*.innovateuk.org
- The Technology Strategy Board -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 07:98:af:3f:e0:4d:c4:08:1a:8e:c9:0b:b9:ca:62:49 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The Technology Strategy Board
Organization:
The Technology Strategy Board
State / Province:
Wiltshire
Locality: Swindon
Country: GB
Locality: Swindon
Country: GB
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:98:af:3f:e0:4d:c4:08:1a:8e:c9:0b:b9:ca:62:49Serial Number (int): 10097379575465237572250648851067331145
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 08:6e:a2:2b:d6:92:da:57:56:f6:e8:f5:f9:6e:b3:f9:3f:2e:b1:79
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): c6:ab:8e:8a:18:82:05:38:ac:f5:f9:65:71:92:dc:35:b7:a4:43:a0
Fingerprint (sha256): 28:90:0f:b0:e4:a1:f4:21:95:97:01:da:ab:47:9d:a2:70:46:d6:30:ad:30:55:e1:13:ae:a0:36:09:f7:ae:ec
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g3.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g3.crl
Check the revocation status for certificate *.innovateuk.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.innovateuk.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.innovateuk.org
innovateuk.org
innovateuk.org
Other certificates including the domain name innovateuk.org
(limited to 100 certificates)
datavis.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aem.devops.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
aem.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
engage.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
images.info.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
govboard.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aem.devops.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
aem.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
engage.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
images.info.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
govboard.innovateuk.org
Certificate
The complete raw certificate details for *.innovateuk.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgIQB5ivP+BNxAgajskLucpiSTANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNTAyMTcwMDAwMDBaFw0xNjA0MjkxMjAwMDBa MHYxCzAJBgNVBAYTAkdCMRAwDgYDVQQHEwdTd2luZG9uMRIwEAYDVQQIEwlXaWx0 c2hpcmUxJjAkBgNVBAoTHVRoZSBUZWNobm9sb2d5IFN0cmF0ZWd5IEJvYXJkMRkw FwYDVQQDDBAqLmlubm92YXRldWsub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAz52eGSu0MyB1/dgpwTxsc1oRuqNqS3+72dZhMJxyt6VUVjtVcDVc iLUey2RyxnDyFa0G/1mwlPQkUo9/F2nq/kqQtMXTN/Z+RPMpTrbvz0BfekENqRGV szHieflXe8i7KTKIVJ8icXU/SjtZrShSXQ7MWlfq+AErFXObEIa7nCa+rlBxoY5X LNaJtbP9PTHvYEykRgF4B44GUNfp5FRuc0lf+qYluPtzy6L/zq7yv3e9LRiZGg8K /zUddiNxmpoc7ECCrTReWXmxYPNZ1zCsjRGip7m8P1PAIhIBtgA5dKzcQqsC5Mjx xFMcCU2n4nTN5ittjGkIhlIiddnLWqxlpfXpFr72ltOx5zx3FprOQEtBo12zNMkO 3u2LGNKtKFmE5n7mfRFuVOQIO8n0ViHGF1Mus2Zuxm5mgj6AgxXWRy8SeT6nIERv eggQvnm9u/W7oS8tN2L5+cuEGlhH4AqGinn9GINSNfcuGYcbRCxScDjO+02pmKmg UykjoPzOq/jSSvzOuogvYtjRnvreZZmveErfClZyTSuo8bRP6YAdEkK3KP3hloD1 PsCoPkI6Q2IsseJSnclOX0wEBbCJE3YX1Aw/4FNqAgSXuNcYtk2OYeby+Fh4J3n6 sZT3/ZtyxEzHCNGvonNd/t0R1eveqMPJQ1ms3lhXqzyoeVPTfPX0VKUCAwEAAaOC Ae8wggHrMB8GA1UdIwQYMBaAFFFo/5CvAgd1PMzZZWRiohK4WXI7MB0GA1UdDgQW BBQIbqIr1pLaV1b26PX5brP5Py6xeTArBgNVHREEJDAighAqLmlubm92YXRldWsu b3Jngg5pbm5vdmF0ZXVrLm9yZzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMHUGA1UdHwRuMGwwNKAyoDCGLmh0dHA6Ly9jcmwz LmRpZ2ljZXJ0LmNvbS9zaGEyLWhhLXNlcnZlci1nMy5jcmwwNKAyoDCGLmh0dHA6 Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zaGEyLWhhLXNlcnZlci1nMy5jcmwwQgYDVR0g BDswOTA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGln aWNlcnQuY29tL0NQUzCBgwYIKwYBBQUHAQEEdzB1MCQGCCsGAQUFBzABhhhodHRw Oi8vb2NzcC5kaWdpY2VydC5jb20wTQYIKwYBBQUHMAKGQWh0dHA6Ly9jYWNlcnRz LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJIaWdoQXNzdXJhbmNlU2VydmVyQ0Eu Y3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggEBAIZSRv++oPCHyLBi bvNqqfYncuR37Cd5oMwlNoNbDZzfpjFJDdzRX3a+yQFioFobiMKtan0ZKDI+ts5T DxSDOjHI1LsfRuLOjs50j9FVsCwzRn5aMyKFYB585UuIihfxSQRyrc1ir+StdJq4 H4QCg433hHxbn4vDtY2lH+k7kIU1et41KDnJ3hkoCCUHVVsXuYs8cIj1iuRcDZMD rZFmxO0tmC1Ln1JG933iw40BHiYyhJl0vjkGA1NMh809A1GPG+te/hObVtO0/kYx bfj7a+csVZzDRoku2cdXnQ946qyws0D+tR+fpNNsHcVzDubFEoRizOYWpbNca9f/ zcO3HV4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAz52eGSu0MyB1/dgpwTxs c1oRuqNqS3+72dZhMJxyt6VUVjtVcDVciLUey2RyxnDyFa0G/1mwlPQkUo9/F2nq /kqQtMXTN/Z+RPMpTrbvz0BfekENqRGVszHieflXe8i7KTKIVJ8icXU/SjtZrShS XQ7MWlfq+AErFXObEIa7nCa+rlBxoY5XLNaJtbP9PTHvYEykRgF4B44GUNfp5FRu c0lf+qYluPtzy6L/zq7yv3e9LRiZGg8K/zUddiNxmpoc7ECCrTReWXmxYPNZ1zCs jRGip7m8P1PAIhIBtgA5dKzcQqsC5MjxxFMcCU2n4nTN5ittjGkIhlIiddnLWqxl pfXpFr72ltOx5zx3FprOQEtBo12zNMkO3u2LGNKtKFmE5n7mfRFuVOQIO8n0ViHG F1Mus2Zuxm5mgj6AgxXWRy8SeT6nIERveggQvnm9u/W7oS8tN2L5+cuEGlhH4AqG inn9GINSNfcuGYcbRCxScDjO+02pmKmgUykjoPzOq/jSSvzOuogvYtjRnvreZZmv eErfClZyTSuo8bRP6YAdEkK3KP3hloD1PsCoPkI6Q2IsseJSnclOX0wEBbCJE3YX 1Aw/4FNqAgSXuNcYtk2OYeby+Fh4J3n6sZT3/ZtyxEzHCNGvonNd/t0R1eveqMPJ Q1ms3lhXqzyoeVPTfPX0VKUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10097379575465237572250648851067331145 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-02-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-04-29 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Swindon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wiltshire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Technology Strategy Board' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.innovateuk.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 846998132982081872375940235604358099473238933629865631904268568376981561240246295624607039460988440717568082997966612930209231662232084300271109712550920308390137014953261015046475422956815052752119123804483646585138318852734143826112422804368541206294404126156404494693213356570590499396071000653464034847549554712256357203002060191366430817025520684931068299468091255871329778300020995269461717139952969217263921357750204177144118969336344257562244919083622889684598092247035499856235573580122164002678452320288260416964241079506544381949658637442788542934065081581260605204555881900510345420075745052719431910737707344336735979412645100597275118544951028180658584661761386904491484989419643891183427738658263166369820445122457502540786627032077293382957086970398498482356408554684217806423166005284243133342198776428888440011556487590493902329497701871328936936732734285427658344419840006559351474330821203705984493967567925230832640581775018806677075910354223616227609243970487232521170182143399185340243086461448911503432804627162604972317726168970219707185397570695551620648450870123191749412698937032321007247169328865923761025170951961797958723346597274680024625255009037155733763593470678020852417798536376245430366529410213 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 086ea22bd692da5756f6e8f5f96eb3f93f2eb179 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.innovateuk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'innovateuk.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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