apiweb.hmhs.com

- Highmark -

Issued by Entrust Certification Authority - L1K

About this certificate

This digital certificate with serial number 06:1a:23:88:07:01:dd:41:3d:ea:59:37:54:04:a6:39 was issued on by Entrust, Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Highmark

Organization: Highmark
State / Province: Pennsylvania
Locality: Pittsburgh
Country: US

Entrust, Inc.

Organization: Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 06:1a:23:88:07:01:dd:41:3d:ea:59:37:54:04:a6:39
Serial Number (int): 8111088354566279345240971710006863417
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 80:33:fd:be:41:68:54:4e:99:ad:a3:c5:03:2a:86:98:e0:1f:ac:b0
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf

Fingerprint (sha1): 3e:11:a5:4f:00:a6:be:b9:35:aa:fc:49:05:13:a2:f3:17:dc:18:99
Fingerprint (sha256): 28:9d:a3:18:1d:a0:4f:ad:f5:5a:7d:81:db:d2:55:63:72:be:34:43:7d:77:70:e3:6b:c1:e8:40:47:38:b1:9c

Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer

Revocation information

OCSP Server: http://ocsp.entrust.net
CRL Distribution Point: http://crl.entrust.net/level1k.crl

Check the revocation status for certificate apiweb.hmhs.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for apiweb.hmhs.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

apiweb.hmhs.com
www.apiweb.hmhs.com

Other certificates including the domain name hmhs.com

(limited to 100 certificates)
apiwebqa.hmhs.com
apiqa.hmhs.com
m-chemical.deepscholar.app
static.hmhs.com
apiportal.hmhs.com
statictest.hmhs.com
mbrcdn.hmhs.com
csportalutilities.hmhs.com
apianmqa-secured.hmhs.com
client.hmhs.com
partnerstest.hmhs.com
oauth.hmhs.com
api.hmhs.com
www.hmhealthsolutions.com
status.hmhs.com
cmsoauth.hmhs.com
jcs-tenv3.opservices.hmhs.com
mrfdata.hmhs.com
mftpwdreset.hmhs.com
www.hmhealthsolutions.com
myehsportal.hmhs.com
syncp-test.hmhs.com
ghptest.hmhs.com
apiweb.hmhs.com
myehsportaltenv2.hmhs.com
hmbrdsfp09.highmark.com
mft-test.hmhs.com
www.meinnovations.in
syncp-test.hmhs.com
apiportalqa.hmhs.com
ftp.highmark.com
apianmqa.hmhs.com
api.hmhs.com
myehsportalcontenttenv3.hmhs.com
hms-uat.hmhs.com
apiint.hmhs.com
test.status.hmhs.com
mft.hmhs.com
prod.opservices.hmhs.com
entrustapi.hmhs.com
csportalutilities.hmhs.com
hms-pve.hmhs.com
syncp-dev.hmhs.com
hhotest.hmhs.com
service.hmhs.com
mail.highmark.com
hho.hmhs.com
myehsportalcontent.hmhs.com
partners.hmhs.com
hhotest.hmhs.com
hho.hmhs.com
ghp.hmhs.com
syncp-dev.hmhs.com
service.hmhs.com
myehsportal.hmhs.com
mftpwdreset-test.hmhs.com
lyncwebextBR.hmhs.com
apimgrqa.hmhs.com
apiqa.hmhs.com
ftp.highmark.com
owa.hmhs.com
mrfdata.hmhs.com
dev.cdn.hmhs.com
wvfhtest.hmhs.com
myehsportaltenv3.hmhs.com
mail.hmhs.com
www.hmhealthsolutions.com
apimgr.hmhs.com
static.hmhs.com
apiintqa.hmhs.com
mrfdata.hmhs.com
ghptest.hmhs.com
owa.hmhs.com
myehsportal.hmhs.com
www.hmhealthsolutions.com
mail.hmhs.com
status.hmhs.com
owa.hmhs.com
syncp.hmhs.com
lyncaccess1.hmhs.com
apiportalqa-secured.hmhs.com
cmsoauthqa.hmhs.com
cmsapiportal.hmhs.com
oauthqa.hmhs.com
lyncwebextBR.hmhs.com
apiint.hmhs.com
client.hmhs.com
client.hmhs.com
sni.cloudflaressl.com
dev.cdn.hmhs.com
wvfh.hmhs.com
fedsvc4.hmhs.com
myehsportaltenvb.hmhs.com
wvfh.hmhs.com
static.hmhs.com
apiweb.hmhs.com
statictest.hmhs.com
static.hmhs.com
static.hmhs.com
ftp.highmark.com

Certificate

The complete raw certificate details for apiweb.hmhs.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIG0DCCBbigAwIBAgIQBhojiAcB3UE96lk3VASmOTANBgkqhkiG9w0BAQsFADCB
ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT
H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy
MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG
A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y
MzA0MTAxMzQzMTVaFw0yNDA0MTMxMzQzMTVaMGYxCzAJBgNVBAYTAlVTMRUwEwYD
VQQIEwxQZW5uc3lsdmFuaWExEzARBgNVBAcTClBpdHRzYnVyZ2gxETAPBgNVBAoT
CEhpZ2htYXJrMRgwFgYDVQQDEw9hcGl3ZWIuaG1ocy5jb20wggEiMA0GCSqGSIb3
DQEBAQUAA4IBDwAwggEKAoIBAQDv4FGw2G+S4dL2kikwAj5KQiI+a0aXjoC/1Dmt
USbSCsV0j7xLB3GN3zi2rusxHFC0axFuAm0jClh6R27qUpNe9Wr4QR61xm59re46
7RIVGiWMVk9807bpROMAXTUMBZsORRMmn+mhmYti+7/Z4CLfgvqlaS5XWLRHPCeV
WoFBBtYvA/7LAdxrQ2o8xzUxF5brMIM91LCU/0yus9myYNPF8lK6XZAGD2AiURCW
SVPGvpuSdjzqu8EIeaIC3J0uwuWSioPod3e5rENF53pyOzC0ibNKyAtsjpsC4v2W
OCdM4hLj7lkd/xIS6qMrbuTRQXGoX0pDWpvc1UOgoJdXA+8lAgMBAAGjggMjMIID
HzAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSAM/2+QWhUTpmto8UDKoaY4B+ssDAf
BgNVHSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzBoBggrBgEFBQcBAQRcMFow
IwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAC
hidodHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwMwYDVR0f
BCwwKjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFrLmNybDAv
BgNVHREEKDAmgg9hcGl3ZWIuaG1ocy5jb22CE3d3dy5hcGl3ZWIuaG1ocy5jb20w
DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBM
BgNVHSAERTBDMDcGCmCGSAGG+mwKAQUwKTAnBggrBgEFBQcCARYbaHR0cHM6Ly93
d3cuZW50cnVzdC5uZXQvcnBhMAgGBmeBDAECAjCCAYAGCisGAQQB1nkCBAIEggFw
BIIBbAFqAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGHa2gS
dQAABAMASDBGAiEA2RFIgA2JBcN3QDftTGoC0DP3xGPoQ0T+cmLClOZ+RWkCIQDP
mf8JzkOV+RsgG0Pc+qo/Wbp4w0tNK19vcSKsimOOagB2AHPZnokbTJZ4oCB9R53m
ssYc0FFecRkqjGuAEHrBd3K1AAABh2toEosAAAQDAEcwRQIhAJFX+kjXlW5YSHiS
Ckojb58ogKmiyCx+9VGinOL6XZ2KAiB2m5O87rjh+dIOI+ybrVyh4mns60BpemyL
TQ4eaNrJPgB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABh2to
Eq8AAAQDAEgwRgIhAOGmusa51ky7usehpr2vCPZF3WGTlEFEYezqMqnyeXNQAiEA
plEd1zTWnfv3kAfrFFqcfFLJRaZLBGCisIXTKEyGGt4wDQYJKoZIhvcNAQELBQAD
ggEBAIEONnZ7QV6Pa5d8VoH7UpsySSO2JCJXOKc8dXqXgjPyZyEvwhFxNf/x/B6z
Na2m0ym/5+84HOC01rIuelsGcJcS/Rh9NbqdgvyqLOC4/WfBUyZqP5ItpBNw0yS1
S/ZjGfcYEWJGFPOilMHNtelkDyk5K9UDPz8VCUxGMJ5OlKtzIkY3iFLKjFuoGU/Q
ETmOzxkUtLZuArk0tx0dWvVVGUcHgt0KGuGmvy9J0MjWSChAL50/icscOve3anAS
xZJO0Va5OhYjSJqAnGP+lZW9wqXurDJlYxnh2JfqcPuqHW7zWYkb21v1GlAY7472
rB5a8S9DX7BIVYZY9MVqYMQ9uT4=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7+BRsNhvkuHS9pIpMAI+
SkIiPmtGl46Av9Q5rVEm0grFdI+8Swdxjd84tq7rMRxQtGsRbgJtIwpYekdu6lKT
XvVq+EEetcZufa3uOu0SFRoljFZPfNO26UTjAF01DAWbDkUTJp/poZmLYvu/2eAi
34L6pWkuV1i0RzwnlVqBQQbWLwP+ywHca0NqPMc1MReW6zCDPdSwlP9MrrPZsmDT
xfJSul2QBg9gIlEQlklTxr6bknY86rvBCHmiAtydLsLlkoqD6Hd3uaxDRed6cjsw
tImzSsgLbI6bAuL9ljgnTOIS4+5ZHf8SEuqjK27k0UFxqF9KQ1qb3NVDoKCXVwPv
JQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 8111088354566279345240971710006863417
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-10 13:43:15 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-13 13:43:15 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pittsburgh'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Highmark'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'apiweb.hmhs.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30281570760124380610994776116780688732810287095518427937484021768491378239142092429509757195319689465760995601826410946655235012042110147390897917908670172169895677649091298755053299652315812091573427564687984566129580901747855081111240036598237604779176230253222839288380277700935866675218749964617667429680715638417922071350217333165977933374775135872351094504426191770402100854228279983706086499783809521041156090559643575262299408280920555661102940501448358548154258184354847138258333151574382636902669957611718575346764667906770196925595953356076466264130052204466461460728677989365883958343781999474900606381861
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8033fdbe4168544e99ada3c5032a8698e01facb0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apiweb.hmhs.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.apiweb.hmhs.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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