mediobanca.com
- Mediobanca Innovation Services -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 44:be:17:fa:1b:10:1f:e6:00:00:00:00:50:f1:7b:1f was issued on by Entrust, Inc..
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Mediobanca Innovation Services
Organization:
Mediobanca Innovation Services
Locality:
Milano
Country: IT
Country: IT
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 44:be:17:fa:1b:10:1f:e6:00:00:00:00:50:f1:7b:1fSerial Number (int): 91374526427332997875786080410303298335
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: a3:9e:e9:06:13:75:79:b9:70:41:88:5f:76:24:2e:bc:06:be:df:1f
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): dd:7c:62:bf:61:f1:c4:f7:7e:db:06:ba:e9:e4:a8:27:5c:19:e8:d3
Fingerprint (sha256): 30:4c:9d:62:a6:a1:6c:3e:5d:0c:ea:d8:de:dc:83:3a:0d:91:33:f3:f0:b9:88:6e:c5:56:af:5e:3e:27:e0:fb
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate mediobanca.com
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mediobanca.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mediobanca.com
www.mediobanca.com
m.mediobanca.it
mediobanca.it
mediobanca.lu
mediobancaint.lu
raccoltaproprietaria.mediobanca.com
raccoltaproprietaria.mediobanca.it
www.mediobanca.it
www.mediobanca.lu
www.mediobancaint.lu
www.mediobanca.com
m.mediobanca.it
mediobanca.it
mediobanca.lu
mediobancaint.lu
raccoltaproprietaria.mediobanca.com
raccoltaproprietaria.mediobanca.it
www.mediobanca.it
www.mediobanca.lu
www.mediobancaint.lu
Other certificates including the domain name mediobanca.com
(limited to 100 certificates)
*.mediobanca.com
www.in.mediobanca.com
mediobancasustainablefinancehub.mediobanca.com
vdi.mediobanca.com
www.in.mediobanca.com
abaco.mediobanca.com
www.in.mediobanca.com
lifetime.mediobanca.com
lifetime-prd.int.mediobanca.com
lm.mis.mediobanca.com
events.mediobanca.com
mediobanca.com
www.mediobanca.com
*.int.mediobanca.com
mediobanca.com
*.int.mediobanca.com
*.mis.mediobanca.com
*.mis.mediobanca.com
xpise01.mis.mediobanca.com
mediobanca.com
mediobanca.com
intunegwexc.mis.mediobanca.com
www.mediobanca.com
digiventsm1.mediobanca.com
*.mis.mediobanca.com
vault-bck.int.mediobanca.com
idgfunc.mis.mediobanca.com
intranetmb.mediobanca.com
*.mis.mediobanca.com
research.mediobanca.com
xpise01.mis.mediobanca.com
xpise02.mis.mediobanca.com
dbw-fmipoc.mis.mediobanca.com
idgtoc.mis.mediobanca.com
events.mediobanca.com
*.mis.mediobanca.com
www.mediobanca.com
vdi.mediobanca.com
*.mis.mediobanca.com
board.mediobanca.com
*.mediobanca.com
mediobanca.com
idgtoc.mis.mediobanca.com
aodocs.integration.mediobanca.com
mdm.mediobanca.com
www.mediobanca.com
archiviostorico.mediobanca.com
abaco.mediobanca.com
intranetmb.mediobanca.com
lifetime-svi.int.mediobanca.com
eap01.mediobanca.com
lifetime.int.mediobanca.com
mediobanca.com
archiviostorico.mediobanca.com
lifetime-col.int.mediobanca.com
mxm.mis.mediobanca.com
aodocs-cert.integration.mediobanca.com
www.in.mediobanca.com
lm.mis.mediobanca.com
aodocs-cert.integration.mediobanca.com
xpise02.mis.mediobanca.com
mediobanca.com
www.in.mediobanca.com
*.mediobanca.com
idgfunc.mis.mediobanca.com
*.mediobanca.com
lifetime-svi.mediobanca.com
aodocs.integration.mediobanca.com
ndes.mis.mediobanca.com
www.in.mediobanca.com
mediobancasustainablefinancehub.mediobanca.com
vdi.mediobanca.com
www.in.mediobanca.com
abaco.mediobanca.com
www.in.mediobanca.com
lifetime.mediobanca.com
lifetime-prd.int.mediobanca.com
lm.mis.mediobanca.com
events.mediobanca.com
mediobanca.com
www.mediobanca.com
*.int.mediobanca.com
mediobanca.com
*.int.mediobanca.com
*.mis.mediobanca.com
*.mis.mediobanca.com
xpise01.mis.mediobanca.com
mediobanca.com
mediobanca.com
intunegwexc.mis.mediobanca.com
www.mediobanca.com
digiventsm1.mediobanca.com
*.mis.mediobanca.com
vault-bck.int.mediobanca.com
idgfunc.mis.mediobanca.com
intranetmb.mediobanca.com
*.mis.mediobanca.com
research.mediobanca.com
xpise01.mis.mediobanca.com
xpise02.mis.mediobanca.com
dbw-fmipoc.mis.mediobanca.com
idgtoc.mis.mediobanca.com
events.mediobanca.com
*.mis.mediobanca.com
www.mediobanca.com
vdi.mediobanca.com
*.mis.mediobanca.com
board.mediobanca.com
*.mediobanca.com
mediobanca.com
idgtoc.mis.mediobanca.com
aodocs.integration.mediobanca.com
mdm.mediobanca.com
www.mediobanca.com
archiviostorico.mediobanca.com
abaco.mediobanca.com
intranetmb.mediobanca.com
lifetime-svi.int.mediobanca.com
eap01.mediobanca.com
lifetime.int.mediobanca.com
mediobanca.com
archiviostorico.mediobanca.com
lifetime-col.int.mediobanca.com
mxm.mis.mediobanca.com
aodocs-cert.integration.mediobanca.com
www.in.mediobanca.com
lm.mis.mediobanca.com
aodocs-cert.integration.mediobanca.com
xpise02.mis.mediobanca.com
mediobanca.com
www.in.mediobanca.com
*.mediobanca.com
idgfunc.mis.mediobanca.com
*.mediobanca.com
lifetime-svi.mediobanca.com
aodocs.integration.mediobanca.com
ndes.mis.mediobanca.com
Certificate
The complete raw certificate details for mediobanca.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHjDCCBnSgAwIBAgIQRL4X+hsQH+YAAAAAUPF7HzANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x OTA1MTAxMTU3NTNaFw0yMDA1MTAxMjI3NTNaMGAxCzAJBgNVBAYTAklUMQ8wDQYD VQQHEwZNaWxhbm8xJzAlBgNVBAoTHk1lZGlvYmFuY2EgSW5ub3ZhdGlvbiBTZXJ2 aWNlczEXMBUGA1UEAxMObWVkaW9iYW5jYS5jb20wggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQJ3USI5JKBcbAgIZUtIkyc6gzz1TZYJr2CQz5TL9zsUrW C/dqGkusrrR1OSMVXX5xExaYKXkxcYsmsXiMzBHMBYtqNOGb+aYNkbTG3nBMA+PP kv0exYWI+Tkv+wxgh7ces4iUCKb2qE/lXcxaqq8oAZxjoIF4yGwrqR1iiWJq7g3I NhtDrLr2RJ4QVq7uLrttDheioN+lLeBuM8WgZiwuNURa1WaIO82LjsoC+Bv9LM+0 uu83/gI4VlQw42qb6V827O8MbkiaTAlE+1LV1fujakEcapoBo3QhoL2O2oKkOIbU 4HGFUs3I8mdre5RleYDtqRGCYkIz/ceBGD4NiKUtAgMBAAGjggPlMIID4TCB9QYD VR0RBIHtMIHqgg5tZWRpb2JhbmNhLmNvbYISd3d3Lm1lZGlvYmFuY2EuY29tgg9t Lm1lZGlvYmFuY2EuaXSCDW1lZGlvYmFuY2EuaXSCDW1lZGlvYmFuY2EubHWCEG1l ZGlvYmFuY2FpbnQubHWCI3JhY2NvbHRhcHJvcHJpZXRhcmlhLm1lZGlvYmFuY2Eu Y29tgiJyYWNjb2x0YXByb3ByaWV0YXJpYS5tZWRpb2JhbmNhLml0ghF3d3cubWVk aW9iYW5jYS5pdIIRd3d3Lm1lZGlvYmFuY2EubHWCFHd3dy5tZWRpb2JhbmNhaW50 Lmx1MIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgBVgdTCFpA2AUrqC5tXPFPw wOQ4eHAlCBcvo6odBxPTDAAAAWqhttU1AAAEAwBHMEUCIAHRKtFaMdE2lIIfs0ov /A4/NuZJR88R7HX25MrxW1oiAiEAn23UnnMCr8q/vDB6uIXrGhrjD7nsLDg8YxxZ uyItSS8AdwBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAWqhttVB AAAEAwBIMEYCIQC7d2JPS54z9bMulXnx9fGrNtSeUwREaO64WExIkbO/JgIhAPob DwR/DIYYTBIFO5cIELEIHMXo2Rjx5nL0Hi+5dP3CAHYAsh4FzIuizYogTodm+Su5 iiUgZ2va+nDnsklTLe+LkF4AAAFqobbVFAAABAMARzBFAiEAkoK+riq4asc5ZQ4O e27FQ84Gkmvp09CdrauhjqoRhpQCIAlqdYm5yLpVbylid92+44ldhMQ291RlaDpE XtwlqKOoMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwMwYDVR0fBCwwKjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9s ZXZlbDFrLmNybDBLBgNVHSAERDBCMDYGCmCGSAGG+mwKAQUwKDAmBggrBgEFBQcC ARYaaHR0cDovL3d3dy5lbnRydXN0Lm5ldC9ycGEwCAYGZ4EMAQICMGgGCCsGAQUF BwEBBFwwWjAjBggrBgEFBQcwAYYXaHR0cDovL29jc3AuZW50cnVzdC5uZXQwMwYI KwYBBQUHMAKGJ2h0dHA6Ly9haWEuZW50cnVzdC5uZXQvbDFrLWNoYWluMjU2LmNl cjAfBgNVHSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzAdBgNVHQ4EFgQUo57p BhN1eblwQYhfdiQuvAa+3x8wCQYDVR0TBAIwADANBgkqhkiG9w0BAQsFAAOCAQEA rFcTusNiHUawF3cdulFMTP2uznonKUejFB/pit6a+pzyA0hi1QvqPfcKqQzRs+ik AIlQjl7miyTDYE6KVvktLqiE/gpVDZ4azZ8bsZZ/u3vMNid57kAcVRhOa8TXLNQZ QF+2gXQ/izSsrJpg9itDikdc40ks2If1pRIgdejYGl7HEgy3UWGhfT1NJBIHc0vZ Dn+STU4r0tellCzWiMerCsxEEJyIhjui6UD/Pl8THj65EvCwRBkJ/gDcMjv3cYv7 hpNkU8ODukHAQHvtxySf7BXzg/0AHL6m3esI6s4dAqCCudzz47ORtbquHz39q39K EYSbGLT4RKcpGGMX3bB6qQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Cd1EiOSSgXGwICGVLSJ MnOoM89U2WCa9gkM+Uy/c7FK1gv3ahpLrK60dTkjFV1+cRMWmCl5MXGLJrF4jMwR zAWLajThm/mmDZG0xt5wTAPjz5L9HsWFiPk5L/sMYIe3HrOIlAim9qhP5V3MWqqv KAGcY6CBeMhsK6kdYoliau4NyDYbQ6y69kSeEFau7i67bQ4XoqDfpS3gbjPFoGYs LjVEWtVmiDvNi47KAvgb/SzPtLrvN/4COFZUMONqm+lfNuzvDG5ImkwJRPtS1dX7 o2pBHGqaAaN0IaC9jtqCpDiG1OBxhVLNyPJna3uUZXmA7akRgmJCM/3HgRg+DYil LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 91374526427332997875786080410303298335 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-10 11:57:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-10 12:27:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Milano' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mediobanca Innovation Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mediobanca.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26277024556705944178609234518926148346888014592367120268428701954308331277044524996633633571969334402066424816668323381979938473204674944089168352547846583293331375416883256172751929725230473941238168021367051188767416542329743838419692894891301227321965375669606182873563503751232566442154901300654158547255661787163641471322335997007096118620160492460184581143902913519478875001645678561997220684753687974972770354690243400178382061231366492569440943138502143321009973739972475434234011567211296794047182336125539564355757105434377509706828495955107490934049712794195229993798963012214264612052894432898947708658989 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (237 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mediobanca.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mediobanca.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.mediobanca.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mediobanca.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mediobanca.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mediobancaint.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'raccoltaproprietaria.mediobanca.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'raccoltaproprietaria.mediobanca.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mediobanca.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mediobanca.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mediobancaint.lu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a39ee906137579b97041885f76242ebc06bedf1f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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