bidpi1.pat.tdinsurance.com
- The Toronto-Dominion Bank -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 33:9e:88:70:17:bb:30:b3:e3:80:bd:20:f5:b9:7e:4b was issued on by Entrust, Inc..
With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
The Toronto-Dominion Bank
Organization:
The Toronto-Dominion Bank
State / Province:
Ontario
Locality: Toronto
Country: CA
Locality: Toronto
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 33:9e:88:70:17:bb:30:b3:e3:80:bd:20:f5:b9:7e:4bSerial Number (int): 68613777977283964854295995563619483211
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: f5:16:44:9c:85:91:31:76:fe:d9:2f:c6:57:83:75:14:00:cb:7a:22
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): d5:4e:78:06:1e:c2:17:fb:e8:cd:1b:3c:1d:fd:e0:ee:0c:18:5b:1f
Fingerprint (sha256): 23:2c:64:f8:15:c7:00:28:ad:cf:5e:ac:1c:83:f6:59:87:d0:7e:3c:42:ea:f8:3b:06:d2:40:73:aa:35:76:70
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate bidpi1.pat.tdinsurance.com
14
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bidpi1.pat.tdinsurance.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bidpi1.pat.tdinsurance.com
bidpi1.pat.tdassurance.com
bidpi2.pat.tdassurance.com
bidpi2.pat.tdinsurance.com
bidpp1.pat.tdassurance.com
bidpp1.pat.tdinsurance.com
bidpp2.pat.tdassurance.com
bidpp2.pat.tdinsurance.com
bidqp1.pat.tdinsurance.com
bidqp2.pat.tdinsurance.com
bidqp1.pat.tdassurance.com
bidqp2.pat.tdassurance.com
bidqs1.pat.tdinsurance.com
bidqs2.pat.tdinsurance.com
bidpi1.pat.tdassurance.com
bidpi2.pat.tdassurance.com
bidpi2.pat.tdinsurance.com
bidpp1.pat.tdassurance.com
bidpp1.pat.tdinsurance.com
bidpp2.pat.tdassurance.com
bidpp2.pat.tdinsurance.com
bidqp1.pat.tdinsurance.com
bidqp2.pat.tdinsurance.com
bidqp1.pat.tdassurance.com
bidqp2.pat.tdassurance.com
bidqs1.pat.tdinsurance.com
bidqs2.pat.tdinsurance.com
Other certificates including the domain name tdinsurance.com
(limited to 100 certificates)
www1.pat.new.tdinsurance.com
fc4.insurance2.group.tdinsurance.com
wcm.sys1.td.com
wcm1.pat.td.com
www.tdinsurance.com
secure.group.tdinsurance.com
wcmstg1.pat.td.com
wcmstg1.pat.td.com
wcmstg2.pat.td.com
fc4.insurance2.group.tdinsurance.com
wcm.td.com
mobile.tdinsurance.com
new.tdinsurance.com
www.test2.tdinsurance.com
www.w10s.sys.tdinsurance.com
wcm.dev1.td.com
mobile.tdinsurance.com
ac2.insurance2.group.tdinsurance.com
fc3.insurance2.group.tdinsurance.com
vpn.tdinsurance.com
wcm.td.com
?.td.com
secure.group.tdinsurance.com
ads.tdwaterhouse.ca
new.tdinsurance.com
qa.sites.td.com
mobile.tdinsurance.com
www.test2.tdinsurance.com
fc3.insurance.group.tdinsurance.com
mobile.tdinsurance.com
fc1.insurance2.group.tdinsurance.com
?.?.tdinsurance.com
mobile.tdinsurance.com
insurance2.group.tdinsurance.com
insurance2.group.tdinsurance.com
ac2.insurance.group.tdinsurance.com
fc3.insurance.group.tdinsurance.com
beta.sites.td.com
sip.td.com
cashybrid.td.com
fc2.insurance2.group.tdinsurance.com
secure.group.tdinsurance.com
www.test2.tdinsurance.com
lifeandhealth2.sys.tdinsurance.com
sip.td.com
secure.group.tdinsurance.com
mobile.tdinsurance.com
travelinsurance.td.com
tdinsurance.com
lifeandhealth.pat.tdinsurance.com
zt.td.com
mobile.tdinsurance.com
fs.td.com
fc2.insurance.group.tdinsurance.com
lyncdirpool-extweb.td.com
wcm.td.com
ac1.insurance2.group.tdinsurance.com
lifeandhealth.sys.tdinsurance.com
www.tdinsurance.com
cctoentsso.tdinsurance.com
bidpi1.pat.tdinsurance.com
wcm.td.com
wcm2.pat.td.com
fc4.insurance.group.tdinsurance.com
ac1.insurance2.group.tdinsurance.com
www1.pat.new.tdinsurance.com
zt.td.com
ac1.insurance.group.tdinsurance.com
www.w10.dev.tdinsurance.com
www.test2.tdinsurance.com
?.?.tdinsurance.com
www.tdinsurance.com
zt.td.com
wcm.sys2.td.com
insurance.group.tdinsurance.com
wcmstg1.pat.td.com
cashybrid.td.com
zt.td.com
secure.group.tdinsurance.com
www.w12.dev.tdinsurance.com
wcmstg2.pat.td.com
lifeandhealth.tdinsurance.com
www.tdinsurance.com
sip.td.com
ac2.insurance.group.tdinsurance.com
wcm.td.com
nexus.td.com
www1.pat.new.tdinsurance.com
lifeandhealth2.sys.tdinsurance.com
mobile.tdinsurance.com
vpn.tdinsurance.com
ac1.insurance.group.tdinsurance.com
www.tdinsurance.com
dev.td.com
contentsclaim.tdinsurance.com
vpn.tdinsurance.com
insurance.group.tdinsurance.com
insurance.group.tdinsurance.com
secure.group.tdinsurance.com
collabgw2.video.td.com
fc4.insurance2.group.tdinsurance.com
wcm.sys1.td.com
wcm1.pat.td.com
www.tdinsurance.com
secure.group.tdinsurance.com
wcmstg1.pat.td.com
wcmstg1.pat.td.com
wcmstg2.pat.td.com
fc4.insurance2.group.tdinsurance.com
wcm.td.com
mobile.tdinsurance.com
new.tdinsurance.com
www.test2.tdinsurance.com
www.w10s.sys.tdinsurance.com
wcm.dev1.td.com
mobile.tdinsurance.com
ac2.insurance2.group.tdinsurance.com
fc3.insurance2.group.tdinsurance.com
vpn.tdinsurance.com
wcm.td.com
?.td.com
secure.group.tdinsurance.com
ads.tdwaterhouse.ca
new.tdinsurance.com
qa.sites.td.com
mobile.tdinsurance.com
www.test2.tdinsurance.com
fc3.insurance.group.tdinsurance.com
mobile.tdinsurance.com
fc1.insurance2.group.tdinsurance.com
?.?.tdinsurance.com
mobile.tdinsurance.com
insurance2.group.tdinsurance.com
insurance2.group.tdinsurance.com
ac2.insurance.group.tdinsurance.com
fc3.insurance.group.tdinsurance.com
beta.sites.td.com
sip.td.com
cashybrid.td.com
fc2.insurance2.group.tdinsurance.com
secure.group.tdinsurance.com
www.test2.tdinsurance.com
lifeandhealth2.sys.tdinsurance.com
sip.td.com
secure.group.tdinsurance.com
mobile.tdinsurance.com
travelinsurance.td.com
tdinsurance.com
lifeandhealth.pat.tdinsurance.com
zt.td.com
mobile.tdinsurance.com
fs.td.com
fc2.insurance.group.tdinsurance.com
lyncdirpool-extweb.td.com
wcm.td.com
ac1.insurance2.group.tdinsurance.com
lifeandhealth.sys.tdinsurance.com
www.tdinsurance.com
cctoentsso.tdinsurance.com
bidpi1.pat.tdinsurance.com
wcm.td.com
wcm2.pat.td.com
fc4.insurance.group.tdinsurance.com
ac1.insurance2.group.tdinsurance.com
www1.pat.new.tdinsurance.com
zt.td.com
ac1.insurance.group.tdinsurance.com
www.w10.dev.tdinsurance.com
www.test2.tdinsurance.com
?.?.tdinsurance.com
www.tdinsurance.com
zt.td.com
wcm.sys2.td.com
insurance.group.tdinsurance.com
wcmstg1.pat.td.com
cashybrid.td.com
zt.td.com
secure.group.tdinsurance.com
www.w12.dev.tdinsurance.com
wcmstg2.pat.td.com
lifeandhealth.tdinsurance.com
www.tdinsurance.com
sip.td.com
ac2.insurance.group.tdinsurance.com
wcm.td.com
nexus.td.com
www1.pat.new.tdinsurance.com
lifeandhealth2.sys.tdinsurance.com
mobile.tdinsurance.com
vpn.tdinsurance.com
ac1.insurance.group.tdinsurance.com
www.tdinsurance.com
dev.td.com
contentsclaim.tdinsurance.com
vpn.tdinsurance.com
insurance.group.tdinsurance.com
insurance.group.tdinsurance.com
secure.group.tdinsurance.com
collabgw2.video.td.com
Certificate
The complete raw certificate details for bidpi1.pat.tdinsurance.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGpDCCBYygAwIBAgIQM56IcBe7MLPjgL0g9bl+SzANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDAzMjYxNjM5MDJaFw0yNTA0MjYxNjM5MDBaMHoxCzAJBgNVBAYTAkNBMRAwDgYD VQQIEwdPbnRhcmlvMRAwDgYDVQQHEwdUb3JvbnRvMSIwIAYDVQQKExlUaGUgVG9y b250by1Eb21pbmlvbiBCYW5rMSMwIQYDVQQDExpiaWRwaTEucGF0LnRkaW5zdXJh bmNlLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJnmkbERkGT4 CWNRN3ccQNmDxdOSq48J0MdjL+WwwEsk0h1Pv19OYuVLJTxpuzuqK86Th38R3SY0 rQhkHWV1wJg/uqhfqC9b2qrEXbwB8Py3sodh2hRLDUA674C/0AoOX2gPepxd4kGx HGhBOuLmZJH3voOlTLZ9vhgInVas1upJKWDnJZGgmaTgVw8OZQGGVCr8dhflNxLp vsDyLizesepIavJ3eLCCIxoCj3rLqxEUVmrVkAsO/cGOMnwgraIqMhOZXkHnpcSP THT9/S4yWVjRslaDowwcLa5NDr1yAhDwpQlTGryDPYJeKoFtWBWXZnPlixNYfSeT JGQ1ijBrKsUCAwEAAaOCAuMwggLfMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFPUW RJyFkTF2/tkvxleDdRQAy3oiMB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU981/p2DG Cky/MGgGCCsGAQUFBwEBBFwwWjAjBggrBgEFBQcwAYYXaHR0cDovL29jc3AuZW50 cnVzdC5uZXQwMwYIKwYBBQUHMAKGJ2h0dHA6Ly9haWEuZW50cnVzdC5uZXQvbDFr LWNoYWluMjU2LmNlcjAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLmVudHJ1 c3QubmV0L2xldmVsMWsuY3JsMIIBlQYDVR0RBIIBjDCCAYiCGmJpZHBpMS5wYXQu dGRpbnN1cmFuY2UuY29tghpiaWRwaTEucGF0LnRkYXNzdXJhbmNlLmNvbYIaYmlk cGkyLnBhdC50ZGFzc3VyYW5jZS5jb22CGmJpZHBpMi5wYXQudGRpbnN1cmFuY2Uu Y29tghpiaWRwcDEucGF0LnRkYXNzdXJhbmNlLmNvbYIaYmlkcHAxLnBhdC50ZGlu c3VyYW5jZS5jb22CGmJpZHBwMi5wYXQudGRhc3N1cmFuY2UuY29tghpiaWRwcDIu cGF0LnRkaW5zdXJhbmNlLmNvbYIaYmlkcXAxLnBhdC50ZGluc3VyYW5jZS5jb22C GmJpZHFwMi5wYXQudGRpbnN1cmFuY2UuY29tghpiaWRxcDEucGF0LnRkYXNzdXJh bmNlLmNvbYIaYmlkcXAyLnBhdC50ZGFzc3VyYW5jZS5jb22CGmJpZHFzMS5wYXQu dGRpbnN1cmFuY2UuY29tghpiaWRxczIucGF0LnRkaW5zdXJhbmNlLmNvbTAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBMGA1Ud IAQMMAowCAYGZ4EMAQICMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCp+AipfYj4c4wZAlChhaszPQ9XbzZDF1qY6HK66iL2KU0mzDBcg0Z Och8wU58tZmUzv+E8aEJwF4+XPajpGxJpdmuhTFihbAD2stq1qD5+UJsZe/DQmc2 YSm4CH2XeIrhqr18oLcY+tnu9bR8mgs/B1CgwyLW2idQjxpLUzJNoC1kdXX8U4GG 4tVtZgcZOpntoMnKt2+N244VY4rpmoDGcxhdYFdGRV5O0gfGHppm5od1pEt1hUrx T1p6bBNOwJyUMpEE3uR805erHc5xYG1hsLp1fOqzjpqBNA7LK0kdBywpHo4FDMho m2MO6fnakOjASaEZAwPdIVDAqQA1LLJ3 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeaRsRGQZPgJY1E3dxxA 2YPF05KrjwnQx2Mv5bDASyTSHU+/X05i5UslPGm7O6orzpOHfxHdJjStCGQdZXXA mD+6qF+oL1vaqsRdvAHw/Leyh2HaFEsNQDrvgL/QCg5faA96nF3iQbEcaEE64uZk kfe+g6VMtn2+GAidVqzW6kkpYOclkaCZpOBXDw5lAYZUKvx2F+U3Eum+wPIuLN6x 6khq8nd4sIIjGgKPesurERRWatWQCw79wY4yfCCtoioyE5leQeelxI9MdP39LjJZ WNGyVoOjDBwtrk0OvXICEPClCVMavIM9gl4qgW1YFZdmc+WLE1h9J5MkZDWKMGsq xQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 68613777977283964854295995563619483211 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-26 16:39:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-26 16:39:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Toronto' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Toronto-Dominion Bank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bidpi1.pat.tdinsurance.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19428158524589795061773198994366555820452645297220319135966949965322569850670782000551213403977312641796754876753583071692458623404624758419136692976043100941213098860803156859613702832410158037334168174537082209450098194811988997666921447989734623461047439488757198499094059118193846223979296832111067305092056406160103498209582166678380042934191190480101997045511349108100314771680296760997805838041295696410575298015172693552515918135649212863770674014352904934189305748584342960926823561197411748002409007242890028378209037596797506108753506467852112962363480920777044624178347192739374601511870030658538627082949 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f516449c85913176fed92fc65783751400cb7a22 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (396 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidpi1.pat.tdinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidpi1.pat.tdassurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidpi2.pat.tdassurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidpi2.pat.tdinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidpp1.pat.tdassurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidpp1.pat.tdinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidpp2.pat.tdassurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidpp2.pat.tdinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidqp1.pat.tdinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidqp2.pat.tdinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidqp1.pat.tdassurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidqp2.pat.tdassurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidqs1.pat.tdinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bidqs2.pat.tdinsurance.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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