shvpn.apax.com
- Apax Partners LLP -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 56:ad:c2:bb:f7:8a:7b:f5:e4:93:71:0b:da:0a:40:a1 was issued on by Entrust, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Apax Partners LLP
Organization:
Apax Partners LLP
Locality:
London
Country: GB
Country: GB
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 56:ad:c2:bb:f7:8a:7b:f5:e4:93:71:0b:da:0a:40:a1Serial Number (int): 115215824673769003416935933192805433505
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 66:d8:20:d8:bd:2e:24:46:c2:d5:0f:95:af:c6:87:c9:a0:61:4d:35
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 2b:16:37:41:66:95:51:49:78:fc:e6:63:49:9e:65:11:90:5d:f8:59
Fingerprint (sha256): 32:f8:f7:e3:01:f5:12:42:12:b6:70:f1:0f:4e:4d:6e:1c:b5:84:ae:9f:fc:2a:f8:c5:91:6e:86:85:61:d4:6e
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate shvpn.apax.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shvpn.apax.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shvpn.apax.com
Other certificates including the domain name apax.com
(limited to 100 certificates)
extranet.apax.com
feedback.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
insights-digital.apax.com
spendinsights.apax.com
APX65PEXIPCONF.apax.com
ervaring.nedvice.nl
apx66ee.apax.com
portfolio.apax.com
ervaring.nedvice.nl
origin.apax.com
apax.com
insights-digital.apax.com
origin.apax.com
origin.apax.com
insights.apax.wrvc.co.uk
origin.apax.com
cosign.apax.com
www.apax.com
insights-digital.apax.com
origin.apax.com
spendoepinsights.apax.com
shvpn.apax.com
event-submissions.apax.com
insights.apax.wrvc.co.uk
sslvpn.apax.com
extranet.apax.com
event-submissions.apax.com
mobile.apax.com
ervaring.nedvice.nl
apg.apax.com
www.apax.com
www.apax.com
apax.com
ervaring.nedvice.nl
apax.com
pages.apax.com
feedback.apax.com
cosign.apax.com
sslvpn.apax.com
ervaring.nedvice.nl
apx66secops02.apax.com
APX65PEXIPMGR.apax.com
sslvpn.apax.com
spendoepinsights.apax.com
apax.com
origin.apax.com
guest.apax.com
www.apax.com
digital.apax.com
extranet.apax.com
www.apax.com
www.apax.com
digital.apax.com
feedback.apax.com
spendoepinsights.apax.com
spendoepinsights.apax.com
origin.apax.com
feedback.apax.com
extranet.apax.com
extranet.apax.com
aipadminuat.apax.com
sip.meet.apax.com
webmail.apax.com
apax.com
feedback.apax.com
ervaring.nedvice.nl
spendoepinsights.apax.com
ervaring.nedvice.nl
aipadmin.apax.com
apax.com
apax.com
ervaring.nedvice.nl
spendoepinsights.apax.com
remote.apax.com
spendinsights.apax.com
feedback.apax.com
extranet.apax.com
insights-digital.apax.com
apax.com
insights-digital.apax.com
APX65PEXIPCONF.apax.com
spendoepinsights.apax.com
apax.com
feedback.apax.com
insights-digital.apax.com
apax.com
www.apax.com
webmail.apax.com
shvpn.apax.com
*.apax.com
ervaring.nedvice.nl
*.apax.com
apax.com
event-submissions.apax.com
pages.apax.com
spendoepinsights.apax.com
spendoepinsights.apax.com
origin.apax.com
feedback.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
insights-digital.apax.com
spendinsights.apax.com
APX65PEXIPCONF.apax.com
ervaring.nedvice.nl
apx66ee.apax.com
portfolio.apax.com
ervaring.nedvice.nl
origin.apax.com
apax.com
insights-digital.apax.com
origin.apax.com
origin.apax.com
insights.apax.wrvc.co.uk
origin.apax.com
cosign.apax.com
www.apax.com
insights-digital.apax.com
origin.apax.com
spendoepinsights.apax.com
shvpn.apax.com
event-submissions.apax.com
insights.apax.wrvc.co.uk
sslvpn.apax.com
extranet.apax.com
event-submissions.apax.com
mobile.apax.com
ervaring.nedvice.nl
apg.apax.com
www.apax.com
www.apax.com
apax.com
ervaring.nedvice.nl
apax.com
pages.apax.com
feedback.apax.com
cosign.apax.com
sslvpn.apax.com
ervaring.nedvice.nl
apx66secops02.apax.com
APX65PEXIPMGR.apax.com
sslvpn.apax.com
spendoepinsights.apax.com
apax.com
origin.apax.com
guest.apax.com
www.apax.com
digital.apax.com
extranet.apax.com
www.apax.com
www.apax.com
digital.apax.com
feedback.apax.com
spendoepinsights.apax.com
spendoepinsights.apax.com
origin.apax.com
feedback.apax.com
extranet.apax.com
extranet.apax.com
aipadminuat.apax.com
sip.meet.apax.com
webmail.apax.com
apax.com
feedback.apax.com
ervaring.nedvice.nl
spendoepinsights.apax.com
ervaring.nedvice.nl
aipadmin.apax.com
apax.com
apax.com
ervaring.nedvice.nl
spendoepinsights.apax.com
remote.apax.com
spendinsights.apax.com
feedback.apax.com
extranet.apax.com
insights-digital.apax.com
apax.com
insights-digital.apax.com
APX65PEXIPCONF.apax.com
spendoepinsights.apax.com
apax.com
feedback.apax.com
insights-digital.apax.com
apax.com
www.apax.com
webmail.apax.com
shvpn.apax.com
*.apax.com
ervaring.nedvice.nl
*.apax.com
apax.com
event-submissions.apax.com
pages.apax.com
spendoepinsights.apax.com
spendoepinsights.apax.com
origin.apax.com
Certificate
The complete raw certificate details for shvpn.apax.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/zCCBOegAwIBAgIQVq3Cu/eKe/Xkk3EL2gpAoTANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDAzMjcxMjQ3NTBaFw0yNTAzMjcxMjQ3NDlaMFMxCzAJBgNVBAYTAkdCMQ8wDQYD VQQHEwZMb25kb24xGjAYBgNVBAoTEUFwYXggUGFydG5lcnMgTExQMRcwFQYDVQQD Ew5zaHZwbi5hcGF4LmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB ANdrWshVuFCYAbWoVAkW2jscJEJVoX9Jr9+Ly6f+RleP+/uOaokKBJAPh/mrO4YQ 0qu0W5SummWjb6BSQreqBYDsYxFBLxOEcRq7Tnz4MnPxlDC82OmPLEibRCZzMxtv KF3lS8bLfCek4lghRLJO3RaF7bhb765qVqDhtBlqL/N+Ol1CZPvg1hn3rj+/x25z hvOm8EziWWg52qNRluXB5PazVfCgDWpxqkGgVC7wfVMuB+C6q5j8DZoCABhlX2l5 56BxjIeo39/FDQEU69YEmG4HMn8dFRUbgN88NuR9iJAZl7L9WAPemLK9BCaDlTkJ vM6Yme2OkeEXPU7BpMAMMl5E9WGTzShZnEZlU7Pki3k9d4RkKE45ik/rYdeFXz5v ykA1MhviRMmVEJotitFCh1wCW+clv7X1uIh+wJVbrIm2X4aG3Y2YsjYDK3zIiWPe x3hKb2EoknFfLvODTlsU2IF+JCYo1TUSHG9XrwlfaqgAjdOeOd9pbUjj9n4wjXti HljQZxO2YVl+hjSSB88L52nswTUZyVeA1Wlc2meGuhX4x+AKKRhkNs1wNbbvjW1h DpfQB3+B2L2RU0aU8YeCNTjx6MRa1TJXP5+0W5ytq3lfuDIZFPvrFq7jotLQXv+a 2CZLVCtMX5yjQJeqLFNdIt/UKBuF5LJHur8dajJMmWF1AgMBAAGjggFlMIIBYTAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRm2CDYvS4kRsLVD5WvxofJoGFNNTAfBgNV HSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzBoBggrBgEFBQcBAQRcMFowIwYI KwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChido dHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwMwYDVR0fBCww KjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFrLmNybDAZBgNV HREEEjAQgg5zaHZwbi5hcGF4LmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMBMGA1UdIAQMMAowCAYGZ4EMAQICMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBxlyKPCW5uzc6/kyny YHUqjOsUja/uBArBEhwKln8lGGj2gDu2UZtMTEKrwmWYkJRkevLGtHWBpJCq5NPn AVuvKdAHlxKMvL2h7T14Ma1/BpOhQsb6yPigF9jcZWDpZyZa8dEXnnR/yYU+An+8 Li21acFdmMN2wwcrkTNg2dRCRXnRsFINPqAfHy85tbH5uiYYhY6Yzt3z8pRmNvM/ 0QVqTitgv9L28ujwwod4/hImcxcwG27gj/C+RogKgGTbQAztuR6hmz2rCRmAgFtb TyARazdbqt73P+GsB7IlzKOSBqAgr1Tf00kv3Wum3lOxpZB1kpMq9yvD3lsINsHb pf3U -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA12tayFW4UJgBtahUCRba OxwkQlWhf0mv34vLp/5GV4/7+45qiQoEkA+H+as7hhDSq7RblK6aZaNvoFJCt6oF gOxjEUEvE4RxGrtOfPgyc/GUMLzY6Y8sSJtEJnMzG28oXeVLxst8J6TiWCFEsk7d FoXtuFvvrmpWoOG0GWov8346XUJk++DWGfeuP7/HbnOG86bwTOJZaDnao1GW5cHk 9rNV8KANanGqQaBULvB9Uy4H4LqrmPwNmgIAGGVfaXnnoHGMh6jf38UNARTr1gSY bgcyfx0VFRuA3zw25H2IkBmXsv1YA96Ysr0EJoOVOQm8zpiZ7Y6R4Rc9TsGkwAwy XkT1YZPNKFmcRmVTs+SLeT13hGQoTjmKT+th14VfPm/KQDUyG+JEyZUQmi2K0UKH XAJb5yW/tfW4iH7AlVusibZfhobdjZiyNgMrfMiJY97HeEpvYSiScV8u84NOWxTY gX4kJijVNRIcb1evCV9qqACN054532ltSOP2fjCNe2IeWNBnE7ZhWX6GNJIHzwvn aezBNRnJV4DVaVzaZ4a6FfjH4AopGGQ2zXA1tu+NbWEOl9AHf4HYvZFTRpTxh4I1 OPHoxFrVMlc/n7RbnK2reV+4MhkU++sWruOi0tBe/5rYJktUK0xfnKNAl6osU10i 39QoG4Xkske6vx1qMkyZYXUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 115215824673769003416935933192805433505 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-27 12:47:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-27 12:47:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Apax Partners LLP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shvpn.apax.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 878834289608997752249932369385584688527907441497206165689208940963333101124373098725845079177872081004550317813195224935933567312103939886799014255046917724267281709366978300923029573755238265090520013666589968887994498399180834652580100579998205932394540392300966545560017414451527226262041972822697003142360253938072229300807208608944913867027172294789859419767182018658030140061677794132728974876134867955491144865002976631335817170997423573126949114023875151553222206389507401458623535829920260003457580729952863582212289712206531568328912830837137051919227320437324774614388001535759084540873499017131155431352904229173707442197643357052029856058383603926145542126576534461715524607357652917674551962939588961123984169362270663549046059466116630320084758999878460449574261525868458197722012905713276899495337280259535662522800957995489265780427063444455800835314315160229891564274560016517039755933736019170476221535624758164117221317555409575558555873112668218567124002165435293965415834859718316559725252218977898774483201809008827676352312575211275981243823745727908403771240146932882783279083627604661132664075109205409052641104046199579691636720425185868278291862106768870749823135451084085020077131349814331897383300456821 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 66d820d8bd2e2446c2d50f95afc687c9a0614d35 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shvpn.apax.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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