www.avon.kz
- Avon Products Inc -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 06:cf:95:3f:14:af:13:d3:52:4f:ac:5b:63:b4:4d:0b was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Avon Products Inc
Organization:
Avon Products Inc
Organization unit: Global IT
Organization unit: Global IT
State / Province:
New York
Locality: Rye
Country: US
Locality: Rye
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:cf:95:3f:14:af:13:d3:52:4f:ac:5b:63:b4:4d:0bSerial Number (int): 9053200501232742892091875934369762571
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 57:73:f5:79:cc:13:d3:c6:38:66:f5:bc:fc:11:09:1d:b9:9f:c8:1c
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 7b:cd:08:02:b2:7f:b0:5d:11:33:60:5e:e7:6a:5c:63:a4:9a:8b:cd
Fingerprint (sha256): 2d:4e:70:3e:dd:76:a6:af:a1:5a:a6:8f:d5:21:b3:3d:f5:35:80:59:e1:14:ed:a0:47:cc:28:61:3e:38:05:8e
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate www.avon.kz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.avon.kz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.avon.kz
www.avon.kz
www.avon.kz
Other certificates including the domain name avon.kz
(limited to 100 certificates)
tools.avon.kz
io.avon.kz
go.avon.kz
qaf.office.avon.kz
tools.avon.kz
tools.avon.kz
static1.br.avon.com
avon.kz
tools.avon.kz
static1.br.avon.com
promo.avon.kz
my.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
dnevniki.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
www.avon.kz
qaf.office.avon.kz
avon.kz
kz.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
www.avon.kz
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
my.avon.kz
qaf.office.avon.kz
qaf.office.avon.kz
static1.br.avon.com
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
io.avon.kz
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
promo.avon.kz
www.avon.kz
static1.br.avon.com
dnevniki.avon.kz
tools.avon.kz
dnevniki.avon.kz
go.avon.kz
static1.br.avon.com
static1.br.avon.com
www.avon.kz
static1.br.avon.com
*.avon.kz
promo.avon.kz
go.avon.kz
*.office.avon.kz
static1.br.avon.com
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
avon.com
my.avon.kz
promo.avon.kz
io.avon.kz
go.avon.kz
qaf.office.avon.kz
tools.avon.kz
tools.avon.kz
static1.br.avon.com
avon.kz
tools.avon.kz
static1.br.avon.com
promo.avon.kz
my.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
dnevniki.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
www.avon.kz
qaf.office.avon.kz
avon.kz
kz.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
www.avon.kz
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
my.avon.kz
qaf.office.avon.kz
qaf.office.avon.kz
static1.br.avon.com
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
io.avon.kz
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
promo.avon.kz
www.avon.kz
static1.br.avon.com
dnevniki.avon.kz
tools.avon.kz
dnevniki.avon.kz
go.avon.kz
static1.br.avon.com
static1.br.avon.com
www.avon.kz
static1.br.avon.com
*.avon.kz
promo.avon.kz
go.avon.kz
*.office.avon.kz
static1.br.avon.com
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
avon.com
my.avon.kz
promo.avon.kz
Certificate
The complete raw certificate details for www.avon.kz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIQBs+VPxSvE9NST6xbY7RNCzANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgxMTMwMDAwMDAwWhcN MjAxMTMwMTIwMDAwWjB0MQswCQYDVQQGEwJVUzERMA8GA1UECBMITmV3IFlvcmsx DDAKBgNVBAcTA1J5ZTEaMBgGA1UEChMRQXZvbiBQcm9kdWN0cyBJbmMxEjAQBgNV BAsTCUdsb2JhbCBJVDEUMBIGA1UEAxMLd3d3LmF2b24ua3owggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC0NJjjUuO1o25QDS/pu7WKhxyHyb1tGxYq0wK7 qyGDunOiRGt6ujRJDpSrahMGtKB+ZKXcnTaX7IB6ol/fV8iN5rbr9drRBqta5Jy0 4x3gW0c9MIKKi3InSw2YhYv4/4AJxO+Dfe3aZCKPb+S2TEq6gOom2XV89hnHbIkD fltwvaJ0kuflN3s7H6VPOjBIS8G104JFOSWaswMR5AUc3gljHvgIxPToyR1a69Z+ Vw1tQuD/jntjhODBMmBdIJ9Q7b0+KorwhezRsoUlV7Mv3mWEE9kyqldj4fd/D1Nv hVob52oxuE6+6AxuZyWBfSirWCLX81ZnsO/SUlArnLMdf6qZAgMBAAGjggHvMIIB 6zAfBgNVHSMEGDAWgBQPgGEcgjFh1S8o541GOLQs4cbZ4jAdBgNVHQ4EFgQUV3P1 ecwT08Y4ZvW8/BEJHbmfyBwwIQYDVR0RBBowGIIJKi5hdm9uLmt6ggt3d3cuYXZv bi5rejAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9z c2NhLXNoYTItZzYuY3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20v c3NjYS1zaGEyLWc2LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsG AQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB8 BggrBgEFBQcBAQRwMG4wJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0 LmNvbTBGBggrBgEFBQcwAoY6aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMlNlY3VyZVNlcnZlckNBLmNydDAJBgNVHRMEAjAAMBMGCisGAQQB 1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBCZHklOPRuewIGyv+Yp5HV 4U+cXnrVUgIFf/x2aBOAlIjO1FMoH0QPjNgAqBGgRt87Pq++FFKYsOKDeUweD+gS dTZj5cAvFPbx+CKPSg46WjZLZpmOAkbg9x+SPcfsAqtRbzF57vckpOx01YAKorr0 +O+SsThBZDf70OE0hvwahCT6GK9mq4skxizyPv6N0CKa/y2bqO1v3YKKWw/gLNKP 9w9G9su4VhipOadXdoh4tOAe029TZzz7PM7yF90SAn1i4/qkKJB+lv9YfKw43FKV RNNOQuJDars/8dvJonmiS7aTuw9+9Qj7A1qYN5YjBrNueRlIwT3k0xwGS4LbRi2l -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDSY41LjtaNuUA0v6bu1 iocch8m9bRsWKtMCu6shg7pzokRrero0SQ6Uq2oTBrSgfmSl3J02l+yAeqJf31fI jea26/Xa0QarWuSctOMd4FtHPTCCiotyJ0sNmIWL+P+ACcTvg33t2mQij2/ktkxK uoDqJtl1fPYZx2yJA35bcL2idJLn5Td7Ox+lTzowSEvBtdOCRTklmrMDEeQFHN4J Yx74CMT06MkdWuvWflcNbULg/457Y4TgwTJgXSCfUO29PiqK8IXs0bKFJVezL95l hBPZMqpXY+H3fw9Tb4VaG+dqMbhOvugMbmclgX0oq1gi1/NWZ7Dv0lJQK5yzHX+q mQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9053200501232742892091875934369762571 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-30 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rye' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Avon Products Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Global IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.avon.kz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22748831549096856188193727828891544856156694836360793966614606183992715419252849335144460989990678841259107640557153749728219152992153886214107662156418158005493314062005807796230694300708093069760285970138230412125481091256772515815368124964520518107888395443075163195585047319419846792945195199413890519782124287248361882013587213000535954913880932565949264964613801755051382396907982065829412807378017716854055846546376757734441113793534458650397271311029040915573660891978163944121560542265448473716552555674874845679492499824396880404673527966290277375853788423209014737627675240972540519470901398710861332195993 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5773f579cc13d3c63866f5bcfc11091db99fc81c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avon.kz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.kz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 004264792538f46e7b0206caff98a791d5e14f9c5e7ad55202057ffc766813809488ced453281f440f8cd800a811a046df3b3eafbe145298b0e283794c1e0fe812753663e5c02f14f6f1f8228f4a0e3a5a364b66998e0246e0f71f923dc7ec02ab516f3179eef724a4ec74d5800aa2baf4f8ef92b138416437fbd0e13486fc1a8424fa18af66ab8b24c62cf23efe8dd0229aff2d9ba8ed6fdd828a5b0fe02cd28ff70f46f6cbb85618a939a757768878b4e01ed36f53673cfb3ccef217dd12027d62e3faa428907e96ff587cac38dc529544d34e42e2436abb3ff1dbc9a279a24bb693bb0f7ef508fb035a9837962306b36e791948c13de4d31c064b82db462da5