www.indiebound.org

- American Booksellers Association, Inc. -

Issued by DigiCert SHA2 High Assurance Server CA

About this certificate

This digital certificate with serial number 0f:ce:4b:0b:b4:bc:84:8c:2e:85:ab:db:2a:2c:0a:3e was issued on by DigiCert Inc.

With 65 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

American Booksellers Association, Inc.

Organization: American Booksellers Association, Inc.
State / Province: New York
Locality: White Plains
Country: US

DigiCert Inc

Organization: DigiCert Inc
Organization unit: www.digicert.com
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0f:ce:4b:0b:b4:bc:84:8c:2e:85:ab:db:2a:2c:0a:3e
Serial Number (int): 21009555197797179877425743944106117694
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 71:13:f4:5a:42:de:a4:9e:54:7d:b2:48:53:63:55:7c:3e:4a:3b:8c
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b

Fingerprint (sha1): fb:fd:25:44:e0:36:67:eb:91:e9:1d:97:fb:21:43:83:c6:9b:fc:12
Fingerprint (sha256): 23:2d:f5:c4:99:97:03:17:06:33:88:fe:88:60:6e:3b:70:b8:6b:b1:26:bc:f7:8d:23:c2:a7:e6:c1:6f:32:1e

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g3.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g3.crl

Check the revocation status for certificate www.indiebound.org

65

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.indiebound.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.indiebound.org
www.kenyoncollegebookstore.com
www.laurelbookstore.com
www.countrybookshelf.com
www.thedolphinbookshop.com
shop.mrsdalloways.com
www.shoponceuponatime.com
www.goldennotebook.com
www.northtownbooks.com
www.booksonfirst.com
www.brucesbrowser.com
www.macsbacks.com
www.sanibelbookshop.com
www.thebooksellersatlaurelwood.com
www.shopgulliversbooks.com
www.copperfieldsbooks.com
www.kerriskornerbookstore.com
www.coffeetreebooks.com
www.shopcrazywisdom.com
www.mainstreetbooks.com
www.haywardbookshop.com
www.unionavebooks.com
www.thebookseller.biz
store.wordsbookstore.com
www.reedsgumtreebooks.com
www.valleybookseller.com
www.acmit.com
www.thecountrybookshop.biz
www.bearpondbooks.com
www.wellsborobookstore.com
www.bookshopbenicia.com
www.islandbooksri.com
www.paragraphsbookstore.com
www.cincybookshelf.com
www.booktopiafairs.com
www.bookshopwestportal.com
www.gibsonsbookstore.com
www.between-the-covers.com
www.bookshelfstores.com
www.boulderbookstore.net
shop.turtletownnisswa.com
www.inklingsbookshop.com
www.murderbooks.com
www.wyeastonline.com
www.bookbugkalamazoo.com
www.literaryduckbooks.com
www.reiters.com
www.huemanbookstore.com
www.seattletechnicalbooks.com
www.mainstreetbooksminot.com
www.nightbirdbooks.com
www.mentorbooks.com
www.parnassusbooks.net
www.avidbookshop.com
www.plainstrading.com
www.booksoup.com
www.inquiringbooks.com
www.newtownbookshop.com
www.thebooknookvt.com
www.thewellreadbookstore.com
www.banksquarebooks.com
www.theoldcuriositybookshop.com
www.harrisusedbooks.com
www.pageafterpagebook.com
www.thebookstall.com

Other certificates including the domain name indiebound.org

(limited to 100 certificates)
indiebound.org
indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.com
www.indiebound.org
indiebound.com
www.indiebound.com
www.indiebound.org
indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
indiebound.com
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.com
indiebound.org
www.indiebound.com
indiebound.org
www.indiebound.org
indiebound.org
www.indiebound.org
indiebound.org
indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.com
www.indiebound.com
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
indiebound.com
www.indiebound.org
indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
indiebound.org
www.indiebound.com
www.indiebound.org
www.indiebound.com
www.indiebound.com
www.indiebound.org
indiebound.org
dev.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.com
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.com
www.indiebound.org
dev.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.org
www.indiebound.com
www.indiebound.org
www.indiebound.com
www.indiebound.org
www.indiebound.com
www.indiebound.org
www.indiebound.org
indiebound.org

Certificate

The complete raw certificate details for www.indiebound.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1k0m5qGsGp+PnnPHt48k
39j09eHHvq1cv0leZqtchbI4yqmG2fKTH8bvyvDONkZi0+g7JNx+HAkTB/3YCN0t
jGSkoGVE7Sr+K0tzxZZRs0Cw+bDx5bXGbTbaW4fMxRLN/F2L4My7lUACdVoIq3/e
JBWssbNH7mYUBvJjJ7j60rqEm54ZN+gebGEf0I+bCG+ejwDifJlbQS5keHTgyWH3
Zi+88IFh1/zRU6I212VhID3sD5B6MTqJjpMQ+FhKbMJ6I6Oe7vLk/FA5Qs3XfxMo
wB7w3qYDK/peAbUZCSNfB/Z3qv9R7xAlTZhSGhGqdDEqMrJaVxODW8nIZll7PKpq
fwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 21009555197797179877425743944106117694
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-10-22 12:00:01 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-12 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'White Plains'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'American Booksellers Association, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.indiebound.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27053042310522906609731864356361659137691981571103178547686415590677280763641149720772841332648837668397248868175267560735246812465487490701267537520605317877287008372835279723164241160073901842573413100862015584597357383374769461148206095434345083579221585679099351851146127619960341123127191301965429689310008731047459279223780317271013908538865781590760995225714796768653574921769071738958268958370820527477213379589302579839295921499908258021801822575183594016567569551188281269984540188861657783398451169046032083244665002477319057397889580589466039115305315416052358768758785335577228846492119408989771041237631
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7113f45a42dea49e547db2485363557c3e4a3b8c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1639 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.indiebound.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kenyoncollegebookstore.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.laurelbookstore.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.countrybookshelf.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thedolphinbookshop.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.mrsdalloways.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.shoponceuponatime.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.goldennotebook.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.northtownbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.booksonfirst.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.brucesbrowser.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.macsbacks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sanibelbookshop.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thebooksellersatlaurelwood.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.shopgulliversbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.copperfieldsbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kerriskornerbookstore.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.coffeetreebooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.shopcrazywisdom.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mainstreetbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.haywardbookshop.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.unionavebooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thebookseller.biz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.wordsbookstore.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.reedsgumtreebooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.valleybookseller.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.acmit.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thecountrybookshop.biz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bearpondbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wellsborobookstore.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bookshopbenicia.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.islandbooksri.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.paragraphsbookstore.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cincybookshelf.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.booktopiafairs.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bookshopwestportal.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gibsonsbookstore.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.between-the-covers.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bookshelfstores.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.boulderbookstore.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.turtletownnisswa.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.inklingsbookshop.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.murderbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wyeastonline.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bookbugkalamazoo.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.literaryduckbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.reiters.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.huemanbookstore.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.seattletechnicalbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mainstreetbooksminot.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nightbirdbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mentorbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.parnassusbooks.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avidbookshop.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.plainstrading.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.booksoup.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.inquiringbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.newtownbookshop.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thebooknookvt.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thewellreadbookstore.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.banksquarebooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.theoldcuriositybookshop.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.harrisusedbooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pageafterpagebook.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thebookstall.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g3.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g3.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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