my.kaingaora.govt.nz
- Kainga Ora Homes and Communities -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 08:21:95:cc:6d:76:14:0b:21:85:40:57:c1:e1:14:9f was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Kainga Ora Homes and Communities
Organization:
Kainga Ora Homes and Communities
Locality:
Wellington
Country: NZ
Country: NZ
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:21:95:cc:6d:76:14:0b:21:85:40:57:c1:e1:14:9fSerial Number (int): 10808208038063687273690388542653535391
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c8:50:f7:08:26:61:db:65:d3:af:e9:04:76:5c:33:5c:66:27:7a:1c
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): c8:54:6b:6e:ec:92:e9:b9:30:b8:4b:23:da:82:e0:30:4b:a5:0d:8b
Fingerprint (sha256): 3c:96:58:a6:5d:4d:84:65:d6:b0:e1:6e:31:c3:4f:34:79:9b:a8:c2:29:a0:2b:19:37:cc:dc:5e:56:6a:56:0b
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate my.kaingaora.govt.nz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for my.kaingaora.govt.nz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
my.kaingaora.govt.nz
my.hnz.co.nz
my.hnz.co.nz
Other certificates including the domain name kaingaora.govt.nz
(limited to 100 certificates)
my.npe4.kaingaora.govt.nz
careers.hnzc.co.nz
ucweb02.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
access02.kaingaora.govt.nz
iaf.portal.kaingaora.govt.nz
ucweb01.kaingaora.govt.nz
my.kaingaora.govt.nz
ciam.kaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
kaaingaora.govt.nz
myaccount.firsthomepartner.kaingaora.govt.nz
access01.kaingaora.govt.nz
ciam.kaingaora.govt.nz
my.kaingaora.govt.nz
help.cloudpayroll.com.au
kaaingaora.govt.nz
ucweb01.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
kaaingaora.govt.nz
my.kaingaora.govt.nz
desk.aquion.com.au
kaaingaora.govt.nz
access02.kaingaora.govt.nz
careers.hnzc.co.nz
live.madeopen.co.uk
kaaingaora.govt.nz
access01.kaingaora.govt.nz
helpdesk.csxpi.com
live.madeopen.co.uk
mail.hnzc.co.nz
desk.mygpmptool.com.au
kaaingaora.govt.nz
careers.hnzc.co.nz
access02.kaingaora.govt.nz
zohosd.mbav.com.au
kaaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
kaaingaora.govt.nz
my.kaingaora.govt.nz
live.madeopen.co.uk
my.kaingaora.govt.nz
kaaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
kaaingaora.govt.nz
my.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
kaaingaora.govt.nz
rawa.kaingaora.govt.nz
my.npe4.kaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
ucweb02.kaingaora.govt.nz
my.kaingaora.govt.nz
hnzaadexpwe01.hnzc.co.nz
ciam.kaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
kaaingaora.govt.nz
ucweb02.kaingaora.govt.nz
careers.hnzc.co.nz
ucweb02.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
access02.kaingaora.govt.nz
iaf.portal.kaingaora.govt.nz
ucweb01.kaingaora.govt.nz
my.kaingaora.govt.nz
ciam.kaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
kaaingaora.govt.nz
myaccount.firsthomepartner.kaingaora.govt.nz
access01.kaingaora.govt.nz
ciam.kaingaora.govt.nz
my.kaingaora.govt.nz
help.cloudpayroll.com.au
kaaingaora.govt.nz
ucweb01.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
kaaingaora.govt.nz
my.kaingaora.govt.nz
desk.aquion.com.au
kaaingaora.govt.nz
access02.kaingaora.govt.nz
careers.hnzc.co.nz
live.madeopen.co.uk
kaaingaora.govt.nz
access01.kaingaora.govt.nz
helpdesk.csxpi.com
live.madeopen.co.uk
mail.hnzc.co.nz
desk.mygpmptool.com.au
kaaingaora.govt.nz
careers.hnzc.co.nz
access02.kaingaora.govt.nz
zohosd.mbav.com.au
kaaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
kaaingaora.govt.nz
my.kaingaora.govt.nz
live.madeopen.co.uk
my.kaingaora.govt.nz
kaaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
kaaingaora.govt.nz
my.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
kaaingaora.govt.nz
rawa.kaingaora.govt.nz
my.npe4.kaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
ucweb02.kaingaora.govt.nz
my.kaingaora.govt.nz
hnzaadexpwe01.hnzc.co.nz
ciam.kaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
kaaingaora.govt.nz
ucweb02.kaingaora.govt.nz
Certificate
The complete raw certificate details for my.kaingaora.govt.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHyTCCBrGgAwIBAgIQCCGVzG12FAshhUBXweEUnzANBgkqhkiG9w0BAQwFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMjEwMDMwMDAwMDBa Fw0yMzEwMjQyMzU5NTlaMGwxCzAJBgNVBAYTAk5aMRMwEQYDVQQHEwpXZWxsaW5n dG9uMSkwJwYDVQQKEyBLYWluZ2EgT3JhIEhvbWVzIGFuZCBDb21tdW5pdGllczEd MBsGA1UEAxMUbXkua2Fpbmdhb3JhLmdvdnQubnowggIiMA0GCSqGSIb3DQEBAQUA A4ICDwAwggIKAoICAQDH28SEat06AQi3Rlg9v7Vs2EpWlg7y7Bn288CneIP6HlCY B3/zX4hNvoq0UL1aJ8Bdq15eDHMPSxFSQDLtq9xENQOpuuZZ5ZIjfXtOCcCTtYLG 6NB9RwKFg577MlcOss6MN7cTbcvk406Z1AMYVx7v2omXA+DDSInWlflqDhagkidv 9INx0Obs3jTg3O5/bYGjVwrRL2r5WVd5DQaJfT1t3mua9B1lT00KkBWBfmdE8eE+ Dvb+cZ8/F9YwinIjU13x1pwKMCwVKtJs3izPbu0JTTtKyDMyzr6tCzw9yIDxOEOt 6xfiOlYE0GeCq4qc6BVivUykeT1/UC1FhHKkImDmWPeWSy3iVjXkwo/Q/hf/QW0Z XbYhzQd6cyhr1OZUWxKcq7F7U+jez3dSBTXLmUdyxhQvJZNlUtBnpuVJn2jJLC7R VODV6BRg5MV/u27ZGEn1PvaB30jTSzM/VXGS0LVBaDz42BOOMqJO/IqEDwsROJ/Q /2pAgS7oH/hE4uRAb8+0o/Ovf0uZ7SIuqj8HSNeVUsRcYGRAkhXcyFxgvU/DzALO B7LwTfjP1c2qmfDgLLv8EDoNcpk6A9vbo4GnWCOpnytNRzToWpTvWho7JM8afmh9 u8tR/iIkEX8R06GScvnDUngv64tpLlDsJGNVcHJRUjhLjJc4h5WIxSyoXd/jIQID AQABo4IDgjCCA34wHwYDVR0jBBgwFoAUt2ui6qiqhIx56rTaD5iyxZV2ufQwHQYD VR0OBBYEFMhQ9wgmYdtl06/pBHZcM1xmJ3ocMC0GA1UdEQQmMCSCFG15LmthaW5n YW9yYS5nb3Z0Lm56ggxteS5obnouY28ubnowDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBjwYDVR0fBIGHMIGEMECgPqA8hjpo dHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGlnaUNlcnRUTFNSU0FTSEEyNTYyMDIw Q0ExLTQuY3JsMECgPqA8hjpodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGlnaUNl cnRUTFNSU0FTSEEyNTYyMDIwQ0ExLTQuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQIC MCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzB/Bggr BgEFBQcBAQRzMHEwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNv bTBJBggrBgEFBQcwAoY9aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lD ZXJ0VExTUlNBU0hBMjU2MjAyMENBMS0xLmNydDAJBgNVHRMEAjAAMIIBfgYKKwYB BAHWeQIEAgSCAW4EggFqAWgAdwDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9 bQa9bgAAAYOfpmOQAAAEAwBIMEYCIQD2LkiKq7otnBH1OPHX3AeJbM6MgquG87oa e8xKQbyT0QIhAJuPcldmog/17KcBsig8fPXj8jBgUf4q0JM4KHoF2ySdAHYAs3N3 B+GEUPhjhtYFqdwRCUp5LbFnDAuH3PADDnk2pZoAAAGDn6ZjsAAABAMARzBFAiBq oXanIWOjrnMd7uU27PFSDNNgp5I6ZJHSQ9JbNcslLwIhAKl/7CaDNVuog6f7RKUj 4u/e5As5r/4ViNSK0ZKNi+15AHUAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0J gSXttJkAAAGDn6ZjgQAABAMARjBEAiA12DQNsmgDGQZJ2m3C/RzHkb+/mWt41f+H 6XCkmRBpUgIgZ7CzXY3CjYjnNGf6/X88LaN0m9SXXl6NChGIzoIJFRwwDQYJKoZI hvcNAQEMBQADggEBAAGuwArNX6fo2rKamtgG5BB8/R5p1Iyt96ZJ0JDtXAOcpinE vmPOUaVeWcLj1IvN67kIgKOvGh2aaiLvrXHCAyBiPykFOjNBPuh0ak239jfRSduC nk+bjacGcpuXY+dGaj6VhsU1g14JBtGKXmD4TlHNFpVS7nwGldd9ioEzxXLHAHuG SO8O39c/99OqTvCmln50m20SQimwBJnQyL9PwSU0cXSjdnKlVAteJkYm49jS2E7u GxvU1zCMT6CQ/qSQBPe8315SrsLGbJ5aS7a6w1bHe59xUG9cb81NLBeZlXxy8QOe NdIj43pCgV5HyQycqpYopEJZT84fQD+IMXEuzNw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAx9vEhGrdOgEIt0ZYPb+1 bNhKVpYO8uwZ9vPAp3iD+h5QmAd/81+ITb6KtFC9WifAXateXgxzD0sRUkAy7avc RDUDqbrmWeWSI317TgnAk7WCxujQfUcChYOe+zJXDrLOjDe3E23L5ONOmdQDGFce 79qJlwPgw0iJ1pX5ag4WoJInb/SDcdDm7N404Nzuf22Bo1cK0S9q+VlXeQ0GiX09 bd5rmvQdZU9NCpAVgX5nRPHhPg72/nGfPxfWMIpyI1Nd8dacCjAsFSrSbN4sz27t CU07SsgzMs6+rQs8PciA8ThDresX4jpWBNBngquKnOgVYr1MpHk9f1AtRYRypCJg 5lj3lkst4lY15MKP0P4X/0FtGV22Ic0HenMoa9TmVFsSnKuxe1Po3s93UgU1y5lH csYULyWTZVLQZ6blSZ9oySwu0VTg1egUYOTFf7tu2RhJ9T72gd9I00szP1VxktC1 QWg8+NgTjjKiTvyKhA8LETif0P9qQIEu6B/4ROLkQG/PtKPzr39Lme0iLqo/B0jX lVLEXGBkQJIV3MhcYL1Pw8wCzgey8E34z9XNqpnw4Cy7/BA6DXKZOgPb26OBp1gj qZ8rTUc06FqU71oaOyTPGn5ofbvLUf4iJBF/EdOhknL5w1J4L+uLaS5Q7CRjVXBy UVI4S4yXOIeViMUsqF3f4yECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10808208038063687273690388542653535391 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wellington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kainga Ora Homes and Communities' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'my.kaingaora.govt.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 815351410830646764211359090163924459982741722977634850268061101416118691997648322658342942212256883069529756056555829642594207550762582610951815897314875067676923494528777477385580289721066640625876255061571999462053615473373713958717503217748114053377419993997261739765345097313665502592997459792405046700817032773551135007872956937120830570224320392441570320547609488308275455366595746141474209024552108094264551282371182348701141727216669354891804101516192018253142079365674405452945318362171115127257246173696922988144667829682685248266414409317954856296001884516893592876023024882906036927791879553827829446363205481510323197822987672642813714186262334813293847998262663727311194831411708891504443990146024421330391309432462631841137347090610576693400798352400425839644500019378431901140457726869103992012529542831533797542220577929193214394470260682754907668565080405975002851451106398723296663070451686249916077144528221448847129180759802060288796269724801307216950049146751810223438867085870800523500233207835783741069494829073613148167091279550996104562598357003675374311738753477602359933278794239493585215724705925847295904246474600965341282153675616287524136090427065332910978351884291838860494253137369603264187843207969 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c850f7082661db65d3afe904765c335c66277a1c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.kaingaora.govt.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.hnz.co.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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