translation.royalcollege.ca
- Royal College of Physicians and Surgeons of Canada -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number a1:19:83:31:2b:31:0a:91:00:00:00:00:50:e4:8c:69 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Royal College of Physicians and Surgeons of Canada
Organization:
Royal College of Physicians and Surgeons of Canada
State / Province:
Ontario
Locality: Ottawa
Country: CA
Locality: Ottawa
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): a1:19:83:31:2b:31:0a:91:00:00:00:00:50:e4:8c:69Serial Number (int): 214138175634040010481925952457358478441
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: f3:5a:2b:16:f3:88:d6:f2:50:7a:eb:ad:23:59:e3:5b:21:0b:d6:3c
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): e1:91:14:0b:08:84:57:08:17:c7:26:c5:4b:04:e0:81:7d:cf:34:96
Fingerprint (sha256): 34:68:79:8e:22:42:88:9a:40:62:8a:1a:e5:21:af:1c:c3:dd:26:9d:55:76:c1:28:c3:18:c7:e3:37:34:ee:89
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate translation.royalcollege.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for translation.royalcollege.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
translation.royalcollege.ca
www.translation.royalcollege.ca
www.translation.royalcollege.ca
Other certificates including the domain name royalcollege.ca
(limited to 100 certificates)
international-royalcollege-ca.adh.pbp.mybluehost.me
newsroom.royalcollege.ca
annualreview.royalcollege.ca
iceblog.royalcollege.ca
tls.automattic.com
pdhandbook.royalcollege.ca
icre.royalcollege.ca
newsroom.royalcollege.ca
annualreview.royalcollege.ca
royalcitytrack.ca
novacycling.com
pdhandbook.royalcollege.ca
strategicplan.royalcollege.ca
booking.royalcollege.ca
iceblog.royalcollege.ca
tls.automattic.com
tls.automattic.com
gartner.royalcollege.ca
tls.automattic.com
newsroom.royalcollege.ca
translation.royalcollege.ca
mail.royalcollege.ca
strategicplan.royalcollege.ca
forms.royalcollege.ca
tls.automattic.com
newsroom.royalcollege.ca
iceblog.royalcollege.ca
tls.automattic.com
tls.automattic.com
tls.automattic.com
pdhandbook.royalcollege.ca
tls.automattic.com
tls.automattic.com
cpd.royalcollege.ca
annualreview.royalcollege.ca
icre2021.royalcollege.ca
tls.automattic.com
strategicplan.royalcollege.ca
www.instid.app
tls.automattic.com
tls.automattic.com
tls.automattic.com
mail.royalcollege.ca
booking.royalcollege.ca
tls.automattic.com
mail.royalcollege.ca
tls.automattic.com
foundation.royalcollege.ca
icre.royalcollege.ca
tls.automattic.com
*.royalcollege.ca
strategicplan.royalcollege.ca
tls.automattic.com
tls.automattic.com
www.underskoterskejobb.se
icre2021.royalcollege.ca
tls.automattic.com
strategicplan.royalcollege.ca
annualreview.royalcollege.ca
quebec.royalcollege.ca
translation.royalcollege.ca
tls.automattic.com
annualreview.royalcollege.ca
strategicplan.royalcollege.ca
gasboard.teyral.at
pdhandbook.royalcollege.ca
*.royalcollege.ca
canmedsdb-test.royalcollege.ca
icre.royalcollege.ca
annualreview.royalcollege.ca
yeledoctor.dermadetect.com
booking.royalcollege.ca
auth.stg-ats.persol.one
tls.automattic.com
mail2.royalcollege.ca
spotify.vbi.dev
tls.automattic.com
iceblog.royalcollege.ca
chauyan.dev
tls.automattic.com
newsroom.adh.pbp.mybluehost.me
pdhandbook.royalcollege.ca
*.royalcollege.ca
translation.royalcollege.ca
forms.royalcollege.ca
tls.automattic.com
annualreview.royalcollege.ca
iceblog.royalcollege.ca
faces-dev.royalcollege.ca
strategicplan.royalcollege.ca
pdhandbook.collegeroyal.ca
icre.royalcollege.ca
www.elproveedor.com.co
icre.royalcollege.ca
tls.automattic.com
go.b2b.innov.ridegoshare.com
tls.automattic.com
pdhandbook.collegeroyal.ca
so-design-studio.com
icre2021.royalcollege.ca
newsroom.royalcollege.ca
annualreview.royalcollege.ca
iceblog.royalcollege.ca
tls.automattic.com
pdhandbook.royalcollege.ca
icre.royalcollege.ca
newsroom.royalcollege.ca
annualreview.royalcollege.ca
royalcitytrack.ca
novacycling.com
pdhandbook.royalcollege.ca
strategicplan.royalcollege.ca
booking.royalcollege.ca
iceblog.royalcollege.ca
tls.automattic.com
tls.automattic.com
gartner.royalcollege.ca
tls.automattic.com
newsroom.royalcollege.ca
translation.royalcollege.ca
mail.royalcollege.ca
strategicplan.royalcollege.ca
forms.royalcollege.ca
tls.automattic.com
newsroom.royalcollege.ca
iceblog.royalcollege.ca
tls.automattic.com
tls.automattic.com
tls.automattic.com
pdhandbook.royalcollege.ca
tls.automattic.com
tls.automattic.com
cpd.royalcollege.ca
annualreview.royalcollege.ca
icre2021.royalcollege.ca
tls.automattic.com
strategicplan.royalcollege.ca
www.instid.app
tls.automattic.com
tls.automattic.com
tls.automattic.com
mail.royalcollege.ca
booking.royalcollege.ca
tls.automattic.com
mail.royalcollege.ca
tls.automattic.com
foundation.royalcollege.ca
icre.royalcollege.ca
tls.automattic.com
*.royalcollege.ca
strategicplan.royalcollege.ca
tls.automattic.com
tls.automattic.com
www.underskoterskejobb.se
icre2021.royalcollege.ca
tls.automattic.com
strategicplan.royalcollege.ca
annualreview.royalcollege.ca
quebec.royalcollege.ca
translation.royalcollege.ca
tls.automattic.com
annualreview.royalcollege.ca
strategicplan.royalcollege.ca
gasboard.teyral.at
pdhandbook.royalcollege.ca
*.royalcollege.ca
canmedsdb-test.royalcollege.ca
icre.royalcollege.ca
annualreview.royalcollege.ca
yeledoctor.dermadetect.com
booking.royalcollege.ca
auth.stg-ats.persol.one
tls.automattic.com
mail2.royalcollege.ca
spotify.vbi.dev
tls.automattic.com
iceblog.royalcollege.ca
chauyan.dev
tls.automattic.com
newsroom.adh.pbp.mybluehost.me
pdhandbook.royalcollege.ca
*.royalcollege.ca
translation.royalcollege.ca
forms.royalcollege.ca
tls.automattic.com
annualreview.royalcollege.ca
iceblog.royalcollege.ca
faces-dev.royalcollege.ca
strategicplan.royalcollege.ca
pdhandbook.collegeroyal.ca
icre.royalcollege.ca
www.elproveedor.com.co
icre.royalcollege.ca
tls.automattic.com
go.b2b.innov.ridegoshare.com
tls.automattic.com
pdhandbook.collegeroyal.ca
so-design-studio.com
icre2021.royalcollege.ca
Certificate
The complete raw certificate details for translation.royalcollege.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgIRAKEZgzErMQqRAAAAAFDkjGkwDQYJKoZIhvcNAQELBQAw gboxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMSgwJgYDVQQL Ex9TZWUgd3d3LmVudHJ1c3QubmV0L2xlZ2FsLXRlcm1zMTkwNwYDVQQLEzAoYykg MjAxMiBFbnRydXN0LCBJbmMuIC0gZm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxLjAs BgNVBAMTJUVudHJ1c3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgLSBMMUswHhcN MTgwNzA1MTM0MTUxWhcNMjAwNzA1MTQxMTUwWjCBkzELMAkGA1UEBhMCQ0ExEDAO BgNVBAgTB09udGFyaW8xDzANBgNVBAcTBk90dGF3YTE7MDkGA1UEChMyUm95YWwg Q29sbGVnZSBvZiBQaHlzaWNpYW5zIGFuZCBTdXJnZW9ucyBvZiBDYW5hZGExJDAi BgNVBAMTG3RyYW5zbGF0aW9uLnJveWFsY29sbGVnZS5jYTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAKl10hgEFkTv6H8EHlUxQlOycIS9OIaBBG8xl2Kd Yd1v9JpiEhI1eK9l6l6p3e0Nvvuf/L0mM3nA0N0YSaLFEUW+mZ/Zs7yvPtdkGYgE 2Iet7IolZoqPh6u0ipCIMv6ZO5L255qvB55o+YJ328b9rBwyL5ImFQaNbzH81B2T QQwbwzsD3118nsPez/wjHU6luMQQyESXIdf/EBM0vOFRoTkYWYw8vJRzxCrrCiMp yJUGJcGhp2LHR2AQEyIOBpT9Trga5W2L3bEBcjj53dK1wdAk+WlmF/zLaNGs6lsP tXpmbRfMflN+eqOjmhl8E8PRDNfNTZdGhSlctZaPi7hUso8CAwEAAaOCAb4wggG6 MBMGCisGAQQB1nkCBAMBAf8EAgUAMEcGA1UdEQRAMD6CG3RyYW5zbGF0aW9uLnJv eWFsY29sbGVnZS5jYYIfd3d3LnRyYW5zbGF0aW9uLnJveWFsY29sbGVnZS5jYTAO BgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwMwYDVR0fBCwwKjAo oCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFrLmNybDBLBgNVHSAE RDBCMDYGCmCGSAGG+mwKAQUwKDAmBggrBgEFBQcCARYaaHR0cDovL3d3dy5lbnRy dXN0Lm5ldC9ycGEwCAYGZ4EMAQICMGgGCCsGAQUFBwEBBFwwWjAjBggrBgEFBQcw AYYXaHR0cDovL29jc3AuZW50cnVzdC5uZXQwMwYIKwYBBQUHMAKGJ2h0dHA6Ly9h aWEuZW50cnVzdC5uZXQvbDFrLWNoYWluMjU2LmNlcjAfBgNVHSMEGDAWgBSConB0 3bxTP8971PfNf6dgxgpMvzAdBgNVHQ4EFgQU81orFvOI1vJQeuutI1njWyEL1jww CQYDVR0TBAIwADANBgkqhkiG9w0BAQsFAAOCAQEAH5F0YzOx/JTY7+xyLPNBul42 eswmyPFzjHaQUENSMtNHtY1Tj1a5w2aUrVZgNytih0J8nCkR5JOUbFNZUA9RAAbh FiYpFXdYTCnB1mll3CaPYWATBizSWavTdBuSI7/vvlO9WtsbiuOhNWvJcN82XoZ5 5A3DFUGu4L9Xlfny8h8KMGS4MPITO3N5Y11YFz5kBcwdo12u3xTFaRY6PRGFi+E0 KssYt2X1wnbQ8eDN7VHOTbn8v5hfMsWT20m+1utiWEsQBYisEvySQDlvvHFZ3W3x VrccOzO4Bq8+sZmkGps+hQ49VnLS8UbAwjxVcBBKxv0awLgHkwphyDK75xgtKQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXXSGAQWRO/ofwQeVTFC U7JwhL04hoEEbzGXYp1h3W/0mmISEjV4r2XqXqnd7Q2++5/8vSYzecDQ3RhJosUR Rb6Zn9mzvK8+12QZiATYh63siiVmio+Hq7SKkIgy/pk7kvbnmq8Hnmj5gnfbxv2s HDIvkiYVBo1vMfzUHZNBDBvDOwPfXXyew97P/CMdTqW4xBDIRJch1/8QEzS84VGh ORhZjDy8lHPEKusKIynIlQYlwaGnYsdHYBATIg4GlP1OuBrlbYvdsQFyOPnd0rXB 0CT5aWYX/Mto0azqWw+1emZtF8x+U356o6OaGXwTw9EM181Nl0aFKVy1lo+LuFSy jwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 214138175634040010481925952457358478441 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-05 13:41:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-05 14:11:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ottawa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Royal College of Physicians and Surgeons of Canada' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'translation.royalcollege.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21392373081455983093795359970259879418000940010682887719213575688790226791031356000189938272477607993632549692123914567988154895855489303051732827335738125330725953346388566953478271661134811065039035270626699261280938875125440017997258594779673895156621113584178545249620618002209298225939575664882005209434181466157995035985010838782524335545283601039765372700347052329817707787853456508950469165926021484706860874982906320193917086243507209149100818894343791229496192803602203440768141515348958200969845806707191398629535928160561332238440631473374383761797931873101919293269745180070288205412537991663052834255503 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'translation.royalcollege.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.translation.royalcollege.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f35a2b16f388d6f2507aebad2359e35b210bd63c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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