data.cambridgema.gov
Issued by AlphaSSL CA - SHA256 - G2
About this certificate
This digital certificate with serial number 1c:84:48:83:65:f0:ca:27:0f:59:d1:d7 was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=data.cambridgema.gov,OU=Domain Control Validated
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 1c:84:48:83:65:f0:ca:27:0f:59:d1:d7Serial Number (int): 8825500917442626507113091543
Serial Number lenght: 93 bits, 12 octets
SubjectKeyId: f7:cc:8f:93:3c:77:fb:3a:7a:ca:d9:db:40:ef:c0:5d:bf:e5:10:5f
AuthorityKeyId: f5:cd:d5:3c:08:50:f9:6a:4f:3a:b7:97:da:56:83:e6:69:d2:68:f7
Fingerprint (sha1): d9:3c:ac:71:17:af:6a:ee:8f:a7:cc:87:c6:85:c1:b2:98:8e:2d:d4
Fingerprint (sha256): 2d:98:f6:0f:7c:91:66:50:f1:44:33:58:54:9e:e0:f2:ab:29:c5:8e:e2:95:71:e3:0c:59:c7:1b:1c:ce:82:6b
Issuing Certificate URL: http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsalphasha2g2CRL Distribution Point: http://crl2.alphassl.com/gs/gsalphasha2g2.crl
Check the revocation status for certificate data.cambridgema.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for data.cambridgema.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
data.cambridgema.gov
Other certificates including the domain name cambridgema.gov
(limited to 100 certificates)
sustainabilitydashboard.cambridgema.gov
gisserver.cambridgema.gov
pcs-dispatcher.cambridgema.gov
chance.cambridgema.gov
www.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
www.cambridgema.gov
gis.cambridgema.gov
Exchange.Cambridgema.gov
Permits.CambridgeMA.GOV
results.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
sustainabilitydashboard.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
bullseye.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
data.cambridgema.gov
budget.data.cambridgema.gov
gatehouse.cambridgema.gov
gatehouse.cambridgema.gov
gisserver.cambridgema.gov
Secure.CambridgeMA.Gov
www.cambridgema.gov
www.cambridgema.gov
results.cambridgema.gov
Permits.CambridgeMA.GOV
permits.cambridgema.gov
data.cambridgema.gov
Permits.CambridgeMA.GOV
courage.cambridgema.gov
gis.cambridgema.gov
secure.cambridgema.gov
minibonds.cambridgema.gov
gis.cambridgema.gov
www2.cambridgema.gov
aruba.Cambridgema.gov
Permits.CambridgeMA.GOV
data.cambridgema.gov
Exchange.cambridgema.gov
admin-kla-prod.2ambh.com
firepermits.cambridgema.gov
remedydev.cambridgema.gov
muttley.cambridgema.gov
minibonds.cambridgema.gov
firepermits.cambridgema.gov
firepermitstest.cambridgema.gov
www2.cambridgema.gov
admin-kla-prod.2ambh.com
remedydev.cambridgema.gov
pcs-dispatcher.cambridgema.gov
remedy.cambridgema.gov
chance.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
Secure.CambridgeMA.gov
pb.cambridgema.gov
secure.cambridgema.gov
Exchange.Cambridgema.gov
cground.cambridgema.gov
tera.cambridgema.gov
mdm.ps.cambridgema.gov
www.cambridgema.gov
results.cambridgema.gov
wvd.cambridgema.gov
bitbucket.cambridgema.gov
voicemail.cambridgema.gov
gisserver.cambridgema.gov
budget.data.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
www.cambridgema.gov
remedy.cambridgema.gov
firepermits.cambridgema.gov
data.cambridgema.gov
gis.cambridgema.gov
techtraining.cambridgema.gov
gatehouse.cambridgema.gov
permits.cambridgema.gov
www2.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
secure5a82116344db483adc000000.nationbuilder.com
data.cambridgema.gov
betatest.cambridgema.gov
data.cambridgema.gov
budget.data.cambridgema.gov
gis.cambridgema.gov
Gis.Cambridgema.Gov
data.cambridgema.gov
Exchange.cambridgema.gov
data.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
mdm.ps.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
sustainabilitydashboard.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
permits.cambridgema.gov
gisserver.cambridgema.gov
Permits.CambridgeMA.GOV
Secure.CambridgeMA.gov
secure5a82116344db483adc000000.nationbuilder.com
gisserver.cambridgema.gov
gisserver.cambridgema.gov
pcs-dispatcher.cambridgema.gov
chance.cambridgema.gov
www.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
www.cambridgema.gov
gis.cambridgema.gov
Exchange.Cambridgema.gov
Permits.CambridgeMA.GOV
results.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
sustainabilitydashboard.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
bullseye.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
data.cambridgema.gov
budget.data.cambridgema.gov
gatehouse.cambridgema.gov
gatehouse.cambridgema.gov
gisserver.cambridgema.gov
Secure.CambridgeMA.Gov
www.cambridgema.gov
www.cambridgema.gov
results.cambridgema.gov
Permits.CambridgeMA.GOV
permits.cambridgema.gov
data.cambridgema.gov
Permits.CambridgeMA.GOV
courage.cambridgema.gov
gis.cambridgema.gov
secure.cambridgema.gov
minibonds.cambridgema.gov
gis.cambridgema.gov
www2.cambridgema.gov
aruba.Cambridgema.gov
Permits.CambridgeMA.GOV
data.cambridgema.gov
Exchange.cambridgema.gov
admin-kla-prod.2ambh.com
firepermits.cambridgema.gov
remedydev.cambridgema.gov
muttley.cambridgema.gov
minibonds.cambridgema.gov
firepermits.cambridgema.gov
firepermitstest.cambridgema.gov
www2.cambridgema.gov
admin-kla-prod.2ambh.com
remedydev.cambridgema.gov
pcs-dispatcher.cambridgema.gov
remedy.cambridgema.gov
chance.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
Secure.CambridgeMA.gov
pb.cambridgema.gov
secure.cambridgema.gov
Exchange.Cambridgema.gov
cground.cambridgema.gov
tera.cambridgema.gov
mdm.ps.cambridgema.gov
www.cambridgema.gov
results.cambridgema.gov
wvd.cambridgema.gov
bitbucket.cambridgema.gov
voicemail.cambridgema.gov
gisserver.cambridgema.gov
budget.data.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
www.cambridgema.gov
remedy.cambridgema.gov
firepermits.cambridgema.gov
data.cambridgema.gov
gis.cambridgema.gov
techtraining.cambridgema.gov
gatehouse.cambridgema.gov
permits.cambridgema.gov
www2.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
secure5a82116344db483adc000000.nationbuilder.com
data.cambridgema.gov
betatest.cambridgema.gov
data.cambridgema.gov
budget.data.cambridgema.gov
gis.cambridgema.gov
Gis.Cambridgema.Gov
data.cambridgema.gov
Exchange.cambridgema.gov
data.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
mdm.ps.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
sustainabilitydashboard.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
permits.cambridgema.gov
gisserver.cambridgema.gov
Permits.CambridgeMA.GOV
Secure.CambridgeMA.gov
secure5a82116344db483adc000000.nationbuilder.com
gisserver.cambridgema.gov
Certificate
The complete raw certificate details for data.cambridgema.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHTDCCBjSgAwIBAgIMHIRIg2XwyicPWdHXMA0GCSqGSIb3DQEBCwUAMEwxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSIwIAYDVQQDExlB bHBoYVNTTCBDQSAtIFNIQTI1NiAtIEcyMB4XDTE3MDMyOTIxMDEwNloXDTE4MDYy NzIwNTQwMlowQjEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMR0w GwYDVQQDExRkYXRhLmNhbWJyaWRnZW1hLmdvdjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMVVhHGQKiM1/17A+rlsOy+qi+cZQZv94gPnjuX7PvP/dUMB Bjla6/QATQiGjhPtq8QBZ1v392BYp09E2ycwGmtVQn+Vnr3hg6s7duJ7jWgabFW0 LyvGQN7OVKBmFfCs72mYDQcZ17K7ZtvXSJZK4jSfUJ+MBYHQUknAykAlkUBqANXA /vizahm4eMMNIv58JSOVckMSNo6c/ulR+JJZDgXxmblzw25xf3j7ra87khgCgYiO NfbSaq/Rz19Nc27nH8dWEeMFTxw1WDrAlV+ya9FyyDZj7cW4YJgCBKyEcm78K7p8 14ITms/N0WeWZ2Xko4iGv6/C2peJp5BPmswzdHECAwEAAaOCBDYwggQyMA4GA1Ud DwEB/wQEAwIFoDCBiQYIKwYBBQUHAQEEfTB7MEIGCCsGAQUFBzAChjZodHRwOi8v c2VjdXJlMi5hbHBoYXNzbC5jb20vY2FjZXJ0L2dzYWxwaGFzaGEyZzJyMS5jcnQw NQYIKwYBBQUHMAGGKWh0dHA6Ly9vY3NwMi5nbG9iYWxzaWduLmNvbS9nc2FscGhh c2hhMmcyMFcGA1UdIARQME4wQgYKKwYBBAGgMgEKCjA0MDIGCCsGAQUFBwIBFiZo dHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEw CQYDVR0TBAIwADA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vY3JsMi5hbHBoYXNz bC5jb20vZ3MvZ3NhbHBoYXNoYTJnMi5jcmwwHwYDVR0RBBgwFoIUZGF0YS5jYW1i cmlkZ2VtYS5nb3YwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1Ud DgQWBBT3zI+TPHf7OnrK2dtA78Bdv+UQXzAfBgNVHSMEGDAWgBT1zdU8CFD5ak86 t5faVoPmadJo9zCCAm4GCisGAQQB1nkCBAIEggJeBIICWgJYAHUAu9nfvB+KcbWT lCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFbG99B7QAABAMARjBEAiBt1P9QIiJ9 x0xyQPi4bAF92brXfzkW7DdESuErIw/uBgIgW7vXwsAWR1dWifkGKwmDSkPplB+m 5dmsdTaABlj/F30AdgDd6x0reg1PpiCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAA AVsb30Q0AAAEAwBHMEUCIQDlcWoUL3ipQejOroLPq+r/Gnkzz2I7BiUJzCRBbrwV nQIgcoAk2iDLtO4Zg7lC9TBZz7e1+4uH9pMT6RTea4uIB84AdgBWFAaaL9fC7NP1 4b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAVsb30QYAAAEAwBHMEUCIHLEcDg54uNc E7YbBAaUxIZ0nUPR1GXAgkyLgnPb4PHPAiEA65E8xUEiQEaDb4NQ+9kG9QUnCEqp 9fw4/NXNMMVsoDEAdwCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAA AVsb30QLAAAEAwBIMEYCIQDetZgjubnWmoDvKCVWVIeOcrFquf+Zv8EYPp6uMcl4 IQIhAP7SRAmAFXprdGGOwpaevQ+pcoju7vKws8mgLPjw4YBeAHYA7ku9t3XOYLrh Qmkfq+GeZqMPfl+wctiDAMR7iXqo/csAAAFbG99bMwAABAMARzBFAiAiYKpwgOUu qxWCvDrm0SlIdPyk9PkU8gIlJUDmUJfoHwIhAKxakpnHlk/+fEqLBvslmxjt/jg7 eq6sc18NmJTmNNm2MA0GCSqGSIb3DQEBCwUAA4IBAQAoTLcX9e8rRYJ+edXGey/6 1TM7vLfozhQeBweunzNU63x3Aiv8VBhlNVkm5s6tPMc3K2/jXfEvKedI3niBYLST ergJJyP6JHU5DvdwRDHbQYxruD0gOJqzU1JDxdFZM/2FHF+G/VGA/O61YYT3gdRl pqYpJ1TIhKWXFf6hlim2l12kKusPAuEFOFMvALksS08NF077tAgDDYYn3iJCHnrU CrrdwjMtnvNkL30WinaRkRCFMRjLD0xIKNFHJDP7su2mv4bcIW1vjK4LXxxP6bH/ VL2bJbz5mZbBHPVQXqxWoJAKuo+oGBYqNj+bbV9omiIqPhU1uRMffI1ii2JafDfx -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVWEcZAqIzX/XsD6uWw7 L6qL5xlBm/3iA+eO5fs+8/91QwEGOVrr9ABNCIaOE+2rxAFnW/f3YFinT0TbJzAa a1VCf5WeveGDqzt24nuNaBpsVbQvK8ZA3s5UoGYV8KzvaZgNBxnXsrtm29dIlkri NJ9Qn4wFgdBSScDKQCWRQGoA1cD++LNqGbh4ww0i/nwlI5VyQxI2jpz+6VH4klkO BfGZuXPDbnF/ePutrzuSGAKBiI419tJqr9HPX01zbucfx1YR4wVPHDVYOsCVX7Jr 0XLINmPtxbhgmAIErIRybvwrunzXghOaz83RZ5ZnZeSjiIa/r8Lal4mnkE+azDN0 cQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8825500917442626507113091543 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-29 21:01:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-27 20:54:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'data.cambridgema.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24911116259166666020343189994430472376368064967928345858943850303312387055059936586536742638414739161360292619634496466034978013590096451443086151041567963642200966603824469654377227268081209560420206942120415041555957966610240603037755615735637163641779478110915110053069387541714647357912540760310792286212994453518910307587532147095627880050929813606724942752264308438032901014700321181647088791378301393529947357112844232474927536641435575621989198601844799790208027595518420911770061050621097578483018005555782495356193806452540581338328359872072459751580553061207982354104350375406945931573129268902214719730801 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsalphasha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10.10 (Domain Validation Certificates Policy - AlphaSSL) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl2.alphassl.com/gs/gsalphasha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.cambridgema.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f7cc8f933c77fb3a7acad9db40efc05dbfe5105f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f5cdd53c0850f96a4f3ab797da5683e669d268f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (606 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (602 bytes) 0258007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000015b1bdf41ed000004030046304402206dd4ff5022227dc74c7240f8b86c017dd9bad77f3916ec37444ae12b230fee0602205bbbd7c2c01647575689f9062b09834a43e9941fa6e5d9ac7536800658ff177d007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015b1bdf44340000040300473045022100e5716a142f78a941e8ceae82cfabeaff1a7933cf623b062509cc24416ebc159d0220728024da20cbb4ee1983b942f53059cfb7b5fb8b87f69313e914de6b8b8807ce0076005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd0000015b1bdf44180000040300473045022072c4703839e2e35c13b61b040694c486749d43d1d465c0824c8b8273dbe0f1cf022100eb913cc541224046836f8350fbd906f50527084aa9f5fc38fcd5cd30c56ca031007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015b1bdf440b0000040300483046022100deb59823b9b9d69a80ef28255654878e72b16ab9ff99bfc1183e9eae31c97821022100fed2440980157a6b74618ec2969ebd0fa97288eeeef2b0b3c9a02cf8f0e1805e007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000015b1bdf5b33000004030047304502202260aa7080e52eab1582bc3ae6d1294874fca4f4f914f202252540e65097e81f022100ac5a9299c7964ffe7c4a8b06fb259b18edfe383b7aaeac735f0d9894e634d9b6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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