www.gwcu.org
- Goldenwest Federal Credit Union -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 02:3b:a8:80:2c:3a:b2:41:41:51:69:ed:8a:b2:ad:7c was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Goldenwest Federal Credit Union
Company registration number:
24693
Organization: Goldenwest Federal Credit Union
Organization unit: IT
Organization: Goldenwest Federal Credit Union
Organization unit: IT
State / Province:
Utah
Locality: Ogden
Country: US
Locality: Ogden
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:3b:a8:80:2c:3a:b2:41:41:51:69:ed:8a:b2:ad:7cSerial Number (int): 2968219105929901797013155174352596348
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 95:7e:33:2b:db:cc:37:cf:11:6e:3a:3f:e9:13:24:af:71:9f:cd:72
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 41:f2:ff:47:85:9d:83:6f:53:ed:b9:b5:60:7a:33:b6:4f:46:19:c9
Fingerprint (sha256): 2e:e9:76:f0:2f:0e:8f:05:0e:b6:42:b1:45:20:68:a2:14:3a:83:d9:c1:53:7e:70:68:f9:8c:11:9e:c1:36:01
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate www.gwcu.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.gwcu.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.gwcu.org
gwcu.org
gwcu.org
Other certificates including the domain name gwcu.org
(limited to 100 certificates)
my.gwcu.org
m.gwcu.org
citrix.gwcu.org
exchange2013.gwcu.gwcu.org
m.gwcu.org
estatements.gwcu.org
*.gwcu.org
m.gwcu.org
www.gwcu.org
estatements.gwcu.org
www.gwcu.org
exchange2013.gwcu.gwcu.org
citrix.gwcu.org
exchange2013.gwcu.gwcu.org
exchange2013.gwcu.gwcu.org
exchange2013.gwcu.gwcu.org
online.gwcu.org
citrix.gwcu.org
online.gwcu.org
online.gwcu.org
www.gwcu.org
chat.gwcu.org
www.gwcu.org
vidyoportal.gwcu.org
citrix.gwcu.org
estatements.gwcu.org
*.gwcu.org
m.gwcu.org
m.gwcu.org
www.gwcu.org
citrix.gwcu.org
www.gwcu.org
www.gwcu.org
www.gwcu.org
www.gwcu.org
*.gwcu.org
online.gwcu.org
barracuda.gwcu.org
m.gwcu.org
vidyoreplay.gwcu.org
checks.gwcu.org
www.gwcu.org
online.gwcu.org
m.gwcu.org
www.gwcu.org
online.gwcu.org
my.gwcu.org
mail.gwcu.org
citrix.gwcu.org
online.gwcu.org
estatements.gwcu.org
online.gwcu.org
www.gwcu.org
exchange2013.gwcu.gwcu.org
m.gwcu.org
www.gwcu.org
*.gwcu.org
mail.gwcu.org
m.gwcu.org
mobile.gwcu.org
www.gwcu.org
vidyoreplay.gwcu.org
m.gwcu.org
m.gwcu.org
mdm.gwcu.org
estatements.gwcu.org
online.gwcu.org
*.gwcu.org
online.gwcu.org
www.gwcu.org
citrix.gwcu.org
mam.gwcu.org
exchange2013.gwcu.gwcu.org
exchange2013.gwcu.gwcu.org
my.gwcu.org
m.gwcu.org
citrix.gwcu.org
exchange2013.gwcu.gwcu.org
m.gwcu.org
estatements.gwcu.org
*.gwcu.org
m.gwcu.org
www.gwcu.org
estatements.gwcu.org
www.gwcu.org
exchange2013.gwcu.gwcu.org
citrix.gwcu.org
exchange2013.gwcu.gwcu.org
exchange2013.gwcu.gwcu.org
exchange2013.gwcu.gwcu.org
online.gwcu.org
citrix.gwcu.org
online.gwcu.org
online.gwcu.org
www.gwcu.org
chat.gwcu.org
www.gwcu.org
vidyoportal.gwcu.org
citrix.gwcu.org
estatements.gwcu.org
*.gwcu.org
m.gwcu.org
m.gwcu.org
www.gwcu.org
citrix.gwcu.org
www.gwcu.org
www.gwcu.org
www.gwcu.org
www.gwcu.org
*.gwcu.org
online.gwcu.org
barracuda.gwcu.org
m.gwcu.org
vidyoreplay.gwcu.org
checks.gwcu.org
www.gwcu.org
online.gwcu.org
m.gwcu.org
www.gwcu.org
online.gwcu.org
my.gwcu.org
mail.gwcu.org
citrix.gwcu.org
online.gwcu.org
estatements.gwcu.org
online.gwcu.org
www.gwcu.org
exchange2013.gwcu.gwcu.org
m.gwcu.org
www.gwcu.org
*.gwcu.org
mail.gwcu.org
m.gwcu.org
mobile.gwcu.org
www.gwcu.org
vidyoreplay.gwcu.org
m.gwcu.org
m.gwcu.org
mdm.gwcu.org
estatements.gwcu.org
online.gwcu.org
*.gwcu.org
online.gwcu.org
www.gwcu.org
citrix.gwcu.org
mam.gwcu.org
exchange2013.gwcu.gwcu.org
exchange2013.gwcu.gwcu.org
my.gwcu.org
Certificate
The complete raw certificate details for www.gwcu.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHqjCCBpKgAwIBAgIQAjuogCw6skFBUWntirKtfDANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE4MDEwNDAwMDAwMFoXDTIwMDEyNDEy MDAwMFowgb4xHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlVTMQ4wDAYDVQQFEwUyNDY5MzELMAkGA1UEBhMCVVMxDTALBgNV BAgTBFV0YWgxDjAMBgNVBAcTBU9nZGVuMSgwJgYDVQQKEx9Hb2xkZW53ZXN0IEZl ZGVyYWwgQ3JlZGl0IFVuaW9uMQswCQYDVQQLEwJJVDEVMBMGA1UEAxMMd3d3Lmd3 Y3Uub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcBJQo3yJAiN UeOncGYUgFT66qdLiAHMaNCtDCmEGrLOTuFVU3p8W0ku7RmyhHtFoVyoHCpV3GMu jNE/cQAUT5dF488R+gs9WQPFzpEGkPU0KalacEN29jJmqdAu7mGEYZMFZk5FoJem +OlGRQtAD7Pdfq5OQkxdoxe0l42Pq1X9Bd9R2whRiHdHQx2PiVY7JHHL96z1Es0v y9klzrsRlp31TEh1o7s10g1BhohGB/RSrmzAsKb8mT5NHNKBKjFuFlEMf23f9eFW eAda3y+TrLeXjV38CTD2nxLXU3FLWPzwWAD5ar3OEQKrqdJCHe9wedaiM9r/RSNy P/xhBG3AnwIDAQABo4ID6jCCA+YwHwYDVR0jBBgwFoAUPdNQpdagre7zSmAKZdMh 1Pj41g8wHQYDVR0OBBYEFJV+MyvbzDfPEW46P+kTJK9xn81yMCEGA1UdEQQaMBiC DHd3dy5nd2N1Lm9yZ4IIZ3djdS5vcmcwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNVHR8EbjBsMDSgMqAwhi5odHRwOi8v Y3JsMy5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXItZzIuY3JsMDSgMqAwhi5o dHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXItZzIuY3JsMEsG A1UdIAREMEIwNwYJYIZIAYb9bAIBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3 LmRpZ2ljZXJ0LmNvbS9DUFMwBwYFZ4EMAQEwgYgGCCsGAQUFBwEBBHwwejAkBggr BgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMFIGCCsGAQUFBzAChkZo dHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEyRXh0ZW5kZWRW YWxpZGF0aW9uU2VydmVyQ0EuY3J0MAkGA1UdEwQCMAAwggH2BgorBgEEAdZ5AgQC BIIB5gSCAeIB4AB3AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAAB YMJ5hl4AAAQDAEgwRgIhAMRac1tP9roh7ddgPMyl5pqM9JV09vAslJMpyfCihkef AiEA7WhGd11UGhEgj6yFEqJFogdKiAyaPcDAYsLYKboV/ZkAdgBWFAaaL9fC7NP1 4b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAWDCeYd4AAAEAwBHMEUCIQDC6uwiMJ2u y1znFtdXRKW8nptaNC/GlIUVcBkIDmMggQIgA+MAuNd40t5am/nJkM1Zs+/cbpNX Kx2xu121VdCMuJAAdQDuS723dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAA AWDCeYl8AAAEAwBGMEQCIALGdIUFjuciEF4PkiewLu1ecoP9bL0X3QCCAho+Yd+n AiAg4nivwH0da1JFeGYMUfREjJsG97jl2SXwTMMjzRy+0gB2ALvZ37wfinG1k5Qj l6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABYMJ5hzsAAAQDAEcwRQIgEi+4UpzmzgxX 0Z9qLpUbbjCovHCMUEpPfL0xtm5OKn4CIQCY85P/MT28jPuM9x16YjI8T5w/LTU1 d65bBy1T5oLGwTANBgkqhkiG9w0BAQsFAAOCAQEASulgOWAzYCoXlFZTT2pWJYTn 1xkQQs5NBAJ3eB0FyJhudqRISFprPAf5c1WsKozOJBS1dRDOGzXPaB2MDtbQP7bP 8UT0RQHGLyROXIh/BmEpUUH/cqBdbfkKblsbPHtch+T88jkZTXXzn2LscrBCImWX J/nFWK749NRTKRAvwS+Zq2bFr8cOC2JBCZcayLIWYR8CFwPR+WWvmzQv84B/uaDx 55famOmoHDI/RQ5rsch/bf1Z8mUhODxE5n6MB3cddtD5k1KwuOa60JAiSFsxf6mK TIxiwz+z6EPw5uChtF1BotICDbHNrCoYTWIFdjDGzK0JOD08VP+JL+eCId2Wfg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcBJQo3yJAiNUeOncGYU gFT66qdLiAHMaNCtDCmEGrLOTuFVU3p8W0ku7RmyhHtFoVyoHCpV3GMujNE/cQAU T5dF488R+gs9WQPFzpEGkPU0KalacEN29jJmqdAu7mGEYZMFZk5FoJem+OlGRQtA D7Pdfq5OQkxdoxe0l42Pq1X9Bd9R2whRiHdHQx2PiVY7JHHL96z1Es0vy9klzrsR lp31TEh1o7s10g1BhohGB/RSrmzAsKb8mT5NHNKBKjFuFlEMf23f9eFWeAda3y+T rLeXjV38CTD2nxLXU3FLWPzwWAD5ar3OEQKrqdJCHe9wedaiM9r/RSNyP/xhBG3A nwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2968219105929901797013155174352596348 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-24 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '24693' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Utah' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ogden' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Goldenwest Federal Credit Union' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gwcu.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22943953044150640676936096833162467602356433851911112503666015894467061112911197717598248275686812336340639119956339658473342058829150679074752993477919598410339942446245463502935937165007286938700053768604514709198890777147535029890740441979878168567366267710264145434692349405454368238768523645943033181710359819006854440583388960120883395263197790249916634107980376272248385787359014110706005449115949003627366663722964827065881915171950976277731882385198094590050458443447410545785176211352052681964095414649849527087949335580705286065094347680800860148282602153579893285047749569162055217632019969130732238782623 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 957e332bdbcc37cf116e3a3fe91324af719fcd72 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gwcu.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gwcu.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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