*.international.gc.ca
- Global Affairs Canada -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 80:9a:be:75:85:b1:6e:f1:00:00:00:00:50:ef:2e:2f was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Global Affairs Canada
Organization:
Global Affairs Canada
State / Province:
Ontario
Locality: Ottawa
Country: CA
Locality: Ottawa
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 80:9a:be:75:85:b1:6e:f1:00:00:00:00:50:ef:2e:2fSerial Number (int): 170944660145579313255078169503622704687
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: f3:48:cb:bc:3e:c7:0b:4c:82:a7:3a:a1:ee:18:2c:53:9c:ce:76:c6
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 00:9f:51:79:81:24:2b:fd:d2:ad:8b:bb:fe:12:5c:bb:ad:4a:19:5e
Fingerprint (sha256): 2f:a1:e8:a1:eb:cc:c2:13:19:ad:bd:0c:fe:70:0b:1a:d5:4b:62:9f:05:76:64:bf:58:b7:8a:7f:2d:7b:d8:a6
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate *.international.gc.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.international.gc.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.international.gc.ca
international.gc.ca
international.gc.ca
Other certificates including the domain name international.gc.ca
(limited to 100 certificates)
mailgateway.dev.international.gc.ca
sdcvpn01h.international.gc.ca
dalasvpn01h.international.gc.ca
www.listserv.international.gc.ca
data.international.gc.ca
eam-systest.sp.international.gc.ca
develang.international.gc.ca
develang.international.gc.ca
data.international.gc.ca
dev-travel.international.gc.ca
rm3hq.international.gc.ca
rm3hq.international.gc.ca
SP.international.gc.ca
signetweb.international.gc.ca
MXICOVPN01H.international.gc.ca
pilotasa01.international.gc.ca
piprod2.international.gc.ca
sdcvpn01h.international.gc.ca
goa-oma.international.gc.ca
w01.international.gc.ca
sl.media.international.gc.ca
elang.international.gc.ca
www.international.gc.ca
w03.international.gc.ca
guestportal11.international.gc.ca
w05.international.gc.ca
iec-eic.international.gc.ca
rm2dg.international.gc.ca
travel-smart.international.gc.ca
signetweb.international.gc.ca
SEOULVPN01H.international.gc.ca
dev-goa-oma.international.gc.ca
AEMDispatcher.international.gc.ca
appdemo.international.gc.ca
sdcvpn01h.international.gc.ca
DELHIVPN01H.international.gc.ca
staffing-les.international.gc.ca
rm3hq.international.gc.ca
SPOREVPN01H.international.gc.ca
w06.international.gc.ca
as-dev.international.gc.ca
guestportal.international.gc.ca
FS-QA.international.gc.ca
w05.international.gc.ca
listservdev.international.gc.ca
eam-dev.sp.international.gc.ca
TOKYOVPN01H.international.gc.ca
SP-QA.international.gc.ca
eam.sp.international.gc.ca
collab.international.gc.ca
tcse-ts15.international.gc.ca
travel-smart.international.gc.ca
CRCASVPN01.international.gc.ca
wcdev.international.gc.ca
seoulvpn01h.international.gc.ca
dev-goa-oma.international.gc.ca
wc.international.gc.ca
rm1ac.international.gc.ca
GANZUVPN01H.international.gc.ca
wifi-pilot.international.gc.ca
eam-dev.sp.international.gc.ca
evoswa.international.gc.ca
pi.international.gc.ca
rm2dg.international.gc.ca
pi.international.gc.ca
bilat.international.gc.ca
*.international.gc.ca
*.dev.cloud-nuage.international.gc.ca
intl-ts16.international.gc.ca
appdemo.international.gc.ca
wc.international.gc.ca
w05.international.gc.ca
signetweb.international.gc.ca
CNGNYVPN01H.international.gc.ca
elang.international.gc.ca
wifiauth1.d.r.dfait-maeci.gc.ca
tradefacts-donneescommerciales.international.gc.ca
mailgateway.international.gc.ca
rm4rz.international.gc.ca
www.listserv.dfait-maeci.gc.ca
signetweb.international.gc.ca
rm2dg.international.gc.ca
elang.international.gc.ca
kompass-iec-eic.international.gc.ca
www1.international.gc.ca
*.dev.cloud-nuage.international.gc.ca
SPOREVPN01H.international.gc.ca
dv05.international.gc.ca
tcsf-ts16.international.gc.ca
FS-DEV.international.gc.ca
www1.international.gc.ca
mailgateway.dev.international.gc.ca
wc.international.gc.ca
lbpvpn01h.international.gc.ca
develang.international.gc.ca
rm1ac.international.gc.ca
mailgateway.dev.international.gc.ca
wc.international.gc.ca
HQL-PMKWC02.p.dfait-maeci.gc.ca
ExchangeServer-QA.d.r.dfait-maeci.gc.ca
sdcvpn01h.international.gc.ca
dalasvpn01h.international.gc.ca
www.listserv.international.gc.ca
data.international.gc.ca
eam-systest.sp.international.gc.ca
develang.international.gc.ca
develang.international.gc.ca
data.international.gc.ca
dev-travel.international.gc.ca
rm3hq.international.gc.ca
rm3hq.international.gc.ca
SP.international.gc.ca
signetweb.international.gc.ca
MXICOVPN01H.international.gc.ca
pilotasa01.international.gc.ca
piprod2.international.gc.ca
sdcvpn01h.international.gc.ca
goa-oma.international.gc.ca
w01.international.gc.ca
sl.media.international.gc.ca
elang.international.gc.ca
www.international.gc.ca
w03.international.gc.ca
guestportal11.international.gc.ca
w05.international.gc.ca
iec-eic.international.gc.ca
rm2dg.international.gc.ca
travel-smart.international.gc.ca
signetweb.international.gc.ca
SEOULVPN01H.international.gc.ca
dev-goa-oma.international.gc.ca
AEMDispatcher.international.gc.ca
appdemo.international.gc.ca
sdcvpn01h.international.gc.ca
DELHIVPN01H.international.gc.ca
staffing-les.international.gc.ca
rm3hq.international.gc.ca
SPOREVPN01H.international.gc.ca
w06.international.gc.ca
as-dev.international.gc.ca
guestportal.international.gc.ca
FS-QA.international.gc.ca
w05.international.gc.ca
listservdev.international.gc.ca
eam-dev.sp.international.gc.ca
TOKYOVPN01H.international.gc.ca
SP-QA.international.gc.ca
eam.sp.international.gc.ca
collab.international.gc.ca
tcse-ts15.international.gc.ca
travel-smart.international.gc.ca
CRCASVPN01.international.gc.ca
wcdev.international.gc.ca
seoulvpn01h.international.gc.ca
dev-goa-oma.international.gc.ca
wc.international.gc.ca
rm1ac.international.gc.ca
GANZUVPN01H.international.gc.ca
wifi-pilot.international.gc.ca
eam-dev.sp.international.gc.ca
evoswa.international.gc.ca
pi.international.gc.ca
rm2dg.international.gc.ca
pi.international.gc.ca
bilat.international.gc.ca
*.international.gc.ca
*.dev.cloud-nuage.international.gc.ca
intl-ts16.international.gc.ca
appdemo.international.gc.ca
wc.international.gc.ca
w05.international.gc.ca
signetweb.international.gc.ca
CNGNYVPN01H.international.gc.ca
elang.international.gc.ca
wifiauth1.d.r.dfait-maeci.gc.ca
tradefacts-donneescommerciales.international.gc.ca
mailgateway.international.gc.ca
rm4rz.international.gc.ca
www.listserv.dfait-maeci.gc.ca
signetweb.international.gc.ca
rm2dg.international.gc.ca
elang.international.gc.ca
kompass-iec-eic.international.gc.ca
www1.international.gc.ca
*.dev.cloud-nuage.international.gc.ca
SPOREVPN01H.international.gc.ca
dv05.international.gc.ca
tcsf-ts16.international.gc.ca
FS-DEV.international.gc.ca
www1.international.gc.ca
mailgateway.dev.international.gc.ca
wc.international.gc.ca
lbpvpn01h.international.gc.ca
develang.international.gc.ca
rm1ac.international.gc.ca
mailgateway.dev.international.gc.ca
wc.international.gc.ca
HQL-PMKWC02.p.dfait-maeci.gc.ca
ExchangeServer-QA.d.r.dfait-maeci.gc.ca
Certificate
The complete raw certificate details for *.international.gc.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIRAICavnWFsW7xAAAAAFDvLi8wDQYJKoZIhvcNAQELBQAw gboxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMSgwJgYDVQQL Ex9TZWUgd3d3LmVudHJ1c3QubmV0L2xlZ2FsLXRlcm1zMTkwNwYDVQQLEzAoYykg MjAxMiBFbnRydXN0LCBJbmMuIC0gZm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxLjAs BgNVBAMTJUVudHJ1c3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgLSBMMUswHhcN MTkwMzIwMTgwMzMwWhcNMjEwNjE5MTgzMzI5WjBwMQswCQYDVQQGEwJDQTEQMA4G A1UECBMHT250YXJpbzEPMA0GA1UEBxMGT3R0YXdhMR4wHAYDVQQKExVHbG9iYWwg QWZmYWlycyBDYW5hZGExHjAcBgNVBAMMFSouaW50ZXJuYXRpb25hbC5nYy5jYTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALbxJIvlqe8QyU6y10gJ1+pA vybvpankc0t5NNwmdI+e65XrzQZGilAUWAjo3OItFXX8qdukSiApIZ60tmQATrkj MVa0UItUl2teeeI/SPjWAnMS17q0JnM0eLJ+0lp1QfHZVJUakdVCaPFD8p+5xUCh aaPehKyWkvEKgnZzBfxGYP8qv3x3PxW1CtD+nKjGhy4HWABuLcOnmSFS3D64JExL 7Cxv6LAQ3Yj8JYCkTyxz1+sAoaDVZifUMyRooR3akLoKin+8VIGFP5FLZzytnTBB Q9tFXK2ozesPLQkdQZAwwWCvOONfwN9IC+rYtxbXCM8Ze60y2knzWb1AM0hBljMC AwEAAaOCAbYwggGyMBMGCisGAQQB1nkCBAMBAf8EAgUAMDUGA1UdEQQuMCyCFSou aW50ZXJuYXRpb25hbC5nYy5jYYITaW50ZXJuYXRpb25hbC5nYy5jYTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDMGA1UdHwQs MCowKKAmoCSGImh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxay5jcmwwSwYD VR0gBEQwQjA2BgpghkgBhvpsCgEFMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly93d3cu ZW50cnVzdC5uZXQvcnBhMAgGBmeBDAECAjBoBggrBgEFBQcBAQRcMFowIwYIKwYB BQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRw Oi8vYWlhLmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwHwYDVR0jBBgwFoAU gqJwdN28Uz/Pe9T3zX+nYMYKTL8wHQYDVR0OBBYEFPNIy7w+xwtMgqc6oe4YLFOc znbGMAkGA1UdEwQCMAAwDQYJKoZIhvcNAQELBQADggEBAKfFIY+fCT36n9Lqe9IS AVgBkZUJRzIUb2+XPEJFQL9Et1xzD8f0TukHz/o6WdPgM56k4dTYGQ9w/K4FMN6E 63dsRSbcTKmnXEoyDZfAHCLEgbiFEPU0DcNo/OpGGz91rm32nE5O/lWUph6zbieS lMZMMo5DRLcHDQvUtY73tTVvexne7yM+eZK87qo2zhoA1YX0PYApwdkecVbwb6lZ jkm9qbEzGqM8kTVgYHDVd1r0nKUqC6cUmC9cXB8e0+c6H81yA9TDkXfdTzchwsTI Q83ehsDj8w1woogaWyZTKO5fDlAmdINBXwEXTDR7cYE4tdV4k5vhUVNuHghYLLiZ xqE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvEki+Wp7xDJTrLXSAnX 6kC/Ju+lqeRzS3k03CZ0j57rlevNBkaKUBRYCOjc4i0Vdfyp26RKICkhnrS2ZABO uSMxVrRQi1SXa1554j9I+NYCcxLXurQmczR4sn7SWnVB8dlUlRqR1UJo8UPyn7nF QKFpo96ErJaS8QqCdnMF/EZg/yq/fHc/FbUK0P6cqMaHLgdYAG4tw6eZIVLcPrgk TEvsLG/osBDdiPwlgKRPLHPX6wChoNVmJ9QzJGihHdqQugqKf7xUgYU/kUtnPK2d MEFD20VcrajN6w8tCR1BkDDBYK8441/A30gL6ti3FtcIzxl7rTLaSfNZvUAzSEGW MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 170944660145579313255078169503622704687 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-20 18:03:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-06-19 18:33:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ottawa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Global Affairs Canada' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.international.gc.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23094283430519566051830953815733153692748469134357640075647412541381141380847071337226501751303253480749770087750442636507960477932722480772543856413870079811380565972074622666067700142373526630283615730200203239936516664253744690784299493701806716483869202193518322375745491063979495269404545216207992604584208786859966255334419666901989281930830525598141392267261791148225012198964614759034285060225109714565453514328001166687708050340446345897689157898407118982006436639717440812962874656019749708558521769694880415031182039043084292868771364141838680552253386937585340684707890938235389179385443592522675668489779 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.international.gc.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'international.gc.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f348cbbc3ec70b4c82a73aa1ee182c539cce76c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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