wfm.ap.org
- The Associated Press -
Issued by Entrust Certification Authority - L1C
About this certificate
This digital certificate with serial number 4c:24:51:0e was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
The Associated Press
Organization:
The Associated Press
State / Province:
New Jersey
Locality: Cranbury
Country: US
Locality: Cranbury
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 4c:24:51:0eSerial Number (int): 1277448462
Serial Number lenght: 31 bits, 4 octets
SubjectKeyId: 7f:5f:2d:8d:2c:83:db:04:2b:bc:49:89:a8:7b:ff:f7:4c:b6:71:87
AuthorityKeyId: 1e:f1:ab:89:06:f8:49:0f:01:33:77:ee:14:7a:ee:19:7c:93:28:4d
Fingerprint (sha1): f7:3c:16:4f:44:0b:ec:63:01:75:63:55:91:b5:30:2e:be:f7:0a:2b
Fingerprint (sha256): 35:f1:12:45:b2:38:de:ce:89:c0:1c:63:33:94:70:e5:17:90:bf:e4:ea:08:26:56:43:4c:c5:ed:91:5f:39:14
Issuing Certificate URL: http://aia.entrust.net/2048-l1csha2.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1c.crl
Check the revocation status for certificate wfm.ap.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for wfm.ap.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
wfm.ap.org
Other certificates including the domain name ap.org
(limited to 100 certificates)
feedback.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
playbook.ap.org
ervaring.nedvice.nl
www.ap.org
help.ap.org
nycwlcdmz1.ap.org
ap.org
apipreview.ap.org
careers.ap.org
appbnom11.ap.org
ervaring.nedvice.nl
ctchive01.ap.org
inside.ap.org
cwa-ctc.ap.org
ap.org
partners.apvideohub.ap.org
discover.ap.org
ASSP-EXPC-P.ap.org
ap.org
ap.org
epix.ap.org
mail-ctc.ap.org
ap.org
ap.org
ervaring.nedvice.nl
backup.ap.org
ervaring.nedvice.nl
eapws.ap.org
developer.ap.org
ervaring.nedvice.nl
datakit.ap.org
login.ap.org
kibana.associatedpress.com
api.ap.org
DeveloperAPIPreview.ap.org
ap.org
blog.ap.org
sunshine.ap.org
ipdlonbackhaul.ap.org
approdpbnom11.ap.org
careers.ap.org
easyvista.ap.org
ap.org
ssrpm.ap.org
vault.ap.org
tokive01.ap.org
login.ap.org
ctcgsscasper01.ap.org
ap.org
easyvista.ap.org
crmgw.ap.org
api.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
preview.apvideohub.ap.org
ervaring.nedvice.nl
ap.org
sunshine.ap.org
store.ap.org
store.ap.org
origin.hosted.ap.org
ap.org
ap.org
blog.ap.org
store.ap.org
tokive01.ap.org
ap.org
approdpbnom12.ap.org
apipreview.ap.org
ap.org
apvideohub.ap.org
Developerapi.ap.org
eapadmin2.ap.org
ervaring.nedvice.nl
mysap.ap.org
blog.ap.org
discover.ap.org
inside.ap.org
wfm.ap.org
ap.org
discover.ap.org
IMSIPAPGW01.ap.org
ap.org
api-qa.ap.org
ap.org
partners.apvideohub.ap.org
blog.ap.org
store.ap.org
apvideohub.ap.org
sports.ap.org
bejive01.ap.org
discover.ap.org
gamestream.ap.org
apipreview.ap.org
ervaring.nedvice.nl
discover.ap.org
tokive01.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
ervaring.nedvice.nl
playbook.ap.org
ervaring.nedvice.nl
www.ap.org
help.ap.org
nycwlcdmz1.ap.org
ap.org
apipreview.ap.org
careers.ap.org
appbnom11.ap.org
ervaring.nedvice.nl
ctchive01.ap.org
inside.ap.org
cwa-ctc.ap.org
ap.org
partners.apvideohub.ap.org
discover.ap.org
ASSP-EXPC-P.ap.org
ap.org
ap.org
epix.ap.org
mail-ctc.ap.org
ap.org
ap.org
ervaring.nedvice.nl
backup.ap.org
ervaring.nedvice.nl
eapws.ap.org
developer.ap.org
ervaring.nedvice.nl
datakit.ap.org
login.ap.org
kibana.associatedpress.com
api.ap.org
DeveloperAPIPreview.ap.org
ap.org
blog.ap.org
sunshine.ap.org
ipdlonbackhaul.ap.org
approdpbnom11.ap.org
careers.ap.org
easyvista.ap.org
ap.org
ssrpm.ap.org
vault.ap.org
tokive01.ap.org
login.ap.org
ctcgsscasper01.ap.org
ap.org
easyvista.ap.org
crmgw.ap.org
api.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
preview.apvideohub.ap.org
ervaring.nedvice.nl
ap.org
sunshine.ap.org
store.ap.org
store.ap.org
origin.hosted.ap.org
ap.org
ap.org
blog.ap.org
store.ap.org
tokive01.ap.org
ap.org
approdpbnom12.ap.org
apipreview.ap.org
ap.org
apvideohub.ap.org
Developerapi.ap.org
eapadmin2.ap.org
ervaring.nedvice.nl
mysap.ap.org
blog.ap.org
discover.ap.org
inside.ap.org
wfm.ap.org
ap.org
discover.ap.org
IMSIPAPGW01.ap.org
ap.org
api-qa.ap.org
ap.org
partners.apvideohub.ap.org
blog.ap.org
store.ap.org
apvideohub.ap.org
sports.ap.org
bejive01.ap.org
discover.ap.org
gamestream.ap.org
apipreview.ap.org
ervaring.nedvice.nl
discover.ap.org
tokive01.ap.org
ervaring.nedvice.nl
Certificate
The complete raw certificate details for wfm.ap.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIETCRRDjANBgkqhkiG9w0BAQsFADCBsTELMAkGA1UEBhMC VVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRydXN0 Lm5ldC9ycGEgaXMgaW5jb3Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMW KGMpIDIwMDkgRW50cnVzdCwgSW5jLjEuMCwGA1UEAxMlRW50cnVzdCBDZXJ0aWZp Y2F0aW9uIEF1dGhvcml0eSAtIEwxQzAeFw0xNDA5MjUyMDU0MTVaFw0xODA5MjUw MDM5MDBaMGkxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MREwDwYD VQQHEwhDcmFuYnVyeTEdMBsGA1UEChMUVGhlIEFzc29jaWF0ZWQgUHJlc3MxEzAR BgNVBAMTCndmbS5hcC5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUs3ttsP6J6P5doCddkBd3bdqvA0wxDFwgza/+pmWTQqFByiTlclVsQFXwwCmr kNNyP0qc+acE2/uA8cCIH5+hxVHgijaP248i7VABwTZL4OdZW42Yt93kjlt4Ji21 jAb9+RJ75yRSufi1F+rArWpbcTpuu9rexoHGI/pVHg6bQOuWvVpGvFuvc4LehA/d QxiWUM+o8qTy8J1UmQNZb7uU7noWZXOhUKCyCEsG2mP7+hCp1QEBtmWjqvOd9ci5 G04XhgpQqEAittxSSGADXo91ZOGNZPlH0Rz3022m5q0GN7Ne6ZcBQZFCvEUII8Cy ZDh6vYtBAErCB1YChd6f/l7JAgMBAAGjggFzMIIBbzALBgNVHQ8EBAMCBaAwEwYD VR0lBAwwCgYIKwYBBQUHAwEwMwYDVR0fBCwwKjAooCagJIYiaHR0cDovL2NybC5l bnRydXN0Lm5ldC9sZXZlbDFjLmNybDBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUH MAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8v YWlhLmVudHJ1c3QubmV0LzIwNDgtbDFjc2hhMi5jZXIwSgYDVR0gBEMwQTA1Bgkq hkiG9n0HSwIwKDAmBggrBgEFBQcCARYaaHR0cDovL3d3dy5lbnRydXN0Lm5ldC9y cGEwCAYGZ4EMAQICMBUGA1UdEQQOMAyCCndmbS5hcC5vcmcwHwYDVR0jBBgwFoAU HvGriQb4SQ8BM3fuFHruGXyTKE0wHQYDVR0OBBYEFH9fLY0sg9sEK7xJiah7//dM tnGHMAkGA1UdEwQCMAAwDQYJKoZIhvcNAQELBQADggEBAHAqyUORyJxTKHjsd64L VbNdy4wZ2eoc0qM0l9XQDEb9GaI9nvQ1RX6xWcTXUO0CgbrTr4gFF2z3ZUeyG2K5 +bI/MgjrGluJq6PrtTiE/zklZ78Os2656zPcUv5mCZmpzo0VZYgH+b0ZSLd6+kDa YI/HyZrfQldt8ZqIm1jqCeSR7sEO5BtepLr4oObQmzklPwcY7A9Yv+Y+UFuJbccp lCEeh6WocljeUArBGVYduETDME/hgVV6yz0uoVZXqjSHPd5KABr8CJr6O2X0kTxK fYfeLRbZVB4nybPHGap9iirgXmg8d/iTiSazc3KjrxroaEXjgbKSBDF1r9GGjPaL Qxk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1LN7bbD+iej+XaAnXZAX d23arwNMMQxcIM2v/qZlk0KhQcok5XJVbEBV8MApq5DTcj9KnPmnBNv7gPHAiB+f ocVR4Io2j9uPIu1QAcE2S+DnWVuNmLfd5I5beCYttYwG/fkSe+ckUrn4tRfqwK1q W3E6brva3saBxiP6VR4Om0Drlr1aRrxbr3OC3oQP3UMYllDPqPKk8vCdVJkDWW+7 lO56FmVzoVCgsghLBtpj+/oQqdUBAbZlo6rznfXIuRtOF4YKUKhAIrbcUkhgA16P dWThjWT5R9Ec99NtpuatBjezXumXAUGRQrxFCCPAsmQ4er2LQQBKwgdWAoXen/5e yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1277448462 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.entrust.net/rpa is incorporated by reference' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2009 Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1C' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-09-25 20:54:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-25 00:39:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cranbury' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Associated Press' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'wfm.ap.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26851026595936644040549171309012490767786578286625756031627551570288393795625404466058617182730136033461262488922736101004083543203228070267379380186025689132507055042588630354007159595815983469923519337567160440199935028076618569406539723469022940653491483814747239273908910519525395137602836945983986426372752344331474578985364070876284939448854376389398423642036600917156011243677153199061354561623392228928825039982912834027379816499665701106514580883218174032110465243739933934976618286180068535709349857245307838314384719686151865282521051190821656302899310985230616099343239127601380014967037430623445855395529 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1c.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/2048-l1csha2.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113533.7.75.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wfm.ap.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1ef1ab8906f8490f013377ee147aee197c93284d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7f5f2d8d2c83db042bbc4989a87bfff74cb67187 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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