oeb5LCgb48pJJpmGd1ClwA9B eQNrOoBB4N5OkrWbSSPHv1Cjsx5iw4p5HW2mMNy1bfe8XIwxlUUhDfpKuGkGYhZt UgcXSarBgWUniHhn9WUkLs+P8bQEQlTjFncptVQ7CVXNQevrIu1tXFLhVPK2TYuu 6Ro1lrvlFNZfSPLefFnYSl8WvoATXOfnKeCzk0Vje9vxz75j8vu0LSLzLZLSkQ94 s7/+8T+PPZAW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0mrWYvkXpRyhHCgNbVxk 1OuaI1isG6x8jSEWE3BecBsMO08NkVH3JD23QoTIJzxjvD2Vv2XrAVWd7YXoY2Rx LcDjZYKLQb1v4lxrCa1waLRdMGnUMipSFOEkll0x3d6O75NQ/gDii48CDkMEZVrP dO49JaFQFTFvYuw2aQ+EOhj6B1npKvZiBfuzlkIoPUnjvyKGpoqz/4MubvPa5R9U tniqNsHU40w4hOZSQWPr87umSFnJUQoHkdSCW1FhgMz+9wRe5vvLlMeY9CO4KQhu Yt0KrIOPMlyKL9/sXRCbCXnAD6B++gAikC1ecO0uFV1SUZcuEzzPaIwCvbqU4Jqf CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20052458103924582110930573539808891416 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-16 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Seattle' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zipwhip, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.zipwhip.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26562727551878588297644146440936707250052917314296155601198325854889472495012880008509616667755044739638286508670897657916750107601587069104083643291726853846537636602436248704076481694972378487920936881566458275082370372749817202622444413418985339740668267563185352268933852047857256275849471537749451626046209685280955334115341288425018394362557681139747872022888385122530864921913553814737487189110746541155050218259212420838380356310332005191948222440302062022975019343045201525646687804189202525724442716915381991476792218680290469216711025233301166288487167042130903674950638086928129741288758134652932162494217 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e789d70d8d66ec1e96c7b793ade45a9ee7e03f7f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.zipwhip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zipwhip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rancher.zipwhip.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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