*.cgi-bps.com
- CGI Federal Inc. -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 01:fb:54:cb:a4:04:5b:cf:c0:32:df:21:b6:20:e5:63 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
CGI Federal Inc.
Organization:
CGI Federal Inc.
Organization unit: HCP
Organization unit: HCP
State / Province:
OH
Locality: Cleveland
Country: US
Locality: Cleveland
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:fb:54:cb:a4:04:5b:cf:c0:32:df:21:b6:20:e5:63Serial Number (int): 2634214363761665625295496020599301475
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 2c:a1:1d:5c:fb:4c:c9:75:cb:52:09:fc:d3:77:6b:66:58:2b:83:c0
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): a8:ce:50:1f:0f:56:c1:d5:15:d9:b5:3f:fb:be:cf:0b:a4:0e:22:67
Fingerprint (sha256): 23:30:99:31:25:97:e7:19:84:3d:3f:ca:e6:74:b8:ea:db:bd:28:55:92:70:6b:f7:e7:3d:d5:91:ee:e6:24:bf
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g6.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g6.crl
Check the revocation status for certificate *.cgi-bps.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.cgi-bps.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.cgi-bps.com
cgi-bps.com
pbca.cgi-bps.com
cgi-bps.com
pbca.cgi-bps.com
Other certificates including the domain name cgi-bps.com
(limited to 100 certificates)
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.dr.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.dr.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
Certificate
The complete raw certificate details for *.cgi-bps.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG8jCCBdqgAwIBAgIQAftUy6QEW8/AMt8htiDlYzANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xODA2MDEwMDAwMDBaFw0yMDA4MTIxMjAwMDBa MG8xCzAJBgNVBAYTAlVTMQswCQYDVQQIEwJPSDESMBAGA1UEBxMJQ2xldmVsYW5k MRkwFwYDVQQKExBDR0kgRmVkZXJhbCBJbmMuMQwwCgYDVQQLEwNIQ1AxFjAUBgNV BAMMDSouY2dpLWJwcy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD+s+YzA2QtLztGDG8j9kgr43qpduP2n9udoI1WK5pXKf/hgcMM15/qvAgdQ295 g7jP3aA7DuT3UpaGD+qGP/DH56k4SDxUV48hnJX1YBfQ3dVJiTMQUK6k23/amRm4 CvXuVwtAMbI7Ede59hseo1P98eT2cL/bJkSyvsgMnHWY0akbHJQz9V2hbhQ9PE7E wxKvmkTZ1xVYq9KXchLw4CAwBVzCcs4cxR1KmAZlQw6pmQFF/TeReUvscjtjk7Gg 94juEFrYj1iRVmmpMpNvMKm7oz6yMHQ8FkFWO6ZoEIx+pCv7Q8AqfHNicDsjFcQi ZuxKM9p8DTf/mnHOmI/QLhHjAgMBAAGjggOHMIIDgzAfBgNVHSMEGDAWgBRRaP+Q rwIHdTzM2WVkYqISuFlyOzAdBgNVHQ4EFgQULKEdXPtMyXXLUgn803drZlgrg8Aw NwYDVR0RBDAwLoINKi5jZ2ktYnBzLmNvbYILY2dpLWJwcy5jb22CEHBiY2EuY2dp LWJwcy5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjB1BgNVHR8EbjBsMDSgMqAwhi5odHRwOi8vY3JsMy5kaWdpY2VydC5j b20vc2hhMi1oYS1zZXJ2ZXItZzYuY3JsMDSgMqAwhi5odHRwOi8vY3JsNC5kaWdp Y2VydC5jb20vc2hhMi1oYS1zZXJ2ZXItZzYuY3JsMEwGA1UdIARFMEMwNwYJYIZI AYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9D UFMwCAYGZ4EMAQICMIGDBggrBgEFBQcBAQR3MHUwJAYIKwYBBQUHMAGGGGh0dHA6 Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBNBggrBgEFBQcwAoZBaHR0cDovL2NhY2VydHMu ZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkhpZ2hBc3N1cmFuY2VTZXJ2ZXJDQS5j cnQwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYApLkJ kLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFjuaDCLgAABAMARzBFAiBx e6pVtjwLHy2byhzsexVSN8zD5Q2RDGIhimk6tcjEuQIhAII3TaSt3CmviY0CBhWI pIUGdL11XwolqXDaRQJ1EgoaAHYAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq /16ggw8AAAFjuaDDDwAABAMARzBFAiEA5Kn9/DvrGgf6n4e3rGUDscz8s2UdSOx6 jKu4+wdJXq8CIGYn6mNVbm9xmUPl8qSIEHy6YthH9rN/dwjNMbJoiq/kAHYAu9nf vB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFjuaDDHwAABAMARzBFAiAZ 4SO046pm6PAAjF8s1qWdKBctgLZXhDJTVHDG+DbLJwIhALijmnv+hBaNBv/cGbLm ezLNQ7jflDr74abE9aeb0VklMA0GCSqGSIb3DQEBCwUAA4IBAQCZbG93HkvapVnv mKc71W7/TLueAG3Lr7p2Q37MJjL5hQcMThlMWIsbs8+4zl4NbQNSqBpsDvz3/r3Y o2RUA43ZaEU34dQA+Cxl3bxl8Kv+1ZEoZhm7ft/1IT0b5RUGeNR5nfAtbDR2BU/C yNcUYWDlK8ls80cTLPajv2TxIwlvCwsgCwKdDhuTQY4ecvkkeGFpzn+3s649l5qr GSzREfQMsQtlqWMupL24IgCy3RdHErK4HdEESY9tqu8PYMBd8uJKzpMiyYwPkP6y xrLlLx/FjAxN/jkFn6XgLHT26d+nZfOJPe5IcovxmVf7mx61TUyZuCz8pVmtODOq KUkExR4w -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/rPmMwNkLS87RgxvI/ZI K+N6qXbj9p/bnaCNViuaVyn/4YHDDNef6rwIHUNveYO4z92gOw7k91KWhg/qhj/w x+epOEg8VFePIZyV9WAX0N3VSYkzEFCupNt/2pkZuAr17lcLQDGyOxHXufYbHqNT /fHk9nC/2yZEsr7IDJx1mNGpGxyUM/VdoW4UPTxOxMMSr5pE2dcVWKvSl3IS8OAg MAVcwnLOHMUdSpgGZUMOqZkBRf03kXlL7HI7Y5OxoPeI7hBa2I9YkVZpqTKTbzCp u6M+sjB0PBZBVjumaBCMfqQr+0PAKnxzYnA7IxXEImbsSjPafA03/5pxzpiP0C4R 4wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2634214363761665625295496020599301475 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-12 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cleveland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CGI Federal Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HCP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.cgi-bps.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 32153241071066339385554391517341879435533793111865415701106210283658544948716623567913193427556077672423955829453453176264645112363849515001807785477586696244058577697548384634832852961431435086694302002530034685245403513781609867719926601534427639255624598979352360391137285286603753351741162847917942902906684182950126400300639044760839435198971398095888884490247960700110044578848533536777816090661120113934900111101832663150263312790948825609417192663085935012958015302450280750761841634968117088221247948922077600804294227239446266444213278817644198478745591401425078140106780420404617159118934802161555710284259 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2ca11d5cfb4cc975cb5209fcd3776b66582b83c0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cgi-bps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cgi-bps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pbca.cgi-bps.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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