seal.geotrust.com
- DigiCert, Inc. -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 03:c1:12:92:af:16:07:15:c3:55:22:ef:1d:9b:39:0f was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
DigiCert, Inc.
Company registration number:
5299537-0142
Organization: DigiCert, Inc.
Organization unit: Production Security Services Hosted Third Party
Organization: DigiCert, Inc.
Organization unit: Production Security Services Hosted Third Party
State / Province:
Utah
Locality: Lehi
Country: US
Locality: Lehi
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c1:12:92:af:16:07:15:c3:55:22:ef:1d:9b:39:0fSerial Number (int): 4990173985923068708467835805223303439
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: f2:8b:43:d4:f2:af:5a:1c:9a:86:20:9e:7a:bf:4f:87:50:d8:78:f4
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): f3:b8:fb:b7:77:12:aa:e7:fc:34:67:8f:79:9f:f0:70:d9:c7:04:77
Fingerprint (sha256): 2e:6b:42:3d:1e:92:95:5f:cd:a7:df:82:de:84:8b:94:94:cf:80:59:44:51:66:73:21:86:1f:2f:4d:10:9e:0f
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate seal.geotrust.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for seal.geotrust.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
seal.geotrust.com
Other certificates including the domain name geotrust.com
(limited to 100 certificates)
dev-ops.geotrust.com
smarticon.geotrust.com
cryptoreport.geotrust.com
pilot-security-center.geotrust.com
verify.geotrust.com
pilot-docs.geotrust.com
test-tcadmin.geotrust.com
services.geotrust.com
valid-root13.geotrust.com
docs.geotrust.com
test-api.geotrust.com
test-api.geotrust.com
security-center.geotrust.com
knowledge.geotrust.com
pilot-security-center.geotrust.com
seal.geotrust.com
cc-admin.websecurity.symantec.com
pilot-docs.geotrust.com
expired-root11.geotrust.com
valid-root15.geotrust.com
knowledge.geotrust.com
services.geotrust.com
adobe-timestamp.geotrust.com
pilot-api-appsec-cws.ws.symantec.com
revoked-root14.geotrust.com
dcv.rapidssl.com
enterprise-security-center.geotrust.com
security-center.geotrust.com
test-api.geotrust.com
test-cc-admin.websecurity.symantec.com
enterprise-api.geotrust.com
cc-admin.geotrust.com
valid-root15.geotrust.com
test-cc-admin.geotrust.com
knowledge.geotrust.com
origin-seal.symauth.com
enterprise-api.geotrust.com
security-center.geotrust.com
timestamp.geotrust.com
query.geotrust.com
enterprise-api.geotrust.com
test-services.geotrust.com
valid-root13.geotrust.com
geotrust.com
smarticon.geotrust.com
revoked-root15.geotrust.com
www.geotrust.com
extended-validation-ssl.geotrust.com
test-tbidev.geotrust.com
blog.geotrust.com
website-security.geotrust.com
smarticon.geotrust.com
dev-smarticon.geotrust.com
seal.geotrust.com
getcert.geotrust.com
dev-products.geotrust.com
pilot-enterprise-api.geotrust.com
www.geotrust.com
pilot-enterprise-security-center.geotrust.com
pilot-enterprise-api.geotrust.com
dev-crl.geotrust.com
test-api.geotrust.com
extended-validation-ssl.geotrust.com
test-smarticon.geotrust.com
digicert.com
ecc-test-valid.geotrust.com
smarticon.geotrust.com
pilot-enterprise-security-center.geotrust.com
dev-ops.geotrust.com
cryptoreport.geotrust.com
test-api.geotrust.com
valid-root14.geotrust.com
pilot-enterprise-security-center.geotrust.com
test-api.geotrust.com
pilot-enterprise-security-center.geotrust.com
adobe-timestamp.geotrust.com
seal.geotrust.com
valid-root12.geotrust.com
test-tcadmin.geotrust.com
sealinfo.geotrust.com
adobe-timestamp.geotrust.com
DigiCert, Inc.
pilot-getcert.geotrust.com
security-center.geotrust.com
revoked-root12.geotrust.com
test-ops.geotrust.com
extended-validation-ssl.geotrust.com
website-security.geotrust.com
enterprise-api.geotrust.com
seal.geotrust.com
timestamp.geotrust.com
adobe-timestamp.geotrust.com
pilot-security-center.geotrust.com
docs.geotrust.com
?.?.symantec.com
seal.geotrust.com
ops.geotrust.com
pilot-enterprise-security-center.geotrust.com
pilot-verify.geotrust.com
docs.geotrust.com
smarticon.geotrust.com
cryptoreport.geotrust.com
pilot-security-center.geotrust.com
verify.geotrust.com
pilot-docs.geotrust.com
test-tcadmin.geotrust.com
services.geotrust.com
valid-root13.geotrust.com
docs.geotrust.com
test-api.geotrust.com
test-api.geotrust.com
security-center.geotrust.com
knowledge.geotrust.com
pilot-security-center.geotrust.com
seal.geotrust.com
cc-admin.websecurity.symantec.com
pilot-docs.geotrust.com
expired-root11.geotrust.com
valid-root15.geotrust.com
knowledge.geotrust.com
services.geotrust.com
adobe-timestamp.geotrust.com
pilot-api-appsec-cws.ws.symantec.com
revoked-root14.geotrust.com
dcv.rapidssl.com
enterprise-security-center.geotrust.com
security-center.geotrust.com
test-api.geotrust.com
test-cc-admin.websecurity.symantec.com
enterprise-api.geotrust.com
cc-admin.geotrust.com
valid-root15.geotrust.com
test-cc-admin.geotrust.com
knowledge.geotrust.com
origin-seal.symauth.com
enterprise-api.geotrust.com
security-center.geotrust.com
timestamp.geotrust.com
query.geotrust.com
enterprise-api.geotrust.com
test-services.geotrust.com
valid-root13.geotrust.com
geotrust.com
smarticon.geotrust.com
revoked-root15.geotrust.com
www.geotrust.com
extended-validation-ssl.geotrust.com
test-tbidev.geotrust.com
blog.geotrust.com
website-security.geotrust.com
smarticon.geotrust.com
dev-smarticon.geotrust.com
seal.geotrust.com
getcert.geotrust.com
dev-products.geotrust.com
pilot-enterprise-api.geotrust.com
www.geotrust.com
pilot-enterprise-security-center.geotrust.com
pilot-enterprise-api.geotrust.com
dev-crl.geotrust.com
test-api.geotrust.com
extended-validation-ssl.geotrust.com
test-smarticon.geotrust.com
digicert.com
ecc-test-valid.geotrust.com
smarticon.geotrust.com
pilot-enterprise-security-center.geotrust.com
dev-ops.geotrust.com
cryptoreport.geotrust.com
test-api.geotrust.com
valid-root14.geotrust.com
pilot-enterprise-security-center.geotrust.com
test-api.geotrust.com
pilot-enterprise-security-center.geotrust.com
adobe-timestamp.geotrust.com
seal.geotrust.com
valid-root12.geotrust.com
test-tcadmin.geotrust.com
sealinfo.geotrust.com
adobe-timestamp.geotrust.com
DigiCert, Inc.
pilot-getcert.geotrust.com
security-center.geotrust.com
revoked-root12.geotrust.com
test-ops.geotrust.com
extended-validation-ssl.geotrust.com
website-security.geotrust.com
enterprise-api.geotrust.com
seal.geotrust.com
timestamp.geotrust.com
adobe-timestamp.geotrust.com
pilot-security-center.geotrust.com
docs.geotrust.com
?.?.symantec.com
seal.geotrust.com
ops.geotrust.com
pilot-enterprise-security-center.geotrust.com
pilot-verify.geotrust.com
docs.geotrust.com
Certificate
The complete raw certificate details for seal.geotrust.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHazCCBlOgAwIBAgIQA8ESkq8WBxXDVSLvHZs5DzANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE4MDMyMDAwMDAwMFoXDTIwMDMxOTEy MDAwMFowgfwxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlVTMRUwEwYLKwYBBAGCNzwCAQITBFV0YWgxFTATBgNVBAUTDDUy OTk1MzctMDE0MjELMAkGA1UEBhMCVVMxDTALBgNVBAgTBFV0YWgxDTALBgNVBAcT BExlaGkxFzAVBgNVBAoTDkRpZ2lDZXJ0LCBJbmMuMTgwNgYDVQQLEy9Qcm9kdWN0 aW9uIFNlY3VyaXR5IFNlcnZpY2VzIEhvc3RlZCBUaGlyZCBQYXJ0eTEaMBgGA1UE AxMRc2VhbC5nZW90cnVzdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDFz81fj7PH2vJ6e2ZXdDyEOHTOwZQrIfdJVjz0BYwwta6VWFkuH/f61JxK Goahyb7+uoxPUaj0d6P1x3ErBGoyo5RQLiDPSUmS1+E0jN5TXYDbLtt5XPCGhSsw fam/Hn72jd4imfpvihbQuG96J8gdsuWLsMsyAxMJZ45t6cDxUTog8fUFB39i6E8t 2wEgRU9Y25KT5eqqV49MjrcWnnuxg2xvY8dUZqmoGp9hF6ITdku60ZuXrDKxfk0K Rw+J5/I0s3izTjVVYAfH7F6CwuL5vk0qn6CIen7Vow1mWQd7qHfFsaX45z6F6JwT azLuJ7lAVZDPAJdD9hHbNAvf1P1bAgMBAAGjggNtMIIDaTAfBgNVHSMEGDAWgBQ9 01Cl1qCt7vNKYApl0yHU+PjWDzAdBgNVHQ4EFgQU8otD1PKvWhyahiCeer9Ph1DY ePQwHAYDVR0RBBUwE4IRc2VhbC5nZW90cnVzdC5jb20wDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNVHR8EbjBsMDSgMqAw hi5odHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXItZzIuY3Js MDSgMqAwhi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXIt ZzIuY3JsMEsGA1UdIAREMEIwNwYJYIZIAYb9bAIBMCowKAYIKwYBBQUHAgEWHGh0 dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwBwYFZ4EMAQEwgYgGCCsGAQUFBwEB BHwwejAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMFIGCCsG AQUFBzAChkZodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEy RXh0ZW5kZWRWYWxpZGF0aW9uU2VydmVyQ0EuY3J0MAkGA1UdEwQCMAAwggF+Bgor BgEEAdZ5AgQCBIIBbgSCAWoBaAB3AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3 zQ7IDdwQAAABYkVFwYcAAAQDAEgwRgIhANRkVZ5yJCGLN+m0zNI0THVyv9vUwoNl SwO0/4cZYiv5AiEA3wn6VaY1PgMnDB9FauP9NdLhWIWvLmFflkBaXEG69KMAdgBW FAaaL9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAWJFRcJAAAAEAwBHMEUC IQDhoTsc8DGVYRE8CL2yaDG8ppiB0oDlEFEQD5jE7SQ1NwIgUeKo18Dvj28XX4Mi pe63vmI5q+JFE1GQDC30khxqo4gAdQC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQ lmQ2jh7RhQAAAWJFRcI+AAAEAwBGMEQCICTl9fSqbOefJgv6AojDnUOq9GdMIVRu E+KGoY0H0+3gAiBRPB+/Nt40krJuTiV0WmjLnojtENM2j5xQL1imdnoO4jANBgkq hkiG9w0BAQsFAAOCAQEAG0FswwE62Hts1iHVOP34t+252jGerFYHWjmuLjWFEJDm 5Ljh9MVFczzNYz3bhB3gitYYNxmAEwxoJfipTAnolZvmMJwy6d0toD8nH4dqNaXn JQ3MzFOFQdULsUHp+SojM3K/X55VDqFnq1efvYxp1OOsRj89+YLgIHawovlKpswp Z9bj2CwZXX7PWK0jh9CT1DGzTCNmikSU3IjipPFHO6f7gP5xZc3FCavPu30S56pJ yYnUHu/gbqIkrYhzvKhe2Mu+vjfQv0mFb96sptkQGIKYsrPxMqTrLZ7ilIqVUr9s DCbQ9WzApo2Aorn4NjoUoPe4eH8cr1Eo5lgVNk2i+w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxc/NX4+zx9ryentmV3Q8 hDh0zsGUKyH3SVY89AWMMLWulVhZLh/3+tScShqGocm+/rqMT1Go9Hej9cdxKwRq MqOUUC4gz0lJktfhNIzeU12A2y7beVzwhoUrMH2pvx5+9o3eIpn6b4oW0LhveifI HbLli7DLMgMTCWeObenA8VE6IPH1BQd/YuhPLdsBIEVPWNuSk+XqqlePTI63Fp57 sYNsb2PHVGapqBqfYReiE3ZLutGbl6wysX5NCkcPiefyNLN4s041VWAHx+xegsLi +b5NKp+giHp+1aMNZlkHe6h3xbGl+Oc+heicE2sy7ie5QFWQzwCXQ/YR2zQL39T9 WwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4990173985923068708467835805223303439 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-19 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Utah' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '5299537-0142' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Utah' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Lehi' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Production Security Services Hosted Third Party' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'seal.geotrust.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24971417181712153754791131515857007461689913120484445992657995041290630298771874789584224164880273274234914922424095755197809157900447616760443569128972665695025755385967226974408324156563262591082211718278291932212457947025439138854530384703730664876300196435727756035799512407707266262154373592254312305990864885182735550714347085725744013358453953930172383299998328595007641879259138348259054308677877419803418930432958388889114012306457511133010814339419164999243184306444484663537294981059967398213571437854152654202417847393786561499122448597934389270838025428252328178179819267648120366927734321713906223218011 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f28b43d4f2af5a1c9a86209e7abf4f8750d878f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'seal.geotrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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