www.avera.org
- Avera Health -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0d:d0:b7:99:61:3b:49:70:9a:6e:f4:06:75:d4:70:c6 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Avera Health
Organization:
Avera Health
State / Province:
South Dakota
Locality: Sioux Falls
Country: US
Locality: Sioux Falls
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:d0:b7:99:61:3b:49:70:9a:6e:f4:06:75:d4:70:c6Serial Number (int): 18363685524737202818559489744376721606
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 8f:80:76:03:9b:40:02:93:f9:00:da:60:b5:42:82:a7:e2:b5:01:c8
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 9c:19:93:89:03:74:57:3a:36:0b:8c:4a:4e:78:ff:17:84:1a:4c:51
Fingerprint (sha256): 29:aa:f1:48:85:2f:29:8c:db:8a:f8:54:4d:16:c4:e8:5e:d0:51:ab:79:65:3c:b6:3d:3a:60:ff:09:00:83:46
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate www.avera.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.avera.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.avera.org
avera.org
avera.org
Other certificates including the domain name avera.org
(limited to 100 certificates)
view.avera.org
mail1.avera.org
www.avera.org
mig.avera.org
fhq.avera.org
voalte3sb.voalte.avera.org
specialtyrx.avera.org
www1.avera.org
www.avera.org
rsa.avera.org
admin-webex.phs-sfalls.amck.net
citrix.avera.org
mail1.avera.org
mail.avera.org
goecare.avera.org
redcap.avera.org
view.avera.org
rx.avera.org
admin-webex.phs-sfalls.amck.net
mail.avera.org
staffportal.avera.org
gwextdc2.pa.avera.org
portal.avera.org
MTTASKDATA.avera.org
gwinetdc2.pa.avera.org
www.avera.org
view.avera.org
www.avera.org
teletracking.avera.org
view.avera.org
fhq.avera.org
mail2.avera.org
voalte3sb.voalte.avera.org
gwinetdc1.pa.avera.org
securelink.avera.org
www.avera.org
rxm.avera.org
portal.avera.org
portal.avera.org
www.avera.org
redcap.avera.org
mig.avera.org
meeting.avera.org
mail.avera.org
www.avera.org
avera.org
sso.avera.org
avera-exp-e-cluster.avera.org
mail1.avera.org
www1.avera.org
staffportal.avera.org
view.avera.org
portal.pa.avera.org
mig.avera.org
redcap.avera.org
rxm.avera.org
staffportal.avera.org
mail.avera.org
view.avera.org
www.avera.org
mig.avera.org
www.avera.org
mig.avera.org
sso.avera.org
voalte3.voalte.avera.org
MTGLOBALAPI.avera.org
mig.avera.org
mig.avera.org
mail.avera.org
rsa.avera.org
rx.avera.org
voalte3.voalte.avera.org
portal2.avera.org
www.avera.org
portal.avera.org
rsa.avera.org
view.avera.org
admin-webex.phs-sfalls.amck.net
mail.avera.org
mail1.avera.org
admin-webex.phs-sfalls.amck.net
fhq.avera.org
mail.avera.org
fhq.avera.org
voalte3.voalte.avera.org
gwextdc1.pa.avera.org
redcap.avera.org
voalte3sb.voalte.avera.org
portal.avera.org
www.avera.org
view.avera.org
www.avera.org
admin-webex.phs-sfalls.amck.net
goecare.avera.org
FormerStaffPortal.Avera.org
mig.avera.org
portal.avera.org
avera.org
portal.avera.org
rsa.avera.org
mail1.avera.org
www.avera.org
mig.avera.org
fhq.avera.org
voalte3sb.voalte.avera.org
specialtyrx.avera.org
www1.avera.org
www.avera.org
rsa.avera.org
admin-webex.phs-sfalls.amck.net
citrix.avera.org
mail1.avera.org
mail.avera.org
goecare.avera.org
redcap.avera.org
view.avera.org
rx.avera.org
admin-webex.phs-sfalls.amck.net
mail.avera.org
staffportal.avera.org
gwextdc2.pa.avera.org
portal.avera.org
MTTASKDATA.avera.org
gwinetdc2.pa.avera.org
www.avera.org
view.avera.org
www.avera.org
teletracking.avera.org
view.avera.org
fhq.avera.org
mail2.avera.org
voalte3sb.voalte.avera.org
gwinetdc1.pa.avera.org
securelink.avera.org
www.avera.org
rxm.avera.org
portal.avera.org
portal.avera.org
www.avera.org
redcap.avera.org
mig.avera.org
meeting.avera.org
mail.avera.org
www.avera.org
avera.org
sso.avera.org
avera-exp-e-cluster.avera.org
mail1.avera.org
www1.avera.org
staffportal.avera.org
view.avera.org
portal.pa.avera.org
mig.avera.org
redcap.avera.org
rxm.avera.org
staffportal.avera.org
mail.avera.org
view.avera.org
www.avera.org
mig.avera.org
www.avera.org
mig.avera.org
sso.avera.org
voalte3.voalte.avera.org
MTGLOBALAPI.avera.org
mig.avera.org
mig.avera.org
mail.avera.org
rsa.avera.org
rx.avera.org
voalte3.voalte.avera.org
portal2.avera.org
www.avera.org
portal.avera.org
rsa.avera.org
view.avera.org
admin-webex.phs-sfalls.amck.net
mail.avera.org
mail1.avera.org
admin-webex.phs-sfalls.amck.net
fhq.avera.org
mail.avera.org
fhq.avera.org
voalte3.voalte.avera.org
gwextdc1.pa.avera.org
redcap.avera.org
voalte3sb.voalte.avera.org
portal.avera.org
www.avera.org
view.avera.org
www.avera.org
admin-webex.phs-sfalls.amck.net
goecare.avera.org
FormerStaffPortal.Avera.org
mig.avera.org
portal.avera.org
avera.org
portal.avera.org
rsa.avera.org
Certificate
The complete raw certificate details for www.avera.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGnjCCBYagAwIBAgIQDdC3mWE7SXCabvQGddRwxjANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwMzA2MDAwMDAwWhcN MjAwMjAzMTIwMDAwWjBpMQswCQYDVQQGEwJVUzEVMBMGA1UECBMMU291dGggRGFr b3RhMRQwEgYDVQQHEwtTaW91eCBGYWxsczEVMBMGA1UEChMMQXZlcmEgSGVhbHRo MRYwFAYDVQQDEw13d3cuYXZlcmEub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAyZQKrXWxX/6Z7Rx1hJ1ceiLtoDWzB2/GI16U4MD+OyQpt7k0CmmI ck+s3Y+QU/MrRlOWPZ/2Xb1gK/PgMAnyP96O+J4iEvh7uBGwIUzpM7JIKNV/CXwF 0uod0ff/A+1o6C2hglre25Hy3GqEgXpK6T7huye/Mk1g7RQhB1/2ALbc0jlK7tEX BPN9YR9v+BLWq83pAqqEyW9VX37Ib4ueIMHo9uMguR1afXVqZazzKJcmtExf6tc6 48IyM4G6nN50+4qfCyZ8EOXZlubViAq0hdYykJBjXAD8/YhYLTrMlawAMJISVwMC 7WlcXrnPT+H+m37p7n2a2Lyix+ZXJFqv3QIDAQABo4IDXDCCA1gwHwYDVR0jBBgw FoAUD4BhHIIxYdUvKOeNRji0LOHG2eIwHQYDVR0OBBYEFI+AdgObQAKT+QDaYLVC gqfitQHIMCMGA1UdEQQcMBqCDXd3dy5hdmVyYS5vcmeCCWF2ZXJhLm9yZzAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGsGA1Ud HwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTIt ZzYuY3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc3NjYS1zaGEy LWc2LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxo dHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB8BggrBgEFBQcB AQRwMG4wJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBGBggr BgEFBQcwAoY6aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hB MlNlY3VyZVNlcnZlckNBLmNydDAJBgNVHRMEAjAAMIIBfAYKKwYBBAHWeQIEAgSC AWwEggFoAWYAdQCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAWH7 zbEHAAAEAwBGMEQCICCh8THVbAK01ylOiwFlCC4TDWSaKL9BOXT2ET0kkUokAiAe 1Y4b0wBCZagVUid8tGidOcWKjb+pDIfEGk4W2+hqsAB2AG9Tdqwx8DEZ2JkApFEV /3cVHBHZAsEAKQaNsgiaN9kTAAABYfvNsj0AAAQDAEcwRQIhAOstILJ3FvmYRAVG 5Ug8xhWDuiLMMBBRrHt4pDtKFsY5AiBXLliZvQbK4HKut71rLjX1TuCV0PEM2Onm cq+qsrQuwAB1ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABYfvN sbMAAAQDAEYwRAIgb7feTkhN9n3PDQtVZPWB5XIu03rCP0Wz+lT8BYYLOlYCIDCW 9Kn4KLvwW8gR//A5j4nGcYHv27ZO/hN9aMy6HTi3MA0GCSqGSIb3DQEBCwUAA4IB AQBiLVR7cMOCL5gZuAjoqCLtsK/9IDZWLyrlqy4bAsfB/TuQGT+vvwUvXWJLlL7O buk4WR2Wb6fmnn5qKFk6UB/tY6e4v/6u+Us21BoH/Tjs5UdsW954z7QgE2KomaDo FfjqhxsqT8bdELzVrj0jNg4k2IitGCj8xhijdTBsY5Y/M6iIMeiv1tzIBHBGxliM j42hLDUi+BA30OThJ6XtKI7mXdUKeV3CfTV4XHHZqcyTYuPr/p5fwHXyzj1bNrro Dc0sBsbpVNI3uwnWCibaab0jcxDkm8oi7TO3Rtxgmk4EABEUfTZh/U8/nrsy/EYn MIMPb/3mltaqmDq1RCb7xDVV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZQKrXWxX/6Z7Rx1hJ1c eiLtoDWzB2/GI16U4MD+OyQpt7k0CmmIck+s3Y+QU/MrRlOWPZ/2Xb1gK/PgMAny P96O+J4iEvh7uBGwIUzpM7JIKNV/CXwF0uod0ff/A+1o6C2hglre25Hy3GqEgXpK 6T7huye/Mk1g7RQhB1/2ALbc0jlK7tEXBPN9YR9v+BLWq83pAqqEyW9VX37Ib4ue IMHo9uMguR1afXVqZazzKJcmtExf6tc648IyM4G6nN50+4qfCyZ8EOXZlubViAq0 hdYykJBjXAD8/YhYLTrMlawAMJISVwMC7WlcXrnPT+H+m37p7n2a2Lyix+ZXJFqv 3QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18363685524737202818559489744376721606 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-03 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'South Dakota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sioux Falls' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Avera Health' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.avera.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25446901385851555734578990531277054262267152395099590307536282930500259615524776419747310470279934077580275783860113084026260505430342677165314296450693153254280801889498424466179366367538498778196207311905462993438198605554750112851144828759979412838909319652077806212374850742625886563467072465144697598737699316061610566820049735580198711618536879663424476997434461358884785926027735748218748070843032864647721683227990884276900520463972410336997821068214996825941393979825104219161530788594761393659916710498104542874356862067667800562614582994069050327680415081201637845431627673062280515262818378831690334908381 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8f8076039b400293f900da60b54282a7e2b501c8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avera.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avera.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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