staging-act.aon.co.uk
- Aon UK Limited -
Issued by DigiCert Global CA G2
About this certificate
This digital certificate with serial number 0f:1d:74:bc:9c:ec:08:0d:53:67:32:bd:6d:c1:78:84 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Aon UK Limited
Organization:
Aon UK Limited
Organization unit: IT Technology
Organization unit: IT Technology
Locality:
London
Country: GB
Country: GB
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:1d:74:bc:9c:ec:08:0d:53:67:32:bd:6d:c1:78:84Serial Number (int): 20091364248644830420557382903767595140
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 75:cd:0e:ac:99:5f:69:f6:e5:90:5b:e6:e9:73:4a:40:fc:82:d6:a2
AuthorityKeyId: 24:6e:2b:2d:d0:6a:92:51:51:25:69:01:aa:9a:47:a6:89:e7:40:20
Fingerprint (sha1): 63:13:68:07:27:67:57:a6:4a:be:f1:99:39:66:4e:19:df:73:85:f6
Fingerprint (sha256): 38:8c:de:e6:d0:82:06:94:f7:30:7c:8f:0b:0f:5e:dc:d7:d3:9b:1c:bd:7d:cd:1c:e5:88:06:9e:fd:bb:23:52
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalCAG2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalCAG2.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalCAG2.crl
Check the revocation status for certificate staging-act.aon.co.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging-act.aon.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging-act.aon.co.uk
Other certificates including the domain name aon.co.uk
(limited to 100 certificates)
www.staging-acl.aon.co.uk
staging-secure.aon.co.uk
www.che.aon.co.uk
www.maintenance.aon.co.uk
www.securepgp.aon.co.uk
www.staging-cashreceiptpreload.aon.co.uk
www.bi.aon.co.uk
caggateway1.aon.co.uk
staging-acrash.aon.co.uk
ipse.aon.co.uk
www.securepgp.aon.co.uk
insurance.aon.co.uk
maven.aon.co.uk
www.maintenance.aon.co.uk
www.soap.aon.co.uk
www.aviationcertificates.aon.co.uk
www.cashreceiptpreload.aon.co.uk
staging-mediaandentertainment.secureaffinity.aon.co.uk
www.dataextraction.aon.co.uk
aoncentre-roombooking.aon.co.uk
secure.aon.co.uk
acrash.aon.co.uk
acrash.aon.co.uk
www.riskmaps.aon.co.uk
www.bi.aon.co.uk
myview.aon.co.uk
acrash.aon.co.uk
www.staging-soap.aon.co.uk
www.bi.aon.co.uk
drpax.secureaffinity.aon.co.uk
www.staging-cargonet.aon.co.uk
www.dataextraction.aon.co.uk
staging.applyonline.aon.co.uk
www.prionestop.aon.co.uk
insurance.aon.co.uk
www.staging-riskmaps.aon.co.uk
www.riskmaps.aon.co.uk
www.uat-ecm.aon.co.uk
www.cashreceiptpreload.aon.co.uk
www.ecmws.aon.co.uk
accountantspi.secureaffinity.aon.co.uk
insurance.aon.co.uk
acrashreporting.aon.co.uk
act.aon.co.uk
www.staging-gauss-web.aon.co.uk
uat.cm.insurance.aon.co.uk
www.securepgp.aon.co.uk
valiant.aon.co.uk
www.staging-dataextraction.aon.co.uk
www.staging-globe-web.aon.co.uk
www.staging-aviationcertificates.aon.co.uk
www.staging-clientarrival.aon.co.uk
www.uat-ecmws.aon.co.uk
uat-aoncentre-roombooking.aon.co.uk
www.staging-cashreceiptpreload.aon.co.uk
www.docex.aon.co.uk
www.docex-link.aon.co.uk
oscar.aon.co.uk
accountantspi.secureaffinity.aon.co.uk
www.dataextraction.aon.co.uk
www.ecm.aon.co.uk
www.staging-bi.aon.co.uk
maven.aon.co.uk
www.staging-acl.aon.co.uk
www.securepgp.aon.co.uk
insurance.aon.co.uk
www.bi.aon.co.uk
www.apr.aon.co.uk
www.riskmaps.aon.co.uk
www.cargonet.aon.co.uk
www.grc.aon.co.uk
uat-aoncentre-roombooking.aon.co.uk
www.aviationcertificates.aon.co.uk
staging-act.aon.co.uk
www.prionestop.aon.co.uk
www.staging-cargonet.aon.co.uk
www.staging-dataextraction.aon.co.uk
www.staging-bankreconutility.aon.co.uk
www.apr.aon.co.uk
staging-aoncarrierlink.aon.co.uk
act.aon.co.uk
www.staging-grc.aon.co.uk
www.staging-service.aon.co.uk
acrash.aon.co.uk
www.prionestop.aon.co.uk
www.globe-web.aon.co.uk
www.staging-securepgp.aon.co.uk
valiant.aon.co.uk
www.docex-link.aon.co.uk
tradesman.secureaffinity.aon.co.uk
www.staging-globe-web.aon.co.uk
staging-secure.aon.co.uk
secure.aon.co.uk
www.staging-gauss-web.aon.co.uk
insolvencyandrestructuring.aon.co.uk
www.maintenance.aon.co.uk
www.staging-aviationcertificates.aon.co.uk
pax.secureaffinity.aon.co.uk
www.staging-soap.aon.co.uk
emeaapps1.aon.co.uk
staging-secure.aon.co.uk
www.che.aon.co.uk
www.maintenance.aon.co.uk
www.securepgp.aon.co.uk
www.staging-cashreceiptpreload.aon.co.uk
www.bi.aon.co.uk
caggateway1.aon.co.uk
staging-acrash.aon.co.uk
ipse.aon.co.uk
www.securepgp.aon.co.uk
insurance.aon.co.uk
maven.aon.co.uk
www.maintenance.aon.co.uk
www.soap.aon.co.uk
www.aviationcertificates.aon.co.uk
www.cashreceiptpreload.aon.co.uk
staging-mediaandentertainment.secureaffinity.aon.co.uk
www.dataextraction.aon.co.uk
aoncentre-roombooking.aon.co.uk
secure.aon.co.uk
acrash.aon.co.uk
acrash.aon.co.uk
www.riskmaps.aon.co.uk
www.bi.aon.co.uk
myview.aon.co.uk
acrash.aon.co.uk
www.staging-soap.aon.co.uk
www.bi.aon.co.uk
drpax.secureaffinity.aon.co.uk
www.staging-cargonet.aon.co.uk
www.dataextraction.aon.co.uk
staging.applyonline.aon.co.uk
www.prionestop.aon.co.uk
insurance.aon.co.uk
www.staging-riskmaps.aon.co.uk
www.riskmaps.aon.co.uk
www.uat-ecm.aon.co.uk
www.cashreceiptpreload.aon.co.uk
www.ecmws.aon.co.uk
accountantspi.secureaffinity.aon.co.uk
insurance.aon.co.uk
acrashreporting.aon.co.uk
act.aon.co.uk
www.staging-gauss-web.aon.co.uk
uat.cm.insurance.aon.co.uk
www.securepgp.aon.co.uk
valiant.aon.co.uk
www.staging-dataextraction.aon.co.uk
www.staging-globe-web.aon.co.uk
www.staging-aviationcertificates.aon.co.uk
www.staging-clientarrival.aon.co.uk
www.uat-ecmws.aon.co.uk
uat-aoncentre-roombooking.aon.co.uk
www.staging-cashreceiptpreload.aon.co.uk
www.docex.aon.co.uk
www.docex-link.aon.co.uk
oscar.aon.co.uk
accountantspi.secureaffinity.aon.co.uk
www.dataextraction.aon.co.uk
www.ecm.aon.co.uk
www.staging-bi.aon.co.uk
maven.aon.co.uk
www.staging-acl.aon.co.uk
www.securepgp.aon.co.uk
insurance.aon.co.uk
www.bi.aon.co.uk
www.apr.aon.co.uk
www.riskmaps.aon.co.uk
www.cargonet.aon.co.uk
www.grc.aon.co.uk
uat-aoncentre-roombooking.aon.co.uk
www.aviationcertificates.aon.co.uk
staging-act.aon.co.uk
www.prionestop.aon.co.uk
www.staging-cargonet.aon.co.uk
www.staging-dataextraction.aon.co.uk
www.staging-bankreconutility.aon.co.uk
www.apr.aon.co.uk
staging-aoncarrierlink.aon.co.uk
act.aon.co.uk
www.staging-grc.aon.co.uk
www.staging-service.aon.co.uk
acrash.aon.co.uk
www.prionestop.aon.co.uk
www.globe-web.aon.co.uk
www.staging-securepgp.aon.co.uk
valiant.aon.co.uk
www.docex-link.aon.co.uk
tradesman.secureaffinity.aon.co.uk
www.staging-globe-web.aon.co.uk
staging-secure.aon.co.uk
secure.aon.co.uk
www.staging-gauss-web.aon.co.uk
insolvencyandrestructuring.aon.co.uk
www.maintenance.aon.co.uk
www.staging-aviationcertificates.aon.co.uk
pax.secureaffinity.aon.co.uk
www.staging-soap.aon.co.uk
emeaapps1.aon.co.uk
Certificate
The complete raw certificate details for staging-act.aon.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIQDx10vJzsCA1TZzK9bcF4hDANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMR4wHAYDVQQDExVE aWdpQ2VydCBHbG9iYWwgQ0EgRzIwHhcNMTkwNzA1MDAwMDAwWhcNMjAwODAzMTIw MDAwWjBvMQswCQYDVQQGEwJHQjEPMA0GA1UEBxMGTG9uZG9uMRcwFQYDVQQKEw5B b24gVUsgTGltaXRlZDEWMBQGA1UECxMNSVQgVGVjaG5vbG9neTEeMBwGA1UEAxMV c3RhZ2luZy1hY3QuYW9uLmNvLnVrMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAxsql8WvC9hW3n4pmTfM2ZURN6tw5ri74FSqgzlfN+eVeXqa3pmqlDZql IWKxZxbYrDIFo5mCDgemhOTLBPectEENWvQP40Z02qGsFqG+Yo1jqCRoMQjdWOCR syoDnaoooFtdKEA6f8C5O130wbmY79nGgI56mt3RcZbRGd9dNVtJaHqY87tRxqSz 5Pw51KVoDciDFk1skAIIGRGa4s/lB87fPBSEr1seiDrUup74Gaw380orI2xBGRCQ 6Z0tlwF2SPwc4QM0VXG/NdFSH9JQvqk5+4jfzuYm+M0RFDLYj/tEr9aSF/lfnZkA xmmcje0SH5BDsDA2ToNzrevYzKBydQIDAQABo4IB8jCCAe4wHwYDVR0jBBgwFoAU JG4rLdBqklFRJWkBqppHponnQCAwHQYDVR0OBBYEFHXNDqyZX2n25ZBb5ulzSkD8 gtaiMCAGA1UdEQQZMBeCFXN0YWdpbmctYWN0LmFvbi5jby51azAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMHcGA1UdHwRwMG4w NaAzoDGGL2h0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbENB RzIuY3JsMDWgM6Axhi9odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGlnaUNlcnRH bG9iYWxDQUcyLmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUF BwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB0Bggr BgEFBQcBAQRoMGYwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNv bTA+BggrBgEFBQcwAoYyaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lD ZXJ0R2xvYmFsQ0FHMi5jcnQwCQYDVR0TBAIwADATBgorBgEEAdZ5AgQDAQH/BAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAjVevYerexRFR+P+9//vX9S3jBotaYxiUYevC mMWtpeZd/poJ35pemlT5Fw6hfaez8Q8R8R4PmLVR+4aB+yVFUut985PA7l6/KxNA BqGxqxXA7SXxQgStb2MliSf3/MIEK/T9JCMrlFRhFsM+4D8XjRcOgJm5BNl1HQ8N cg4K6O2eO2qm+QmFomipqSPlF/4WCHklY/lqC/WSp4boenss1YVFWTOc8VeV+tqQ PseJczklpe5NJHrEG0tk0nWpZob4Ev0EPBMyF3K7B7CxHgLOIPiTjhl1kmR+tHpJ eOtrFfDj7UfWwQa0UIkJpIc2xvqEswWIJ64WXrNvtlHTsmmBHQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsql8WvC9hW3n4pmTfM2 ZURN6tw5ri74FSqgzlfN+eVeXqa3pmqlDZqlIWKxZxbYrDIFo5mCDgemhOTLBPec tEENWvQP40Z02qGsFqG+Yo1jqCRoMQjdWOCRsyoDnaoooFtdKEA6f8C5O130wbmY 79nGgI56mt3RcZbRGd9dNVtJaHqY87tRxqSz5Pw51KVoDciDFk1skAIIGRGa4s/l B87fPBSEr1seiDrUup74Gaw380orI2xBGRCQ6Z0tlwF2SPwc4QM0VXG/NdFSH9JQ vqk5+4jfzuYm+M0RFDLYj/tEr9aSF/lfnZkAxmmcje0SH5BDsDA2ToNzrevYzKBy dQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20091364248644830420557382903767595140 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global CA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-03 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aon UK Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging-act.aon.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25095113942542127724120966343055538454726479780619425861301653508945134092959516989861737629768988953426676707927724901190031206211778982109958473851738533448881457343774603667172482841450532736985601888603280821868989170592743441938750666988190305159027644318079718483501350643795581516648790502656801420163505702392766490948124536229099353600524903041283139417431345244609463236274443980484340547642389484959744019994552052509885500620288230227020937449523551681232079401201642602905222457287558682747206100027682657292545345907508037015550011136428948183072498744754701985076030071517482254175602759499692157989493 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 246e2b2dd06a925151256901aa9a47a689e74020 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 75cd0eac995f69f6e5905be6e9734a40fc82d6a2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-act.aon.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalCAG2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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