webmail.mhvfcu.com
- Mid-Hudson Valley FCU -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0d:ba:bf:9a:94:62:d5:db:e4:8f:31:7d:61:fa:3d:81 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Mid-Hudson Valley FCU
Organization:
Mid-Hudson Valley FCU
Organization unit: Technology Services
Organization unit: Technology Services
State / Province:
New York
Locality: Kingston
Country: US
Locality: Kingston
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:ba:bf:9a:94:62:d5:db:e4:8f:31:7d:61:fa:3d:81Serial Number (int): 18249617348185975056663671415756176769
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f6:63:5e:70:06:17:e2:e5:c7:99:43:81:4f:34:00:99:48:bf:84:cd
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 11:f8:0d:bd:bb:94:3d:f3:e4:bb:7e:85:ea:cc:bf:da:bc:0d:4a:3d
Fingerprint (sha256): 39:ad:ed:85:0a:34:b2:fe:e8:cf:39:61:3f:f0:59:65:42:a2:51:e7:c7:5f:73:ed:09:ff:a2:1b:06:b8:a4:bd
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate webmail.mhvfcu.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for webmail.mhvfcu.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
webmail.mhvfcu.com
Other certificates including the domain name mhvfcu.com
(limited to 100 certificates)
www.mhvfcu.com
akamai-san139.exacttarget.com
pws2.mhvfcu.com
akamai-san139.exacttarget.com
testpws.mhvfcu.com
akamai-san139.exacttarget.com
www.mhvfcu.com
webmail.mhvfcu.com
rdc.mhvfcu.com
www.mhvfcu.com
webmail.mhvfcu.com
*.mhvfcu.com
pws2.mhvfcu.com
www.mhvfcu.com
www.mhvfcu.com
dev.mhvfcu.com
webmail.mhvfcu.com
webmail.mhvfcu.com
webmail.mhvfcu.com
mhvfcu.com
datamart.mhvfcu.com
pws.mhvfcu.com
links.mhvfcu.com
www.mhvfcu.com
akamai-san139.exacttarget.com
links.mhvfcu.com
www.mhvfcu.com
akamai-san139.exacttarget.com
www.mhvfcu.com
www.mhvfcu.com
www.mhvfcu.com
join.mhvfcu.com
join.mhvfcu.com
pws2.mhvfcu.com
join.mhvfcu.com
pws2.mhvfcu.com
akamai-san139.exacttarget.com
akamai-san139.exacttarget.com
www.mhvfcu.com
pws.mhvfcu.com
join.mhvfcu.com
webmail.mhvfcu.com
www.mhvfcu.com
akamai-san139.exacttarget.com
pws2.mhvfcu.com
akamai-san139.exacttarget.com
testpws.mhvfcu.com
akamai-san139.exacttarget.com
www.mhvfcu.com
webmail.mhvfcu.com
rdc.mhvfcu.com
www.mhvfcu.com
webmail.mhvfcu.com
*.mhvfcu.com
pws2.mhvfcu.com
www.mhvfcu.com
www.mhvfcu.com
dev.mhvfcu.com
webmail.mhvfcu.com
webmail.mhvfcu.com
webmail.mhvfcu.com
mhvfcu.com
datamart.mhvfcu.com
pws.mhvfcu.com
links.mhvfcu.com
www.mhvfcu.com
akamai-san139.exacttarget.com
links.mhvfcu.com
www.mhvfcu.com
akamai-san139.exacttarget.com
www.mhvfcu.com
www.mhvfcu.com
www.mhvfcu.com
join.mhvfcu.com
join.mhvfcu.com
pws2.mhvfcu.com
join.mhvfcu.com
pws2.mhvfcu.com
akamai-san139.exacttarget.com
akamai-san139.exacttarget.com
www.mhvfcu.com
pws.mhvfcu.com
join.mhvfcu.com
webmail.mhvfcu.com
www.mhvfcu.com
Certificate
The complete raw certificate details for webmail.mhvfcu.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGxTCCBa2gAwIBAgIQDbq/mpRi1dvkjzF9Yfo9gTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTkwMzA0MDAwMDAwWhcN MjEwMzA4MTIwMDAwWjCBjjELMAkGA1UEBhMCVVMxETAPBgNVBAgTCE5ldyBZb3Jr MREwDwYDVQQHEwhLaW5nc3RvbjEeMBwGA1UEChMVTWlkLUh1ZHNvbiBWYWxsZXkg RkNVMRwwGgYDVQQLExNUZWNobm9sb2d5IFNlcnZpY2VzMRswGQYDVQQDExJ3ZWJt YWlsLm1odmZjdS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3 kvEM7VezTS+/HQ0s281U1og5UheA3AJ23c30gzdMgNVKS/utyGWQputfpXkJnBKb Flum0KZdFZPXZo88bR5vHTsmb1H0qBS81mzTuI+wmre8km7tzSQQF08jEoZQGTLf FeRee0Xf2vZis7FAJcqtCRlIIdd9NEEvaNttzmzkweP9gG4TZ9ayCZpWDHHrAfJr nHBg7/KHKMver15aa5Zmyi1FJ76RqTO4PwRS3aM0Gm4PM8EfttVq/lpXEja0gYGJ xyK6nux1sSe8sDJzmRUHK/LQ4qn9SlqiZsKZJVEdN4G378azVZo7viqyZZGqc8Tr SKrsYVLzLXWsEC3Spgc9AgMBAAGjggNdMIIDWTAfBgNVHSMEGDAWgBQPgGEcgjFh 1S8o541GOLQs4cbZ4jAdBgNVHQ4EFgQU9mNecAYX4uXHmUOBTzQAmUi/hM0wHQYD VR0RBBYwFIISd2VibWFpbC5taHZmY3UuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0 cDovL2NybDMuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwL6AtoCuGKWh0 dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMEwGA1UdIARF MEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2lj ZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMHwGCCsGAQUFBwEBBHAwbjAkBggrBgEFBQcw AYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEYGCCsGAQUFBzAChjpodHRwOi8v Y2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0Eu Y3J0MAwGA1UdEwEB/wQCMAAwggGABgorBgEEAdZ5AgQCBIIBcASCAWwBagB2AO5L vbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABaUoR5XEAAAQDAEcwRQIh APEboqjoSCxjRpGoIrSJwFbcY7riTk8+B+ML+qil5Z3iAiAbm1mO/YvPQsz4YVXJ TTWLpyvscKI+8AQRQ7dx0qV3+QB3AId1v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1YMG0 6v9eoIMPAAABaUoR5pkAAAQDAEgwRgIhAOK5adHOTvqjP/dADdvuhmQrDbQx484T UBfoiJi0mD8pAiEAg+RHuQofSRI/aLYUNC69KbGXJKN9pWbbyDHwBFj4ArEAdwBE lGUusO7Or8RAB9io/ijA2uaCvtjLMbU/0zOWtbaBqAAAAWlKEeVxAAAEAwBIMEYC IQCnvieLm3agVlBqzg9bf+zJLm+gjN/vNObPRxFY5KQObwIhALewzRy5HET07Q9d k8gFD1yAYqx9XwsWig9BrHtjEydYMA0GCSqGSIb3DQEBCwUAA4IBAQDAKFe6N7Ds HY+sbSEh8nFqdM8dtXw9v1kivlwVro83RfD5eUBHvokXzjvIVOb05JniOBmUDQXg l226m7id+Eh2rUJiYgZbK7OLXFuA78Spq02Qqhzi0+0eFbAZlVbTLMBNxBmVOvHN YHbrlBtOuyj11Vmz1lyzDl/9sLKu+w5IfzDFaKWAqhvaIrmiU3DluM+7dPvmIZxF ikzLflwLWcaTHlSmh8eRKecwbfO0Vq4ZMrgbG7btwyeH/r8+mui9bBlNuoRWVSYu j5LUOIt7uVW2TNAUJvPI2x8RAtulSBgMuSAurwnQNTQb8q3PQYb7zd2v4y6LyCV1 AGUZ4ZbjyKEv -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5LxDO1Xs00vvx0NLNvN VNaIOVIXgNwCdt3N9IM3TIDVSkv7rchlkKbrX6V5CZwSmxZbptCmXRWT12aPPG0e bx07Jm9R9KgUvNZs07iPsJq3vJJu7c0kEBdPIxKGUBky3xXkXntF39r2YrOxQCXK rQkZSCHXfTRBL2jbbc5s5MHj/YBuE2fWsgmaVgxx6wHya5xwYO/yhyjL3q9eWmuW ZsotRSe+kakzuD8EUt2jNBpuDzPBH7bVav5aVxI2tIGBicciup7sdbEnvLAyc5kV Byvy0OKp/UpaombCmSVRHTeBt+/Gs1WaO74qsmWRqnPE60iq7GFS8y11rBAt0qYH PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18249617348185975056663671415756176769 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-08 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kingston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mid-Hudson Valley FCU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Technology Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'webmail.mhvfcu.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23174069414082130180788755847749999739342487059527820304869762000443177610640912475839932918364942002178302948259172448592139459090373148020256327424169617775080840828809904230804390824894193136433184770599038748067527092226234845696073071635036764883168388970290194207877402106164928684718944737619111933498168284212365133198216767007265124004270119785550849329595125481944291170112699639225606174038030347350769320382354676044019879033966328019963730233302903651346163476124370910611394455540334061839450231602526881804264181152807024064896010329426256968285266015034235728566482838881594998368829373072277632321341 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f6635e700617e2e5c79943814f34009948bf84cd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.mhvfcu.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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