avon.kz
- Avon Products Inc -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0d:53:24:51:ed:41:8d:f8:db:b0:6c:03:a6:ba:a4:59 was issued on by DigiCert Inc.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Avon Products Inc
Organization:
Avon Products Inc
State / Province:
New York
Locality: Suffern
Country: US
Locality: Suffern
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:53:24:51:ed:41:8d:f8:db:b0:6c:03:a6:ba:a4:59Serial Number (int): 17711661242116390106694748694294209625
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ba:12:94:32:b3:3e:5d:8e:0e:e0:23:6b:ff:f1:46:24:a3:61:3b:13
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 47:b4:8b:ff:b7:af:4f:26:a6:ef:6f:a6:e4:c7:61:ac:8a:26:82:12
Fingerprint (sha256): 35:18:1f:fa:cf:d9:d8:21:e0:07:30:f1:94:25:1c:c6:31:9c:4f:dd:f1:92:6a:b1:d2:8e:7a:e6:c1:18:4d:86
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate avon.kz
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for avon.kz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
avon.kz
kz.avon.com
www.kz.avon.com
www.avon.kz
kz.avon.com
www.kz.avon.com
www.avon.kz
Other certificates including the domain name avon.kz
(limited to 100 certificates)
tools.avon.kz
io.avon.kz
go.avon.kz
qaf.office.avon.kz
tools.avon.kz
tools.avon.kz
static1.br.avon.com
avon.kz
tools.avon.kz
static1.br.avon.com
promo.avon.kz
my.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
dnevniki.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
www.avon.kz
qaf.office.avon.kz
avon.kz
kz.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
www.avon.kz
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
my.avon.kz
qaf.office.avon.kz
qaf.office.avon.kz
static1.br.avon.com
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
io.avon.kz
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
promo.avon.kz
www.avon.kz
static1.br.avon.com
dnevniki.avon.kz
tools.avon.kz
dnevniki.avon.kz
go.avon.kz
static1.br.avon.com
static1.br.avon.com
www.avon.kz
static1.br.avon.com
*.avon.kz
promo.avon.kz
go.avon.kz
*.office.avon.kz
static1.br.avon.com
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
avon.com
my.avon.kz
promo.avon.kz
io.avon.kz
go.avon.kz
qaf.office.avon.kz
tools.avon.kz
tools.avon.kz
static1.br.avon.com
avon.kz
tools.avon.kz
static1.br.avon.com
promo.avon.kz
my.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
dnevniki.avon.kz
drupal.avon.com.ar
static1.br.avon.com
static1.br.avon.com
www.avon.kz
qaf.office.avon.kz
avon.kz
kz.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
www.avon.kz
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
static1.br.avon.com
my.avon.kz
qaf.office.avon.kz
qaf.office.avon.kz
static1.br.avon.com
promo.avon.kz
static1.br.avon.com
static1.br.avon.com
io.avon.kz
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
promo.avon.kz
www.avon.kz
static1.br.avon.com
dnevniki.avon.kz
tools.avon.kz
dnevniki.avon.kz
go.avon.kz
static1.br.avon.com
static1.br.avon.com
www.avon.kz
static1.br.avon.com
*.avon.kz
promo.avon.kz
go.avon.kz
*.office.avon.kz
static1.br.avon.com
dnevniki.avon.kz
static1.br.avon.com
static1.br.avon.com
my.avon.kz
static1.br.avon.com
avon.com
my.avon.kz
promo.avon.kz
Certificate
The complete raw certificate details for avon.kz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGzDCCBbSgAwIBAgIQDVMkUe1BjfjbsGwDprqkWTANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMjAzMDEwMDAwMDBa Fw0yMzAzMTQyMzU5NTlaMGAxCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhOZXcgWW9y azEQMA4GA1UEBxMHU3VmZmVybjEaMBgGA1UEChMRQXZvbiBQcm9kdWN0cyBJbmMx EDAOBgNVBAMTB2F2b24ua3owggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyZ1cuayr5wSY2XXE/n+lZYs02p4F72emrbjZgdTmSeaggDYCidMwYv8S20fKN eAima2GvSl9epuZh1psyTaNO72LVgkgLlhmKTjc9SM2sPvd9iJzeKbGgKk3NoYzs pBEM3th/9bOgBW5K8ZEwcSl/fq+u6oLZAXnzpStk5gx0/FKMud3bOXLBWeXvf/A6 eN++fJ/0IRmTbDh1AGaQjd51BKepCIvcl2z1ZoFQQl824Ob+vA4xgLv2TMSjsHc5 YIMKfllG0IDlu+LB4MiOv+W/Q06B3g7MIWxm9KlvHbzgatbl2cY4ZXltBf8HVudo X0MJHCM9xJv9fJnbwY5cm84dAgMBAAGjggORMIIDjTAfBgNVHSMEGDAWgBS3a6Lq qKqEjHnqtNoPmLLFlXa59DAdBgNVHQ4EFgQUuhKUMrM+XY4O4CNr//FGJKNhOxMw PQYDVR0RBDYwNIIHYXZvbi5reoILa3ouYXZvbi5jb22CD3d3dy5rei5hdm9uLmNv bYILd3d3LmF2b24ua3owDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjCBjwYDVR0fBIGHMIGEMECgPqA8hjpodHRwOi8vY3JsMy5k aWdpY2VydC5jb20vRGlnaUNlcnRUTFNSU0FTSEEyNTYyMDIwQ0ExLTQuY3JsMECg PqA8hjpodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGlnaUNlcnRUTFNSU0FTSEEy NTYyMDIwQ0ExLTQuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkwJwYIKwYBBQUH AgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzB/BggrBgEFBQcBAQRzMHEw JAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBJBggrBgEFBQcw AoY9aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hB MjU2MjAyMENBMS0xLmNydDAJBgNVHRMEAjAAMIIBfQYKKwYBBAHWeQIEAgSCAW0E ggFpAWcAdQDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAX9Fp0gj AAAEAwBGMEQCIAHMRGetH+eh1xJ1eMgVnDKgqJjYxYWnj3afo5GDvb/rAiAq17xo 87Lb7TtuCppdqeGsRSNe27Mse3iBrawA9WA0kwB2ADXPGRu/sWxXvw+tTG1Cy7u2 JyAmUeo/4SrvqAPDO9ZMAAABf0WnSDsAAAQDAEcwRQIhAL3JUBLF5Ri4O3TqvkS7 lcIv2DTmVwNxFvckXcx+z4ElAiAfoRRPHuwPBRg/vEqB4DKf2Q3chMrG5ZMRj8DF 3ipJ9gB2ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAABf0WnSAUA AAQDAEcwRQIhAOcAU9MtfubJZzWMBXmdzKGi9Uih/wfdd7E2JIlanDLsAiAfHYoZ LTAn5UESMp2wl/MDKLp6ntyyhuXjLzZdLk3ZXjANBgkqhkiG9w0BAQsFAAOCAQEA Mti75iQu3m3UnQb2lW6J1oEf5Y6fm/vAEOOXZT/7TrEoxo+0G5xxIv4HEh9siBKM pM2E/zsshYDOXZgvbDrxaMaaxOuhsF84xen1iv+s5trLYMzKaXcS3sTYlXBINjpG jmV/VxpReaM/4KleIrRSWiuGCf+Eg4SVamLTDZIspAiKN5CODtUfaVy3H37Nc/i8 Crn/x48uYwDuqvm6CfZ1dXgbmsBn+vXirHN0aFn+M+B0PM5JYzAH2R55f2aNDKH2 DxIeUUCEWkSJaV5lkNKShUaGVsn6QYvJxpAwXODbnjL/WirayWGqzb9mhFMVCyMG 0082qe2cFyfjJVJ/C/t4IA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmdXLmsq+cEmNl1xP5/p WWLNNqeBe9npq242YHU5knmoIA2AonTMGL/EttHyjXgIpmthr0pfXqbmYdabMk2j Tu9i1YJIC5YZik43PUjNrD73fYic3imxoCpNzaGM7KQRDN7Yf/WzoAVuSvGRMHEp f36vruqC2QF586UrZOYMdPxSjLnd2zlywVnl73/wOnjfvnyf9CEZk2w4dQBmkI3e dQSnqQiL3Jds9WaBUEJfNuDm/rwOMYC79kzEo7B3OWCDCn5ZRtCA5bviweDIjr/l v0NOgd4OzCFsZvSpbx284GrW5dnGOGV5bQX/B1bnaF9DCRwjPcSb/XyZ28GOXJvO HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17711661242116390106694748694294209625 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Suffern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Avon Products Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'avon.kz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22521377409442961466519109297692950179577394382570328508245013066729035399779227451457778969762059130167904740098850028903597103755535228895414042307050019548982394713483819622154921909714606901568874998109303643581860912406643190989814330359041439695471535624940540428031093652898556736646008290452853216631465100226412150766206728991437797468183357695133960334534650922775982642034021929845932775984291117236946448528518126504031158127207244828356014113788524702074312421640169997358569147502485867189304963358217529691019997013430366907177722133095342832534425588719993546358275972347233745476510453932376962354717 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ba129432b33e5d8e0ee0236bfff14624a3613b13 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.kz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kz.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kz.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.kz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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