*.uleth.ca
- University of Lethbridge -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0c:ba:48:91:d8:2f:86:80:35:c4:db:26:66:83:ec:74 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
University of Lethbridge
Organization:
University of Lethbridge
State / Province:
Alberta
Locality: Lethbridge
Country: CA
Locality: Lethbridge
Country: CA
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:ba:48:91:d8:2f:86:80:35:c4:db:26:66:83:ec:74Serial Number (int): 16917975053587712699450663227030236276
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 13:48:8f:f5:e4:a0:a5:a7:7a:8d:f7:b7:f1:b5:7f:f3:d7:78:92:71
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): 7e:36:11:ca:d3:db:6e:1c:b2:3c:ce:7e:72:50:66:60:71:81:87:2b
Fingerprint (sha256): 21:34:0f:09:7f:46:5f:98:ab:3c:65:bc:72:c7:a3:ad:6a:42:9d:cf:73:96:0e:4f:01:bd:ff:e3:d7:94:6f:69
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g5.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g5.crl
Check the revocation status for certificate *.uleth.ca
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.uleth.ca
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.uleth.ca
uleth.ca
webmail.uleth.ca
uleth.ca
webmail.uleth.ca
Other certificates including the domain name uleth.ca
(limited to 100 certificates)
login-test.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
oasis.uleth.ca
arrti.uleth.ca
*.uleth.ca
*.uleth.ca
libguides.uleth.ca
digitallibrary.uleth.ca
vpn.uleth.ca
vpn2.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
vpn.uleth.ca
campaigns.uleth.ca
*.uleth.ca
uslims.uleth.ca
vpn.uleth.ca
arrti.uleth.ca
webmail.uleth.ca
*.uleth.ca
login.uleth.ca
login-test.uleth.ca
bookstore.uleth.ca
*.uleth.ca
vpn.uleth.ca
*.uleth.ca
oasis.uleth.ca
*.uleth.ca
acs1.net.uleth.ca
webexchange.uleth.ca
ise.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
idp-test.uleth.ca
oasis.uleth.ca
campaigns.uleth.ca
idp.uleth.ca
*.uleth.ca
*.uleth.ca
expenseclaim.uleth.ca
login-test.uleth.ca
*.uleth.ca
*.uleth.ca
svnhost.cs.uleth.ca
*.uleth.ca
go.uleth.ca
bookstore.uleth.ca
*.uleth.ca
*.uleth.ca
campaigns.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
batman-ms.net.uleth.ca
*.uleth.ca
learning.uleth.ca
*.uleth.ca
*.uleth.ca
bookstore.uleth.ca
cwms-admin.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
arrti.uleth.ca
*.uleth.ca
*.uleth.ca
bookstore.uleth.ca
its-iseadm2-p.uleth.ca
*.uleth.ca
*.uleth.ca
millennium.uleth.ca
arrti.uleth.ca
libguides.uleth.ca
*.uleth.ca
its-iseadm2-p.uleth.ca
*.uleth.ca
webexchange.uleth.ca
*.uleth.ca
*.uleth.ca
libguides.uleth.ca
*.uleth.ca
acs2.net.uleth.ca
*.uleth.ca
libguides.uleth.ca
campaigns.uleth.ca
millennium.uleth.ca
digitallibrary.uleth.ca
*.uleth.ca
*.uleth.ca
anc-bbtsapps-p.online.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
oasis.uleth.ca
arrti.uleth.ca
*.uleth.ca
*.uleth.ca
libguides.uleth.ca
digitallibrary.uleth.ca
vpn.uleth.ca
vpn2.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
vpn.uleth.ca
campaigns.uleth.ca
*.uleth.ca
uslims.uleth.ca
vpn.uleth.ca
arrti.uleth.ca
webmail.uleth.ca
*.uleth.ca
login.uleth.ca
login-test.uleth.ca
bookstore.uleth.ca
*.uleth.ca
vpn.uleth.ca
*.uleth.ca
oasis.uleth.ca
*.uleth.ca
acs1.net.uleth.ca
webexchange.uleth.ca
ise.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
idp-test.uleth.ca
oasis.uleth.ca
campaigns.uleth.ca
idp.uleth.ca
*.uleth.ca
*.uleth.ca
expenseclaim.uleth.ca
login-test.uleth.ca
*.uleth.ca
*.uleth.ca
svnhost.cs.uleth.ca
*.uleth.ca
go.uleth.ca
bookstore.uleth.ca
*.uleth.ca
*.uleth.ca
campaigns.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
batman-ms.net.uleth.ca
*.uleth.ca
learning.uleth.ca
*.uleth.ca
*.uleth.ca
bookstore.uleth.ca
cwms-admin.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
*.uleth.ca
arrti.uleth.ca
*.uleth.ca
*.uleth.ca
bookstore.uleth.ca
its-iseadm2-p.uleth.ca
*.uleth.ca
*.uleth.ca
millennium.uleth.ca
arrti.uleth.ca
libguides.uleth.ca
*.uleth.ca
its-iseadm2-p.uleth.ca
*.uleth.ca
webexchange.uleth.ca
*.uleth.ca
*.uleth.ca
libguides.uleth.ca
*.uleth.ca
acs2.net.uleth.ca
*.uleth.ca
libguides.uleth.ca
campaigns.uleth.ca
millennium.uleth.ca
digitallibrary.uleth.ca
*.uleth.ca
*.uleth.ca
anc-bbtsapps-p.online.uleth.ca
Certificate
The complete raw certificate details for *.uleth.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZzCCBU+gAwIBAgIQDLpIkdgvhoA1xNsmZoPsdDANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNTExMjQwMDAwMDBaFw0xODAyMjgxMjAwMDBa MGwxCzAJBgNVBAYTAkNBMRAwDgYDVQQIEwdBbGJlcnRhMRMwEQYDVQQHEwpMZXRo YnJpZGdlMSEwHwYDVQQKExhVbml2ZXJzaXR5IG9mIExldGhicmlkZ2UxEzARBgNV BAMMCioudWxldGguY2EwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt yxom0oCV8tryE6FG5MafJC81v8rIY3Hew8X+jMAr6L4ecDx2Pn2CqJPjiZO0qsbq sfE9aXlFaB7ma+Y0HKNOTTvt+LclrWxVtn9l8O/JOzyS5W6tLr+wXYPry6R15vQu 7wVH2ZjiLInD9oGDK2sSw98oeXmEgxu+02Qsh4SzSsm7IFfPB9AVOLImxjLuCYPk hXbJ2rPy+R3PE1pilBK5KB09Xb65EZ+eruy73P9ehcxkLqQdi8jcMqZ69FlZ5qgO wxdufnVSHnxAwqVvibYM46NI3EY2rW6TsErO1huL39eYH653xHibdg9UKv5NrSlv 00JU0qTXBjohw/Jw1/rWHFi6ZipbvH6KAAPS3NdfLj3VPB77yT3qRvb7FgzirmNf OEdhm9IkkVF2f5vgiG5C2uEUQEK+pi0UHxE/BYtW+CdtXNx9n5ZRJBMryI6YcnnP 0NehsTViE2re+LiQBEAuUoLzkVuWgFhFzDyH97Zbb2p1fEXz3u2JLEqTyM/BUwtL djpcszSM521gmPgn8yzo4W9QYS5Zi5kcOn+OUs5DSsedV1LjFxTeTmTPmAmXDeOU TZzgG5PssCZI0Hp9OF2nDDs426VA3dNuVv0m5dFY01bnRoz+XhqGHMbOklFuoZoq B2b/gTsC68nLhPH7zZHgbsGFGEHc8NsI527U/DHnoQIDAQABo4IB/zCCAfswHwYD VR0jBBgwFoAUUWj/kK8CB3U8zNllZGKiErhZcjswHQYDVR0OBBYEFBNIj/XkoKWn eo33t/G1f/PXeJJxMDEGA1UdEQQqMCiCCioudWxldGguY2GCCHVsZXRoLmNhghB3 ZWJtYWlsLnVsZXRoLmNhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwdQYDVR0fBG4wbDA0oDKgMIYuaHR0cDovL2NybDMuZGln aWNlcnQuY29tL3NoYTItaGEtc2VydmVyLWc1LmNybDA0oDKgMIYuaHR0cDovL2Ny bDQuZGlnaWNlcnQuY29tL3NoYTItaGEtc2VydmVyLWc1LmNybDBMBgNVHSAERTBD MDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2Vy dC5jb20vQ1BTMAgGBmeBDAECAjCBgwYIKwYBBQUHAQEEdzB1MCQGCCsGAQUFBzAB hhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wTQYIKwYBBQUHMAKGQWh0dHA6Ly9j YWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJIaWdoQXNzdXJhbmNlU2Vy dmVyQ0EuY3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggEBAKL4lAmY EymSrN/+6AKYPIToiOUYmWVcvgHLI1vXmbZz3cHNuxEfnQhvlU7Y5jOoc1mAZiPb 6PFnBsKiw6NnyrV1YpsExR13B5YuG5hnCC1a351EJ7KVbpVacbX+fV7LORLwkcIX WLJ64UVD79HfWyoboHCmiJbbiMyq3oUG6WHf8j2uEUhncQ9G2103nMwhfx/UrH6y y1rum+8a59Z6pqyfb3vkHVmpon/T3VLf1nPVIF6SxXq2RxrK+vMo5iDa919NnSby hUSLImy1WZMi/6ebr3ulM/cBIG7l6g+jkkIG/rbva+3y5p0bvQI/DC5jTt84c1lN fHoqgADnCFSPirU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArcsaJtKAlfLa8hOhRuTG nyQvNb/KyGNx3sPF/ozAK+i+HnA8dj59gqiT44mTtKrG6rHxPWl5RWge5mvmNByj Tk077fi3Ja1sVbZ/ZfDvyTs8kuVurS6/sF2D68ukdeb0Lu8FR9mY4iyJw/aBgytr EsPfKHl5hIMbvtNkLIeEs0rJuyBXzwfQFTiyJsYy7gmD5IV2ydqz8vkdzxNaYpQS uSgdPV2+uRGfnq7su9z/XoXMZC6kHYvI3DKmevRZWeaoDsMXbn51Uh58QMKlb4m2 DOOjSNxGNq1uk7BKztYbi9/XmB+ud8R4m3YPVCr+Ta0pb9NCVNKk1wY6IcPycNf6 1hxYumYqW7x+igAD0tzXXy491Twe+8k96kb2+xYM4q5jXzhHYZvSJJFRdn+b4Ihu QtrhFEBCvqYtFB8RPwWLVvgnbVzcfZ+WUSQTK8iOmHJ5z9DXobE1YhNq3vi4kARA LlKC85FbloBYRcw8h/e2W29qdXxF897tiSxKk8jPwVMLS3Y6XLM0jOdtYJj4J/Ms 6OFvUGEuWYuZHDp/jlLOQ0rHnVdS4xcU3k5kz5gJlw3jlE2c4BuT7LAmSNB6fThd pww7ONulQN3Tblb9JuXRWNNW50aM/l4ahhzGzpJRbqGaKgdm/4E7AuvJy4Tx+82R 4G7BhRhB3PDbCOdu1Pwx56ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16917975053587712699450663227030236276 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-28 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Alberta' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Lethbridge' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'University of Lethbridge' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.uleth.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 709015081975927133639437914421601434908616329864467618444421809158431229810371427910324847447997714305705461784750788305529412572721960986326664313866579339023137369779634643995156392499103700191994476689791493649323079184836069293864230985163494869191194017982257275265178719196074661415309750720143485347854176358710825000311185679463281724833110506161866482634488722943396916928804952792388218901182436558014060525250734409284921853234689507688936644596547634792354550831536218388491136081626873844968792071235000678155660206620500752026987091592564694328145377429683165116744392013588361582997127061833942587065411424119434053761132960317817740542035385317463841635340716645068094410614745173237897566090580718541567101677158269953537724616769285762723965051239826558877364352034128735371554194292713309926455889212966163097913853622965597955440088310148996369797271794868239357380156524860665979597769108092302864568570826042933610388864813636459161603068334278827369319842350856822187775158108946755586656768333869537680645333259561332249596615380142516688298680307839337361652072457692432952457654036554307019245237339587351844883069797916748248647857292845770407336076451285634844627017946079798243183065130841932082355234721 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 13488ff5e4a0a5a77a8df7b7f1b57ff3d7789271 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.uleth.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uleth.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.uleth.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g5.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g5.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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