*.cafonline.com
- Confederation of African Football -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0c:eb:a8:59:0f:fb:92:02:17:c0:65:2e:74:48:5b:60 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Confederation of African Football
Organization:
Confederation of African Football
Locality:
6th of October City
Country: EG
Country: EG
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:eb:a8:59:0f:fb:92:02:17:c0:65:2e:74:48:5b:60Serial Number (int): 17174340212240957249862534502296345440
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 3a:89:a0:f6:02:d6:e3:c7:93:82:e9:4d:34:67:62:c6:ea:f3:b3:c5
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): f3:a1:0f:92:2e:cb:07:ed:1a:55:29:15:28:f8:8e:77:94:e7:d5:9e
Fingerprint (sha256): 29:32:95:ea:33:37:76:1c:a3:5c:e2:ca:b4:61:c6:1e:c8:86:0f:78:ec:93:99:13:5c:9e:f6:42:1e:eb:d8:98
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g7.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g7.crl
Check the revocation status for certificate *.cafonline.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.cafonline.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.cafonline.com
cafonline.com
cafonline.com
Other certificates including the domain name cafonline.com
(limited to 100 certificates)
*.cafonline.com
www.cafonline.com
helpdesk.zoolatech.com
support.cafonline.com
support.cafonline.com
*.cafonline.com
cahelpdesk.ca-usa.com
cahelpdesk.ca-usa.com
servicedesk.patri.com.br
ssl378358.cloudflaressl.com
fr.cafonline.com
ssl378358.cloudflaressl.com
sni.cloudflaressl.com
ssl378560.cloudflaressl.com
*.cafonline.com
www.cafonline.com
www.highq.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
sd.mareven.com
*.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
support.cafonline.com
ssl378357.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
ssl378558.cloudflaressl.com
ssl378357.cloudflaressl.com
*.cafonline.com
www.cafonline.com
ssl378560.cloudflaressl.com
ssl378358.cloudflaressl.com
sni.cloudflaressl.com
ssl378357.cloudflaressl.com
sni.cloudflaressl.com
servicedesk.patri.com.br
ssl378358.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
ssl378357.cloudflaressl.com
support.cafonline.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
support.cafonline.com
ssl378560.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
support.cafonline.com
support.cafonline.com
support.cafonline.com
www.cafonline.com
www.cafonline.com
www.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
servicedesk.gspretail.com
ssl378358.cloudflaressl.com
*.cafonline.com
support.cafonline.com
support.cafonline.com
ssl378359.cloudflaressl.com
cafonline.com
ssl378357.cloudflaressl.com
www.cafonline.com
support.cafonline.com
ssl378357.cloudflaressl.com
support.cafonline.com
www.cafonline.com
support.cafonline.com
support.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
cafonline.com
support.cafonline.com
www.cafonline.com
helpdesk.zoolatech.com
support.cafonline.com
support.cafonline.com
*.cafonline.com
cahelpdesk.ca-usa.com
cahelpdesk.ca-usa.com
servicedesk.patri.com.br
ssl378358.cloudflaressl.com
fr.cafonline.com
ssl378358.cloudflaressl.com
sni.cloudflaressl.com
ssl378560.cloudflaressl.com
*.cafonline.com
www.cafonline.com
www.highq.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
sd.mareven.com
*.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
support.cafonline.com
ssl378357.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
ssl378558.cloudflaressl.com
ssl378357.cloudflaressl.com
*.cafonline.com
www.cafonline.com
ssl378560.cloudflaressl.com
ssl378358.cloudflaressl.com
sni.cloudflaressl.com
ssl378357.cloudflaressl.com
sni.cloudflaressl.com
servicedesk.patri.com.br
ssl378358.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
ssl378357.cloudflaressl.com
support.cafonline.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
support.cafonline.com
ssl378560.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
support.cafonline.com
support.cafonline.com
support.cafonline.com
www.cafonline.com
www.cafonline.com
www.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
servicedesk.gspretail.com
ssl378358.cloudflaressl.com
*.cafonline.com
support.cafonline.com
support.cafonline.com
ssl378359.cloudflaressl.com
cafonline.com
ssl378357.cloudflaressl.com
www.cafonline.com
support.cafonline.com
ssl378357.cloudflaressl.com
support.cafonline.com
www.cafonline.com
support.cafonline.com
support.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
cafonline.com
support.cafonline.com
Certificate
The complete raw certificate details for *.cafonline.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIQDOuoWQ/7kgIXwGUudEhbYDANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMjAwOTMwMDAwMDAwWhcN MjEwNzEzMTIwMDAwWjBxMQswCQYDVQQGEwJFRzEcMBoGA1UEBxMTNnRoIG9mIE9j dG9iZXIgQ2l0eTEqMCgGA1UEChMhQ29uZmVkZXJhdGlvbiBvZiBBZnJpY2FuIEZv b3RiYWxsMRgwFgYDVQQDDA8qLmNhZm9ubGluZS5jb20wggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQC/mYyJ12n5aJU5lYQp1vBSAYa59utLUf7B7le6dlYD 1/1+oY4gzOTGxPl6LIs9tj9UV6UsNdFCCGQgRLQ18Q5yt6sBgNYxtNgAOhhvIrUQ VitbYVIEjhWCh+El+GnBJcQoCTUWCCG5nAbW77JqEJXo55QItrmQSC3ZOuE+cmPU 4wgDNSgq1F7JaS4xkAONMEe7zjAnCMUEAhipsjnxqtjzB3RKLbb2JGiLk94vfmiS hiznujBly7PNq/rpXMtmPnNPX7v7lbsBN2zSiFmVdBVMKLa/J1FxDnWpcY9amKgx 28ggxaxBYYNeXmJ9EE8/5SNLLSz+GsjOyfn6xQBPJwEVAgMBAAGjggH6MIIB9jAf BgNVHSMEGDAWgBQPgGEcgjFh1S8o541GOLQs4cbZ4jAdBgNVHQ4EFgQUOomg9gLW 48eTgulNNGdixurzs8UwKQYDVR0RBCIwIIIPKi5jYWZvbmxpbmUuY29tgg1jYWZv bmxpbmUuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQu Y29tL3NzY2Etc2hhMi1nNy5jcmwwL6AtoCuGKWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0 LmNvbS9zc2NhLXNoYTItZzcuY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCow KAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EM AQICMHwGCCsGAQUFBwEBBHAwbjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGln aWNlcnQuY29tMEYGCCsGAQUFBzAChjpodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5j b20vRGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0EuY3J0MAwGA1UdEwEB/wQCMAAw EwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAMdq95cDYtCC jjsTAufEX3RK2BbTnOjmo9aGXosGi+/3Q/W6mH0bSvEFh9S75EBGgm0vR15pfBMU xj2PBN7UCAIeOoDLgtbk5IoKSey2JXAI31Ouf7ojK2cKvysB7E23Wxp/ek/HqRKn 7RAK7vDs4fES4OlAasRasEn9Gvq4OWktZ25j0apJMMFFVaONWqHsHUp4IrgpLT07 n+FugnNCmRbFSknC3NUgli5rHPYhlU16SOcAo2fm1MYaW5FE1H8qjaPfZ48qCGvk gpLFf+7CWczez3uLhnUiiKqM9Mq6nIeuO14kpYdSAo/9ORKBO/gq5oV7/aN0PdRX Aeb7+K7ziLA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5mMiddp+WiVOZWEKdbw UgGGufbrS1H+we5XunZWA9f9fqGOIMzkxsT5eiyLPbY/VFelLDXRQghkIES0NfEO crerAYDWMbTYADoYbyK1EFYrW2FSBI4VgofhJfhpwSXEKAk1FgghuZwG1u+yahCV 6OeUCLa5kEgt2TrhPnJj1OMIAzUoKtReyWkuMZADjTBHu84wJwjFBAIYqbI58arY 8wd0Si229iRoi5PeL35okoYs57owZcuzzav66VzLZj5zT1+7+5W7ATds0ohZlXQV TCi2vydRcQ51qXGPWpioMdvIIMWsQWGDXl5ifRBPP+UjSy0s/hrIzsn5+sUATycB FQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17174340212240957249862534502296345440 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-07-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'EG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '6th of October City' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Confederation of African Football' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.cafonline.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24187234071755775714817110489516209486204383102657625423451888752719823310740524238535421278713635970531322661483235777681848061157895779854072885468764254375975383586614481805677611182582211704546692826700761416828327520949259642615573193127175027606649941620565403599515120614847972517953725303249719799141960893038564213512042224522716076571888441912786042983252872588122830846186905377173215154340957141582448067718088322825676778609684186036433924606653416105732755978718899852800215924777613068726719970046616539191268345674889679102106874435590233761967709407926581394757785090456808116238653256203295328239893 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3a89a0f602d6e3c79382e94d346762c6eaf3b3c5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cafonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cafonline.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g7.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g7.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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