*.legacy.com
- Legacy.com, Inc. -
Issued by Symantec Class 3 Secure Server CA - G4
About this certificate
This digital certificate with serial number 5a:b8:bf:63:46:52:78:bb:32:0a:fe:87:6e:9a:21:fd was issued on by Symantec Corporation.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Legacy.com, Inc.
Organization:
Legacy.com, Inc.
State / Province:
Illinois
Locality: Evanston
Country: US
Locality: Evanston
Country: US
Symantec Corporation
Organization:
Symantec Corporation
Organization unit: Symantec Trust Network
Organization unit: Symantec Trust Network
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 5a:b8:bf:63:46:52:78:bb:32:0a:fe:87:6e:9a:21:fdSerial Number (int): 120589784048198875968040257289119736317
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 5f:60:cf:61:90:55:df:84:43:14:8a:60:2a:b2:f5:7a:f4:43:18:ef
Fingerprint (sha1): bd:1f:b3:62:c4:9f:71:46:3d:09:50:35:69:0b:06:04:c7:a3:60:d2
Fingerprint (sha256): 36:49:eb:76:72:87:43:ff:c0:8b:f6:88:e5:ab:55:59:2b:d5:bb:9e:b6:3d:21:7a:55:19:f7:f9:1b:9f:db:80
Issuing Certificate URL: http://ss.symcb.com/ss.crt
Revocation information
OCSP Server: http://ss.symcd.comCRL Distribution Point: http://ss.symcb.com/ss.crl
Check the revocation status for certificate *.legacy.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.legacy.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.legacy.com
legacy.com
legacy.com
Other certificates including the domain name legacy.com
(limited to 100 certificates)
carpepm.almonds.com
ssl003.insnw.net
ssl860932.cloudflaressl.com
calendar.sdzsafaripark.org
banking-business-review.com
cdn-test.battlefields.org
citeak.multidevcom.uaf.edu
ssl860932.cloudflaressl.com
chns120.courseresource.yale.edu
*.legacy.com
banking-business-review.com
tls.automattic.com
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
www.legacy.com
chns168.courseresource.yale.edu
uat.legacy.com
club.kjzz.org
legacy.com
memorialwebsites.legacy.com
www.legacy.com
legacy.com
5691967484723200-fe1.pantheonsite.io
160.167.tmcapital.com
160.167.tmcapital.com
brassunion.com
acadmintest.cuofco.org
www.legacy.com
chns168.courseresource.yale.edu
*.legacy.com
acadmintest.cuofco.org
uat.legacy.com
buyersguide.aaps.org
tls.automattic.com
cdi.uga.edu
citeak.multidevcom.uaf.edu
chns168.courseresource.yale.edu
click.alerts.legacy.com
caldesignlab.berkeley.edu
160.167.tmcapital.com
careers.whittier.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
leftwoods.com
sni.cloudflaressl.com
ssl003.insnw.net
cms.legacy.com
live-legacy-cms.pantheonsite.io
citrix.remote.naylor.com
2.www.upenn.edu
sni.cloudflaressl.com
banking-business-review.com
160.167.tmcapital.com
sympathy.legacy.com
clc.shawnee.edu
pro.legacy.com
chns150.courseresource.yale.edu
www.legacy.com
160.167.tmcapital.com
sni.cloudflaressl.com
tls.automattic.com
cci520-new.courtinnovation.org
cci520-new.courtinnovation.org
eduhup.com
media2.legacy.com
legacyowa.legacy.com
campaign.ucsc.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
caldesignlab.berkeley.edu
5691967484723200-fe1.pantheonsite.io
eduhup.com
5660980839186432-fe2.pantheonsite.io
lwozzk.legacy.com
census.arizona.edu
tls.automattic.com
pro.legacy.com
chns168.courseresource.yale.edu
ssl003.insnw.net
thepointalehouse.com
lwozzk.legacy.com
sni.cloudflaressl.com
leeanatankersley.com
ssl003.insnw.net
sni.cloudflaressl.com
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
ssl860932.cloudflaressl.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
www.legacy.com
*.legacy.com
banking-business-review.com
ssl003.insnw.net
ssl860932.cloudflaressl.com
calendar.sdzsafaripark.org
banking-business-review.com
cdn-test.battlefields.org
citeak.multidevcom.uaf.edu
ssl860932.cloudflaressl.com
chns120.courseresource.yale.edu
*.legacy.com
banking-business-review.com
tls.automattic.com
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
www.legacy.com
chns168.courseresource.yale.edu
uat.legacy.com
club.kjzz.org
legacy.com
memorialwebsites.legacy.com
www.legacy.com
legacy.com
5691967484723200-fe1.pantheonsite.io
160.167.tmcapital.com
160.167.tmcapital.com
brassunion.com
acadmintest.cuofco.org
www.legacy.com
chns168.courseresource.yale.edu
*.legacy.com
acadmintest.cuofco.org
uat.legacy.com
buyersguide.aaps.org
tls.automattic.com
cdi.uga.edu
citeak.multidevcom.uaf.edu
chns168.courseresource.yale.edu
click.alerts.legacy.com
caldesignlab.berkeley.edu
160.167.tmcapital.com
careers.whittier.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
leftwoods.com
sni.cloudflaressl.com
ssl003.insnw.net
cms.legacy.com
live-legacy-cms.pantheonsite.io
citrix.remote.naylor.com
2.www.upenn.edu
sni.cloudflaressl.com
banking-business-review.com
160.167.tmcapital.com
sympathy.legacy.com
clc.shawnee.edu
pro.legacy.com
chns150.courseresource.yale.edu
www.legacy.com
160.167.tmcapital.com
sni.cloudflaressl.com
tls.automattic.com
cci520-new.courtinnovation.org
cci520-new.courtinnovation.org
eduhup.com
media2.legacy.com
legacyowa.legacy.com
campaign.ucsc.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
caldesignlab.berkeley.edu
5691967484723200-fe1.pantheonsite.io
eduhup.com
5660980839186432-fe2.pantheonsite.io
lwozzk.legacy.com
census.arizona.edu
tls.automattic.com
pro.legacy.com
chns168.courseresource.yale.edu
ssl003.insnw.net
thepointalehouse.com
lwozzk.legacy.com
sni.cloudflaressl.com
leeanatankersley.com
ssl003.insnw.net
sni.cloudflaressl.com
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
ssl860932.cloudflaressl.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
www.legacy.com
*.legacy.com
banking-business-review.com
Certificate
The complete raw certificate details for *.legacy.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXDCCBUSgAwIBAgIQWri/Y0ZSeLsyCv6Hbpoh/TANBgkqhkiG9w0BAQsFADB+ MQswCQYDVQQGEwJVUzEdMBsGA1UEChMUU3ltYW50ZWMgQ29ycG9yYXRpb24xHzAd BgNVBAsTFlN5bWFudGVjIFRydXN0IE5ldHdvcmsxLzAtBgNVBAMTJlN5bWFudGVj IENsYXNzIDMgU2VjdXJlIFNlcnZlciBDQSAtIEc0MB4XDTE3MDUwMTAwMDAwMFoX DTE4MDczMTIzNTk1OVowZTELMAkGA1UEBhMCVVMxETAPBgNVBAgMCElsbGlub2lz MREwDwYDVQQHDAhFdmFuc3RvbjEZMBcGA1UECgwQTGVnYWN5LmNvbSwgSW5jLjEV MBMGA1UEAwwMKi5sZWdhY3kuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAwWiGZMf2V60VDY7vawb+MYVZ34NZQPCtxW5cV6aVbtXCJ3ZREI69j0q4 peLluxZfB/3BiOEly1pXoLf3ft1zF1DTmpvV8d7XvEC5NIJwzD0j6XswkzZZsVKb AbjK0ghHXTo7dgzVlqaBtDL8Q3Wz1x9AeVpJZfnnrKMYieMEywB+/cSULoxEPmVg dd6X5SCiGHfUinuUl9nNCGuqcSqRZSciw0sMt3/9QYjmc6BldK5qksJOLpMUjceg yORS3r2//CV1gfLS9q9TgHJSGa0ZJPuOMOOSjw4q25q8fxpvVoOnG0IBNW9vY+wW YmGX+5v8xrE5bz7tWR6jkI71Bi3/IQIDAQABo4IC7TCCAukwIwYDVR0RBBwwGoIM Ki5sZWdhY3kuY29tggpsZWdhY3kuY29tMAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQD AgWgMGEGA1UdIARaMFgwVgYGZ4EMAQICMEwwIwYIKwYBBQUHAgEWF2h0dHBzOi8v ZC5zeW1jYi5jb20vY3BzMCUGCCsGAQUFBwICMBkMF2h0dHBzOi8vZC5zeW1jYi5j b20vcnBhMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9zcy5zeW1jYi5jb20vc3Mu Y3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAfBgNVHSMEGDAWgBRf YM9hkFXfhEMUimAqsvV69EMY7zBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGG E2h0dHA6Ly9zcy5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9zcy5zeW1j Yi5jb20vc3MuY3J0MIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYAdgDd6x0reg1P piCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAVvEix9SAAAEAwBHMEUCIQD1626C Dj7rXXhQ+7Bbg72Eic3pHFn/3KRAusyokm3RJwIgGnXux1kkWoiDQ9ao9utAHzq5 1qI9EEVvelmrMH+8HywAdQCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3c EAAAAVvEix9pAAAEAwBGMEQCIG2FINWOgrXlq3I3eSFNirNwJRTsKA3cnIC98XgA P/YeAiAqqAvPX8MCs8ag5Ef74U2uz003eE+IdeYYxATruLeq/gB1AO5Lvbd1zmC6 4UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABW8SLIU0AAAQDAEYwRAIgTNKo/nP+ 7+XyGiPwdhfikc6VwQY5npeaoOPS1kaNDv4CICAcaJ/+yAkEpQ5NU6IQd3Kdro9u asIKVBZ7AOM2R2BBMA0GCSqGSIb3DQEBCwUAA4IBAQCLIQoMQofUzEfpltrLJHTd /YNFuBwcq+wD6F/C/2Xaggk+nqlG2HAynHs80x6gNo1d7WAgXgoUdP7Sj3QxSVXf Yk8+7T8JEwLMVCjVV4OiMfi3jB2IXsfPfGzseTSnJVYGzDksBSaufYqO+788ElJ4 WjWWwBXXIBLjszbmzZNZC5QazZPJqVbVQsO9Zc87BVcLCkjzJUN8vCmrt4tKGmYh 2jyDqQiAQCD0P5FQe9CAid8u7mb8JIM1lT5k3/1Qe6NuuPv+0QONYiRG2ILXW1lx YpYF7Zm3UsAuNGn66zBkKRbmHf1LOfNUg/nvJt4PDeTc22z8UsFEaD0UPmnVRtS7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWiGZMf2V60VDY7vawb+ MYVZ34NZQPCtxW5cV6aVbtXCJ3ZREI69j0q4peLluxZfB/3BiOEly1pXoLf3ft1z F1DTmpvV8d7XvEC5NIJwzD0j6XswkzZZsVKbAbjK0ghHXTo7dgzVlqaBtDL8Q3Wz 1x9AeVpJZfnnrKMYieMEywB+/cSULoxEPmVgdd6X5SCiGHfUinuUl9nNCGuqcSqR ZSciw0sMt3/9QYjmc6BldK5qksJOLpMUjcegyORS3r2//CV1gfLS9q9TgHJSGa0Z JPuOMOOSjw4q25q8fxpvVoOnG0IBNW9vY+wWYmGX+5v8xrE5bz7tWR6jkI71Bi3/ IQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 120589784048198875968040257289119736317 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Class 3 Secure Server CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-31 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Evanston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Legacy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.legacy.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24415536044809417559928852479469284789506745432914560154055151520484513078415352462209392525609842384379608207792118026019812859747291499365925288349168994648770357791001086104687142714728794413586692602246468005191062508209456648616127231953812733126367843192118163212640621521990865151647874942861992209531442316049447168130500394329173043712468754531020766881765492395284128398473192047181793313215536345405241526449354489737974470081733750873765362064438507047947032407562626266689251342543770941264456620903385690168448078413876715842643741555702681493835502652222226713113225187953924209700457480381536742014753 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.legacy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacy.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ss.symcb.com/ss.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5f60cf619055df8443148a602ab2f57af44318ef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ss.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ss.symcb.com/ss.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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