twsaml.stage.twi.com
- Warner Bros. Discovery, Inc. -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 2a:65:e0:e6:9c:bf:d5:9f:79:8d:ef:db was issued on by GlobalSign nv-sa.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Warner Bros. Discovery, Inc.
Organization:
Warner Bros. Discovery, Inc.
State / Province:
New York
Locality: New York
Country: US
Locality: New York
Country: US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 2a:65:e0:e6:9c:bf:d5:9f:79:8d:ef:dbSerial Number (int): 13121533984415851458195222491
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 52:5d:e6:f7:a1:e8:54:04:f4:0c:20:05:e6:bd:b1:c7:6a:0a:ae:b9
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): 75:4f:2d:ba:9e:b0:5d:4a:7e:ad:c2:42:f7:53:52:71:f7:6a:1c:65
Fingerprint (sha256): 2e:db:18:54:75:49:a2:2e:8c:4a:cd:89:19:b2:9b:ec:bd:ee:49:4d:d5:6e:51:e8:d1:63:68:75:b3:15:b2:05
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018Check the revocation status for certificate twsaml.stage.twi.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for twsaml.stage.twi.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
twsaml.stage.twi.com
Other certificates including the domain name twi.com
(limited to 100 certificates)
twsaml.stage.twi.com
desktop.timewarner.com
touchpoint.twi.com
hipaa.dev.twi.com
appdef.stage.twi.com
crestronfusion.stage.twi.com
warnermedia.com
ars.twi.com
intpostings.twi.com
appdef.stage.twi.com
twinfamm.twi.com
cprhistory.dev.twi.com
compplanning.stage.twi.com
test09.twi.com
twec.dev.twi.com
touchpoint.stage.twi.com
twia.stage.twi.com
warnermediagroup.com
hyvcenterdr.twi.com
tableau-saml.dev.twi.com
timewarner.com
wmbi.stage.twi.com
timewarnerfitnation.com
twservices.timewarner.com
diversityadmin.dev.twi.com
webtms.stage.twi.com
spdc.twi.com
webtms.timewarner.com
twia.twi.com
touchpoint.twi.com
eisna.ad.corp.aoltw.net
hrdcservices.twi.com
iowa.timewarner.com
rmis.dev.twi.com
appcentral.dev.twi.com
lxonline.stage.twi.com
rmis.dev.twi.com
webtms.timewarner.com
appsmtp.twi.com
wm-msi.twi.com
financeportal.twi.com
*.wbd.com
hyta-18-msi1.twi.com
twauthservice.dev.twi.com
twec.dev.twi.com
claimstracking.twi.com
dxprocessingdr.twi.com
appviewx-test3.twi.com
mtk.twi.com
longviewact.twi.com
ad-ldap.twi.com
scom-twprod.twi.com
warnerbros.com
eisna.dev.twi.com
appdef.stage.twi.com
ars.twi.com
hrdc.twi.com
bmt.stage.twi.com
oneworld.twi.com
touchpoint.twi.com
twequity.dev.twi.com
cprhistory.dev.twi.com
twinfaics1.twi.com
login.timewarner.com
hrdc.twi.com
knoahsoftrecording.twi.com
twbotraining.twi.com
grc.twi.com
hrdcservicescorpclient.stage.twi.com
twlogin.twi.com
ad-ldap.dev.twi.com
webtms.dev.twi.com
hyvcenterprod.twi.com
twxea.stage.twi.com
cqw-dbs001518.stage.twi.com
twxea.dev.twi.com
wbbsp.dev.twi.com
hrdcservices.twi.com
CPW-DBS012273.twi.com
twsaml.stage.twi.com
deferredcomp.twi.com
vcenter.twi.com
certprint.twi.com
cqw-dbs001518.stage.twi.com
tableau-saml.twi.com
eastgate.twi.com
webtms.stage.twi.com
support.twi.com
ars.stage.twi.com
spw-app000019.twi.com
southgate.twi.com
longviewact.twi.com
twsecurity.stage.twi.com
warnermediagroup.com
touchpoint.dev.twi.com
twsaml.stage.twi.com
servicesqa.warnermediagroup.com
appdef.twi.com
twcptools.twi.com
warnermediagroup.com
desktop.timewarner.com
touchpoint.twi.com
hipaa.dev.twi.com
appdef.stage.twi.com
crestronfusion.stage.twi.com
warnermedia.com
ars.twi.com
intpostings.twi.com
appdef.stage.twi.com
twinfamm.twi.com
cprhistory.dev.twi.com
compplanning.stage.twi.com
test09.twi.com
twec.dev.twi.com
touchpoint.stage.twi.com
twia.stage.twi.com
warnermediagroup.com
hyvcenterdr.twi.com
tableau-saml.dev.twi.com
timewarner.com
wmbi.stage.twi.com
timewarnerfitnation.com
twservices.timewarner.com
diversityadmin.dev.twi.com
webtms.stage.twi.com
spdc.twi.com
webtms.timewarner.com
twia.twi.com
touchpoint.twi.com
eisna.ad.corp.aoltw.net
hrdcservices.twi.com
iowa.timewarner.com
rmis.dev.twi.com
appcentral.dev.twi.com
lxonline.stage.twi.com
rmis.dev.twi.com
webtms.timewarner.com
appsmtp.twi.com
wm-msi.twi.com
financeportal.twi.com
*.wbd.com
hyta-18-msi1.twi.com
twauthservice.dev.twi.com
twec.dev.twi.com
claimstracking.twi.com
dxprocessingdr.twi.com
appviewx-test3.twi.com
mtk.twi.com
longviewact.twi.com
ad-ldap.twi.com
scom-twprod.twi.com
warnerbros.com
eisna.dev.twi.com
appdef.stage.twi.com
ars.twi.com
hrdc.twi.com
bmt.stage.twi.com
oneworld.twi.com
touchpoint.twi.com
twequity.dev.twi.com
cprhistory.dev.twi.com
twinfaics1.twi.com
login.timewarner.com
hrdc.twi.com
knoahsoftrecording.twi.com
twbotraining.twi.com
grc.twi.com
hrdcservicescorpclient.stage.twi.com
twlogin.twi.com
ad-ldap.dev.twi.com
webtms.dev.twi.com
hyvcenterprod.twi.com
twxea.stage.twi.com
cqw-dbs001518.stage.twi.com
twxea.dev.twi.com
wbbsp.dev.twi.com
hrdcservices.twi.com
CPW-DBS012273.twi.com
twsaml.stage.twi.com
deferredcomp.twi.com
vcenter.twi.com
certprint.twi.com
cqw-dbs001518.stage.twi.com
tableau-saml.twi.com
eastgate.twi.com
webtms.stage.twi.com
support.twi.com
ars.stage.twi.com
spw-app000019.twi.com
southgate.twi.com
longviewact.twi.com
twsecurity.stage.twi.com
warnermediagroup.com
touchpoint.dev.twi.com
twsaml.stage.twi.com
servicesqa.warnermediagroup.com
appdef.twi.com
twcptools.twi.com
warnermediagroup.com
Certificate
The complete raw certificate details for twsaml.stage.twi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIMKmXg5py/1Z95je/bMA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0yNDAxMDQxODMxMDdaFw0y NTAyMDQxODMxMDZaMHkxCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhOZXcgWW9yazER MA8GA1UEBxMITmV3IFlvcmsxJTAjBgNVBAoTHFdhcm5lciBCcm9zLiBEaXNjb3Zl cnksIEluYy4xHTAbBgNVBAMTFHR3c2FtbC5zdGFnZS50d2kuY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jDSNyPHuVFsu85V5TdSvlFkBfA+DuF3 wyuvtW0NpvhwotjP0hT5wifOR8EP7j1xsKQaY2Mom4OOKOVK9DhHToRdChXt6sHm dw12C7ucYDexUeKIP0uaLHEMsfCihPIzqDnLQatMJNX27yxHjyibftkbX8NJAKmX Uobtbi6f6drWQQH4D/RJT05MXzuOtcels1SoweF+VJvOZvt+qxpt6zZfjHyTV3sx imhLDM99tempDX+u1Adeni2iPKrC5rWinxM/1v2SdBdaPaSWRbdQ7dloPPq9ATmb 9+x6HWFyWtHqqZSbGDP/Pbsd16B9CrbmRvclGZpAXeGLogsVDUPZNQIDAQABo4IB oDCCAZwwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwgY4GCCsGAQUFBwEB BIGBMH8wRAYIKwYBBQUHMAKGOGh0dHA6Ly9zZWN1cmUuZ2xvYmFsc2lnbi5jb20v Y2FjZXJ0L2dzcnNhb3Zzc2xjYTIwMTguY3J0MDcGCCsGAQUFBzABhitodHRwOi8v b2NzcC5nbG9iYWxzaWduLmNvbS9nc3JzYW92c3NsY2EyMDE4MFYGA1UdIARPME0w QQYJKwYBBAGgMgEUMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3Lmdsb2JhbHNp Z24uY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECAjAfBgNVHREEGDAWghR0d3NhbWwu c3RhZ2UudHdpLmNvbTAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYD VR0jBBgwFoAU+O9/8s14Z6jeb48kjYjxhwMCs+swHQYDVR0OBBYEFFJd5veh6FQE 9AwgBea9scdqCq65MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBCtWMo3B6MFdYz3Dfu7nGbgDw7LXVJ9bHHXE71BhTlpZyNC2BRAk/NpA/q fpk1emfNE9+xTxiSA4FbqaOAdSX4cJSYkkneMjjRY/Y3lYBODIdjms9sIaMu09Lh 3y1odV8Fe050iq4kcfeF0SK6uBHdGxBhLmZnq/1Olx5c2J8h7gYev3bToTUTz32F jG5It4YgpHKOYXDbR5qjrB7z2dEHIYaAKSesg9S5VEmAE5688+cTiVNPo2KARKxm Jmyc86bZOEGRQBWqzeYxmSLA/1S4kTzCly/NsW67ngr5Te3kTb7fmRO3RDj05Ig3 H2aOmnTem3y9tVppDMV2VvCJJCcG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jDSNyPHuVFsu85V5TdS vlFkBfA+DuF3wyuvtW0NpvhwotjP0hT5wifOR8EP7j1xsKQaY2Mom4OOKOVK9DhH ToRdChXt6sHmdw12C7ucYDexUeKIP0uaLHEMsfCihPIzqDnLQatMJNX27yxHjyib ftkbX8NJAKmXUobtbi6f6drWQQH4D/RJT05MXzuOtcels1SoweF+VJvOZvt+qxpt 6zZfjHyTV3sximhLDM99tempDX+u1Adeni2iPKrC5rWinxM/1v2SdBdaPaSWRbdQ 7dloPPq9ATmb9+x6HWFyWtHqqZSbGDP/Pbsd16B9CrbmRvclGZpAXeGLogsVDUPZ NQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13121533984415851458195222491 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-04 18:31:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-04 18:31:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Warner Bros. Discovery, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'twsaml.stage.twi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26534118651116603308385381334373879578647009393937170152216683093957347852433761805019350277488529657240096978527732217527772381826887202513900830834869066438956072263961248671247730580449818629865198439446367902762535942744597325812520181491160599769754190950086667230496195341875095573110430882097708221706204891643432331331514873803987620276994222016474657947200305943060423483792158643220161554648234884293889463011644905188298376641028797519780042427370922411722774860247362963671251726835612863189106225843913386381447565364736109795046701306032522203773563506180590083671000079476044768205086522086361839950133 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'twsaml.stage.twi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 525de6f7a1e85404f40c2005e6bdb1c76a0aaeb9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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