myvw-jwtsign-qa.vw.com
- Volkswagen Group of America -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 33:b5:ad:37:cd:7a:a4:16:99:52:18:1e:ce:84:61:bc was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Volkswagen Group of America
Organization:
Volkswagen Group of America
State / Province:
Michigan
Locality: Auburn Hills
Country: US
Locality: Auburn Hills
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 33:b5:ad:37:cd:7a:a4:16:99:52:18:1e:ce:84:61:bcSerial Number (int): 68733946794428574190728293877081727420
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: bc:1b:23:4a:5d:28:38:57:a4:e6:34:f2:84:83:36:12:05:10:53:ba
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): df:d9:50:aa:43:52:d7:59:8d:e6:b2:5d:4c:62:75:80:92:a0:0c:18
Fingerprint (sha256): 2b:bc:30:2e:52:26:1d:65:71:da:1b:e1:7f:4f:4b:f5:08:be:73:bf:81:59:51:a3:cb:c9:c8:ca:53:ea:d7:a2
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate myvw-jwtsign-qa.vw.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for myvw-jwtsign-qa.vw.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
myvw-jwtsign-qa.vw.com
www.myvw-jwtsign-qa.vw.com
www.myvw-jwtsign-qa.vw.com
Other certificates including the domain name vw.com
(limited to 100 certificates)
Revproxypool1.vw.com
owp-int.vw.com
cnp-qa.vw.com
drivergear.vw.com
mdmac.vw.com
magazine.vw.com
access.vw.com
www.volkswagen.ca
ahshuttle.vw.com
b72e13222821ba90.cajwtsign.dev.vw.com
media.vw.com
www.drivergear.vw.com
view.em.vw.com
Revproxypool1.vw.com
rastc.vwgoasra.com
access.vw.com
akamai-san212.exacttarget.com
b-h-m.spc.us00.p.con-veh.net
qa-deploy.vw.com
imperva.com
update.vw.com
imperva.com
Revproxypool1.vw.com
akamai-san156.exacttarget.com
cnws-qa.vw.com
click.cn.vw.com
ows-int.vw.com
cnws-qa.vw.com
cnws.vw.com
parts.vw.com
acms-api-qa.vw.com
drivergear.vw.com
vwdesigns.vw.com
cloud.cn.vw.com
akamai-san156.exacttarget.com
cns-int.vw.com
cnp-int.vw.com
www.vw.com
www.vw.com
vwupgvehicle-vcms-api-prod.vw.com
myvw-jwtsign-www.vw.com
parts.vw.com
vwgoa.vw.com
erwin.vw.com
go.vw.com
vomscarnet.vw.com
erwin.vw.com
smetrics.vw.com
owp-qa.vw.com
rp.vw.com
Revproxypool1.vw.com
vw.vwag-k-iz-temp.vw.com
st-qa.vw.com
USMIAH1VCSE01.vw.com
smetrics.vw.com
dealers.vwemissionsinfo.ca
newsroom.vw.com
closer.vw.com
view.cn.vw.com
mobilemail2.vw.com
www.vw.com
vwgrouplmc.vw.com
www.volkswagen.ca
ws-gw-na.vw.com
myvw-jwtsign-qa.vw.com
odismail.vw.com
ws-gateway-cert.vw.com
cns.vw.com
ws-gw-na.vw.com
www.vw.com
ws-gateway-cert-qa.vw.com
ngw6-prod.vw.com
parts.vw.com
cnp-int.vw.com
imperva.com
newsroom.vw.com
parts.vw.com
access.vw.com
cns.vw.com
smartfleet.erl.vw.com
cns-qa.vw.com
access.vw.com
access.vw.com
USMIAH1VCSE02.vw.com
Revproxypool1.vw.com
appsxdev.vw.com
Revproxypool1.vw.com
go.vw.com
recall-qa.vw.com
deploy.vw.com
vwupgvehicle-acms-api-prod.vw.com
www.drivergear.vw.com
smetrics.vw.com
br2.vw.com
carnet.vw.com
clientupdates.vw.com
newsroom.vw.com
b-h-m.spc.us00.p.con-veh.net
vwgoa.vw.com
go.vw.com
owp-int.vw.com
cnp-qa.vw.com
drivergear.vw.com
mdmac.vw.com
magazine.vw.com
access.vw.com
www.volkswagen.ca
ahshuttle.vw.com
b72e13222821ba90.cajwtsign.dev.vw.com
media.vw.com
www.drivergear.vw.com
view.em.vw.com
Revproxypool1.vw.com
rastc.vwgoasra.com
access.vw.com
akamai-san212.exacttarget.com
b-h-m.spc.us00.p.con-veh.net
qa-deploy.vw.com
imperva.com
update.vw.com
imperva.com
Revproxypool1.vw.com
akamai-san156.exacttarget.com
cnws-qa.vw.com
click.cn.vw.com
ows-int.vw.com
cnws-qa.vw.com
cnws.vw.com
parts.vw.com
acms-api-qa.vw.com
drivergear.vw.com
vwdesigns.vw.com
cloud.cn.vw.com
akamai-san156.exacttarget.com
cns-int.vw.com
cnp-int.vw.com
www.vw.com
www.vw.com
vwupgvehicle-vcms-api-prod.vw.com
myvw-jwtsign-www.vw.com
parts.vw.com
vwgoa.vw.com
erwin.vw.com
go.vw.com
vomscarnet.vw.com
erwin.vw.com
smetrics.vw.com
owp-qa.vw.com
rp.vw.com
Revproxypool1.vw.com
vw.vwag-k-iz-temp.vw.com
st-qa.vw.com
USMIAH1VCSE01.vw.com
smetrics.vw.com
dealers.vwemissionsinfo.ca
newsroom.vw.com
closer.vw.com
view.cn.vw.com
mobilemail2.vw.com
www.vw.com
vwgrouplmc.vw.com
www.volkswagen.ca
ws-gw-na.vw.com
myvw-jwtsign-qa.vw.com
odismail.vw.com
ws-gateway-cert.vw.com
cns.vw.com
ws-gw-na.vw.com
www.vw.com
ws-gateway-cert-qa.vw.com
ngw6-prod.vw.com
parts.vw.com
cnp-int.vw.com
imperva.com
newsroom.vw.com
parts.vw.com
access.vw.com
cns.vw.com
smartfleet.erl.vw.com
cns-qa.vw.com
access.vw.com
access.vw.com
USMIAH1VCSE02.vw.com
Revproxypool1.vw.com
appsxdev.vw.com
Revproxypool1.vw.com
go.vw.com
recall-qa.vw.com
deploy.vw.com
vwupgvehicle-acms-api-prod.vw.com
www.drivergear.vw.com
smetrics.vw.com
br2.vw.com
carnet.vw.com
clientupdates.vw.com
newsroom.vw.com
b-h-m.spc.us00.p.con-veh.net
vwgoa.vw.com
go.vw.com
Certificate
The complete raw certificate details for myvw-jwtsign-qa.vw.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIQM7WtN816pBaZUhgezoRhvDANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDAyMTMxMjQ1MjVaFw0yNTAyMTMxMjQ1MjRaMH4xCzAJBgNVBAYTAlVTMREwDwYD VQQIEwhNaWNoaWdhbjEVMBMGA1UEBxMMQXVidXJuIEhpbGxzMSQwIgYDVQQKExtW b2xrc3dhZ2VuIEdyb3VwIG9mIEFtZXJpY2ExHzAdBgNVBAMTFm15dnctand0c2ln bi1xYS52dy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlcKAY sEOBxOpQArw3R38toReTU7W5wQ49l2P3krQ2g2SdtfRx0GNx/j4GiOrY7cHXaYQd dXJbYCOPitTvuP5+PgFCtsFrCCs9PssOtrH9tBw8PAC/tI83FPjQpvfVgfBf5d+i 4upu8EWmJxj5AiqF1OBVva3ifIR0TLBF58utH4DL4XFgdgg+LU1dNegm9Ru+vOQD eKPRbsh1Iq9MrxLZ9wUvl9AQ8gm58HJa02OsSNILhrryKP9f2TH77DncygjXrbxr IEm1dmXspVt/kn7v190OBVRS24mlMrNStgkgrdgJgi/vyn1ZdWi3vRElYOj4rLlD QxNPXz42iKfFVkoFAgMBAAGjggGJMIIBhTAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBS8GyNKXSg4V6TmNPKEgzYSBRBTujAfBgNVHSMEGDAWgBSConB03bxTP8971PfN f6dgxgpMvzBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3Nw LmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8vYWlhLmVudHJ1c3QubmV0 L2wxay1jaGFpbjI1Ni5jZXIwMwYDVR0fBCwwKjAooCagJIYiaHR0cDovL2NybC5l bnRydXN0Lm5ldC9sZXZlbDFrLmNybDA9BgNVHREENjA0ghZteXZ3LWp3dHNpZ24t cWEudncuY29tghp3d3cubXl2dy1qd3RzaWduLXFhLnZ3LmNvbTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBMGA1UdIAQMMAow CAYGZ4EMAQICMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBYU8m4AvsWkjAwf1T4dgrgIMGN3N+iahS3NAIki1cN4mgg5l4DU2MuOdgU0+99 pXdaWfn/FOBixncpKY9Q7R+JsEevar7KuSecfq++vvLbT4Y3M5aVy/rrYLLbD0Ol IUnNmTotjxIHHAIoy6niJVCDkpK7bd6AHCMRHQMIIbX3hQEOODCc56WbglpCZqjT 449m7k/ZGc8IdVHdrwk4ihsJflypuOvWMLpByKmwRag4mgI4sEvNWhLr70PXyKFw nZ19LSwOZUv7rxo++dv5JN9EcwC2wGbUHz0S/JJUb8jp8xHv38WTY4WoEZbeQ9YC qF4svEiBcJi9fvR0Bm0Y5ARU -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5XCgGLBDgcTqUAK8N0d/ LaEXk1O1ucEOPZdj95K0NoNknbX0cdBjcf4+Bojq2O3B12mEHXVyW2Ajj4rU77j+ fj4BQrbBawgrPT7LDrax/bQcPDwAv7SPNxT40Kb31YHwX+XfouLqbvBFpicY+QIq hdTgVb2t4nyEdEywRefLrR+Ay+FxYHYIPi1NXTXoJvUbvrzkA3ij0W7IdSKvTK8S 2fcFL5fQEPIJufByWtNjrEjSC4a68ij/X9kx++w53MoI1628ayBJtXZl7KVbf5J+ 79fdDgVUUtuJpTKzUrYJIK3YCYIv78p9WXVot70RJWDo+Ky5Q0MTT18+NoinxVZK BQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 68733946794428574190728293877081727420 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-13 12:45:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-13 12:45:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Michigan' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Auburn Hills' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Volkswagen Group of America' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'myvw-jwtsign-qa.vw.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28964109480402920813739692631913310664186298346383255900245952811242653428709996971100817741213103763950458806437373855827629079261692028125587076055344739793773600006899865039142648918077254714449831688404346955184509219003503479716283947165491532013259353835391552842395349707124377563328220160112701815071464839464402331466638081512806054992512529543685051930731902059424235230798196101609067406508756331450168844539788308136943386814146483131604170475414578721508830781970806101927480663170227497008904644099622714439910942655080477734791662065375468729861041797091640978882231915986152637616165091551803461749253 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bc1b234a5d283857a4e634f284833612051053ba . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myvw-jwtsign-qa.vw.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.myvw-jwtsign-qa.vw.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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