mediobanca.com
- Mediobanca Innovation Services -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 3b:06:ea:5f:d7:93:be:40:00:00:00:00:50:f1:af:8f was issued on by Entrust, Inc..
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Mediobanca Innovation Services
Organization:
Mediobanca Innovation Services
Locality:
Milano
Country: IT
Country: IT
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 3b:06:ea:5f:d7:93:be:40:00:00:00:00:50:f1:af:8fSerial Number (int): 78460359209701826450382980793861517199
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: a3:9e:e9:06:13:75:79:b9:70:41:88:5f:76:24:2e:bc:06:be:df:1f
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 0d:38:03:c9:eb:bb:15:30:c1:ee:cf:37:a8:ec:4f:9c:17:f7:1c:7d
Fingerprint (sha256): 28:b3:c7:5e:53:6b:c0:69:e6:84:d9:61:d1:e9:f6:be:49:b2:66:aa:1e:fb:f7:14:10:3a:cc:ad:47:92:ef:55
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate mediobanca.com
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mediobanca.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mediobanca.com
www.mediobanca.com
m.mediobanca.it
mediobanca.it
mediobanca.lu
mediobancaint.lu
raccoltaproprietaria.mediobanca.com
raccoltaproprietaria.mediobanca.it
www.mediobanca.it
www.mediobanca.lu
www.mediobancaint.lu
www.mediobanca.com
m.mediobanca.it
mediobanca.it
mediobanca.lu
mediobancaint.lu
raccoltaproprietaria.mediobanca.com
raccoltaproprietaria.mediobanca.it
www.mediobanca.it
www.mediobanca.lu
www.mediobancaint.lu
Other certificates including the domain name mediobanca.com
(limited to 100 certificates)
*.mediobanca.com
www.in.mediobanca.com
mediobancasustainablefinancehub.mediobanca.com
vdi.mediobanca.com
www.in.mediobanca.com
abaco.mediobanca.com
www.in.mediobanca.com
lifetime.mediobanca.com
lifetime-prd.int.mediobanca.com
lm.mis.mediobanca.com
events.mediobanca.com
mediobanca.com
www.mediobanca.com
*.int.mediobanca.com
mediobanca.com
*.int.mediobanca.com
*.mis.mediobanca.com
*.mis.mediobanca.com
xpise01.mis.mediobanca.com
mediobanca.com
mediobanca.com
intunegwexc.mis.mediobanca.com
www.mediobanca.com
digiventsm1.mediobanca.com
*.mis.mediobanca.com
idgfunc.mis.mediobanca.com
intranetmb.mediobanca.com
*.mis.mediobanca.com
research.mediobanca.com
xpise01.mis.mediobanca.com
xpise02.mis.mediobanca.com
dbw-fmipoc.mis.mediobanca.com
idgtoc.mis.mediobanca.com
events.mediobanca.com
*.mis.mediobanca.com
www.mediobanca.com
vdi.mediobanca.com
*.mis.mediobanca.com
board.mediobanca.com
*.mediobanca.com
mediobanca.com
idgtoc.mis.mediobanca.com
aodocs.integration.mediobanca.com
mdm.mediobanca.com
www.mediobanca.com
archiviostorico.mediobanca.com
abaco.mediobanca.com
intranetmb.mediobanca.com
lifetime-svi.int.mediobanca.com
eap01.mediobanca.com
lifetime.int.mediobanca.com
mediobanca.com
archiviostorico.mediobanca.com
lifetime-col.int.mediobanca.com
mxm.mis.mediobanca.com
aodocs-cert.integration.mediobanca.com
www.in.mediobanca.com
lm.mis.mediobanca.com
aodocs-cert.integration.mediobanca.com
xpise02.mis.mediobanca.com
mediobanca.com
www.in.mediobanca.com
*.mediobanca.com
idgfunc.mis.mediobanca.com
*.mediobanca.com
lifetime-svi.mediobanca.com
aodocs.integration.mediobanca.com
ndes.mis.mediobanca.com
www.in.mediobanca.com
mediobancasustainablefinancehub.mediobanca.com
vdi.mediobanca.com
www.in.mediobanca.com
abaco.mediobanca.com
www.in.mediobanca.com
lifetime.mediobanca.com
lifetime-prd.int.mediobanca.com
lm.mis.mediobanca.com
events.mediobanca.com
mediobanca.com
www.mediobanca.com
*.int.mediobanca.com
mediobanca.com
*.int.mediobanca.com
*.mis.mediobanca.com
*.mis.mediobanca.com
xpise01.mis.mediobanca.com
mediobanca.com
mediobanca.com
intunegwexc.mis.mediobanca.com
www.mediobanca.com
digiventsm1.mediobanca.com
*.mis.mediobanca.com
idgfunc.mis.mediobanca.com
intranetmb.mediobanca.com
*.mis.mediobanca.com
research.mediobanca.com
xpise01.mis.mediobanca.com
xpise02.mis.mediobanca.com
dbw-fmipoc.mis.mediobanca.com
idgtoc.mis.mediobanca.com
events.mediobanca.com
*.mis.mediobanca.com
www.mediobanca.com
vdi.mediobanca.com
*.mis.mediobanca.com
board.mediobanca.com
*.mediobanca.com
mediobanca.com
idgtoc.mis.mediobanca.com
aodocs.integration.mediobanca.com
mdm.mediobanca.com
www.mediobanca.com
archiviostorico.mediobanca.com
abaco.mediobanca.com
intranetmb.mediobanca.com
lifetime-svi.int.mediobanca.com
eap01.mediobanca.com
lifetime.int.mediobanca.com
mediobanca.com
archiviostorico.mediobanca.com
lifetime-col.int.mediobanca.com
mxm.mis.mediobanca.com
aodocs-cert.integration.mediobanca.com
www.in.mediobanca.com
lm.mis.mediobanca.com
aodocs-cert.integration.mediobanca.com
xpise02.mis.mediobanca.com
mediobanca.com
www.in.mediobanca.com
*.mediobanca.com
idgfunc.mis.mediobanca.com
*.mediobanca.com
lifetime-svi.mediobanca.com
aodocs.integration.mediobanca.com
ndes.mis.mediobanca.com
Certificate
The complete raw certificate details for mediobanca.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIAzCCBuugAwIBAgIQOwbqX9eTvkAAAAAAUPGvjzANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x OTA1MTUxMDIyMDhaFw0yMTA1MTMxMDUyMDdaMGAxCzAJBgNVBAYTAklUMQ8wDQYD VQQHEwZNaWxhbm8xJzAlBgNVBAoTHk1lZGlvYmFuY2EgSW5ub3ZhdGlvbiBTZXJ2 aWNlczEXMBUGA1UEAxMObWVkaW9iYW5jYS5jb20wggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQJ3USI5JKBcbAgIZUtIkyc6gzz1TZYJr2CQz5TL9zsUrW C/dqGkusrrR1OSMVXX5xExaYKXkxcYsmsXiMzBHMBYtqNOGb+aYNkbTG3nBMA+PP kv0exYWI+Tkv+wxgh7ces4iUCKb2qE/lXcxaqq8oAZxjoIF4yGwrqR1iiWJq7g3I NhtDrLr2RJ4QVq7uLrttDheioN+lLeBuM8WgZiwuNURa1WaIO82LjsoC+Bv9LM+0 uu83/gI4VlQw42qb6V827O8MbkiaTAlE+1LV1fujakEcapoBo3QhoL2O2oKkOIbU 4HGFUs3I8mdre5RleYDtqRGCYkIz/ceBGD4NiKUtAgMBAAGjggRcMIIEWDCB9QYD VR0RBIHtMIHqgg5tZWRpb2JhbmNhLmNvbYISd3d3Lm1lZGlvYmFuY2EuY29tgg9t Lm1lZGlvYmFuY2EuaXSCDW1lZGlvYmFuY2EuaXSCDW1lZGlvYmFuY2EubHWCEG1l ZGlvYmFuY2FpbnQubHWCI3JhY2NvbHRhcHJvcHJpZXRhcmlhLm1lZGlvYmFuY2Eu Y29tgiJyYWNjb2x0YXByb3ByaWV0YXJpYS5tZWRpb2JhbmNhLml0ghF3d3cubWVk aW9iYW5jYS5pdIIRd3d3Lm1lZGlvYmFuY2EubHWCFHd3dy5tZWRpb2JhbmNhaW50 Lmx1MIIB9gYKKwYBBAHWeQIEAgSCAeYEggHiAeAAdQCHdb/nWXz4jEOZX73zbv9W jUdWNv9KtWDBtOr/XqCDDwAAAWq7HveqAAAEAwBGMEQCIEqw7KjRq2/X3Sh/tOhT eIGPUNROd1z0HzPJmz91UytaAiBc3MTRwJEfw5lmKyEEEvWNSixbjyTQIleGEggu zw1WuAB3AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABarse984A AAQDAEgwRgIhAMTNXsTKKEUpWDCsRA8by2sgXrk0fhGw0rk6hN9rLfeCAiEAzO2q Up46Av7vanhW+0bMW6fEqoYIBufXwsmkmwtfTdQAdgBWFAaaL9fC7NP14b1Esj7H Rna5vJkRXMDvlJhV1onQ3QAAAWq7HvfnAAAEAwBHMEUCIDnc7fqTwBO2zk+pVeHr nn8kU2vEkm7Cg1TvH1s3IW1dAiEA9IO42zAjTJns59OX7I2W41nGy8mRWaaqBndO AmiPCPIAdgC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAWq7Hvfv AAAEAwBHMEUCIEsN4PErJ5YvUDrUxfoRXuv7m8RR1KYlnCxhCz9zITX1AiEA8bHH dFtu3fWCy2CBNAufhZZQAo62YFEP0Oh7gImfS7IwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAzBgNVHR8ELDAqMCigJqAkhiJo dHRwOi8vY3JsLmVudHJ1c3QubmV0L2xldmVsMWsuY3JsMEsGA1UdIAREMEIwNgYK YIZIAYb6bAoBBTAoMCYGCCsGAQUFBwIBFhpodHRwOi8vd3d3LmVudHJ1c3QubmV0 L3JwYTAIBgZngQwBAgIwaAYIKwYBBQUHAQEEXDBaMCMGCCsGAQUFBzABhhdodHRw Oi8vb2NzcC5lbnRydXN0Lm5ldDAzBggrBgEFBQcwAoYnaHR0cDovL2FpYS5lbnRy dXN0Lm5ldC9sMWstY2hhaW4yNTYuY2VyMB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU 981/p2DGCky/MB0GA1UdDgQWBBSjnukGE3V5uXBBiF92JC68Br7fHzAJBgNVHRME AjAAMA0GCSqGSIb3DQEBCwUAA4IBAQDRZSpBMkud4SBGbqBl4utHuAOyKHnecFdp GWb10o+BsAGmQ6ptCJOcCpL8/acRZ2xc0leL1Q0wBsuOasVftj7u9V2j/eWc7qRg 4HB7C65mlvfEt3wt/VrtcKdQtehLc22RLydDgSBFUtCozx1MnsTTx7U4qxitcc3Q ip2LMUPVIW0TNNohzxhXUieaq9nOv2r/iDHEVYI8VsNPozfv535fyP6mk/xmRmDQ DTf97XUX1SJlA37CbYIlIGVPJj25shGp2gv8wycrG8dXy6pBKYWRhoBZf5x3+PE8 qPbEzFVnYbzPG9Gabuhea3pFMqYix6vSNGcm6/X20gaeKeGzdDPM -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Cd1EiOSSgXGwICGVLSJ MnOoM89U2WCa9gkM+Uy/c7FK1gv3ahpLrK60dTkjFV1+cRMWmCl5MXGLJrF4jMwR zAWLajThm/mmDZG0xt5wTAPjz5L9HsWFiPk5L/sMYIe3HrOIlAim9qhP5V3MWqqv KAGcY6CBeMhsK6kdYoliau4NyDYbQ6y69kSeEFau7i67bQ4XoqDfpS3gbjPFoGYs LjVEWtVmiDvNi47KAvgb/SzPtLrvN/4COFZUMONqm+lfNuzvDG5ImkwJRPtS1dX7 o2pBHGqaAaN0IaC9jtqCpDiG1OBxhVLNyPJna3uUZXmA7akRgmJCM/3HgRg+DYil LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 78460359209701826450382980793861517199 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-15 10:22:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-13 10:52:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Milano' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mediobanca Innovation Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mediobanca.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26277024556705944178609234518926148346888014592367120268428701954308331277044524996633633571969334402066424816668323381979938473204674944089168352547846583293331375416883256172751929725230473941238168021367051188767416542329743838419692894891301227321965375669606182873563503751232566442154901300654158547255661787163641471322335997007096118620160492460184581143902913519478875001645678561997220684753687974972770354690243400178382061231366492569440943138502143321009973739972475434234011567211296794047182336125539564355757105434377509706828495955107490934049712794195229993798963012214264612052894432898947708658989 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (237 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mediobanca.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mediobanca.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.mediobanca.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mediobanca.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mediobanca.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mediobancaint.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'raccoltaproprietaria.mediobanca.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'raccoltaproprietaria.mediobanca.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mediobanca.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mediobanca.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mediobancaint.lu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a39ee906137579b97041885f76242ebc06bedf1f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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