einsteinmed.edu
- Montefiore Medical Center -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0d:ec:34:5a:44:5a:22:3e:b8:51:60:51:75:c6:cc:ac was issued on by DigiCert Inc.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Montefiore Medical Center
Organization:
Montefiore Medical Center
State / Province:
New York
Locality: Bronx
Country: US
Locality: Bronx
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:ec:34:5a:44:5a:22:3e:b8:51:60:51:75:c6:cc:acSerial Number (int): 18506407840806087547791951709377842348
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 2c:18:d4:e6:74:31:e7:3a:2b:aa:ff:ef:11:7c:a3:11:fa:29:78:35
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 8a:2c:81:77:c1:87:c4:f7:f6:b1:19:3a:f1:50:c2:b1:27:be:df:bb
Fingerprint (sha256): 3f:26:35:c8:78:93:cf:26:96:5b:3e:b1:b3:4b:44:f3:6d:7b:e7:aa:da:96:26:6b:a5:84:fc:c2:56:e1:57:8e
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate einsteinmed.edu
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for einsteinmed.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
einsteinmed.edu
www.einsteinmed.edu
athletestudy.einsteinmed.edu
brcacommunitystudy.einsteinmed.edu
lifespanstudy.einsteinmed.edu
ras.einsteinmed.edu
medicine-admin.einsteinmed.edu
mstp.einsteinmed.edu
soccerstudy.einsteinmed.edu
www.einsteinmed.edu
athletestudy.einsteinmed.edu
brcacommunitystudy.einsteinmed.edu
lifespanstudy.einsteinmed.edu
ras.einsteinmed.edu
medicine-admin.einsteinmed.edu
mstp.einsteinmed.edu
soccerstudy.einsteinmed.edu
Other certificates including the domain name einsteinmed.edu
(limited to 100 certificates)
*.thescholr.com
*.thescholr.com
*.thescholr.com
itsupport.einsteinmed.edu
*.d8.theopenscholar.com
*.thescholr.com
*.d8.theopenscholar.com
*.thescholr.com
cg3.einsteinmed.edu
dev.einsteinmed.edu
magazine.einsteinmed.edu
interview.einsteinmed.edu
*.safecluster.einsteinmed.edu
*.safecluster.einsteinmed.edu
helpme.einsteinmed.edu
*.thescholr.com
*.thescholr.com
einsteinmed.edu
*.thescholr.com
academiccommons.einsteinmed.edu
libcal.einsteinmed.edu
montefioreeinstein.org
*.thescholr.com
montefioreeinstein.org
grad.apply.einsteinmed.edu
*.d8.theopenscholar.com
*.thescholr.com
*.d8.theopenscholar.com
interview.einsteinmed.edu
*.thescholr.com
beyondalbert.apply.einsteinmed.edu
einsteinmed.edu
*.thescholr.com
*.thescholr.com
einsteinmed.edu
*.d8.theopenscholar.com
printing.einsteinmed.edu
*.thescholr.com
media.einsteinmed.edu
*.thescholr.com
media.einsteinmed.edu
*.d8.theopenscholar.com
*.thescholr.com
transportation.einsteinmed.edu
*.thescholr.com
streaming.einsteinmed.edu
*.thescholr.com
eep.apply.einsteinmed.edu
*.d8.theopenscholar.com
cg4.einsteinmed.edu
einsteincsc.einsteinmed.edu
library.einsteinmed.edu
*.thescholr.com
*.thescholr.com
infoed.einsteinmed.edu
Montefiore.org
eng.einsteinmed.edu
*.thescholr.com
*.thescholr.com
intranet.einsteinmed.edu
Montefiore.org
einsteinmed.edu
magazine.einsteinmed.edu
*.thescholr.com
*.thescholr.com
itsupport.einsteinmed.edu
*.d8.theopenscholar.com
*.thescholr.com
*.d8.theopenscholar.com
*.thescholr.com
cg3.einsteinmed.edu
dev.einsteinmed.edu
magazine.einsteinmed.edu
interview.einsteinmed.edu
*.safecluster.einsteinmed.edu
*.safecluster.einsteinmed.edu
helpme.einsteinmed.edu
*.thescholr.com
*.thescholr.com
einsteinmed.edu
*.thescholr.com
academiccommons.einsteinmed.edu
libcal.einsteinmed.edu
montefioreeinstein.org
*.thescholr.com
montefioreeinstein.org
grad.apply.einsteinmed.edu
*.d8.theopenscholar.com
*.thescholr.com
*.d8.theopenscholar.com
interview.einsteinmed.edu
*.thescholr.com
beyondalbert.apply.einsteinmed.edu
einsteinmed.edu
*.thescholr.com
*.thescholr.com
einsteinmed.edu
*.d8.theopenscholar.com
printing.einsteinmed.edu
*.thescholr.com
media.einsteinmed.edu
*.thescholr.com
media.einsteinmed.edu
*.d8.theopenscholar.com
*.thescholr.com
transportation.einsteinmed.edu
*.thescholr.com
streaming.einsteinmed.edu
*.thescholr.com
eep.apply.einsteinmed.edu
*.d8.theopenscholar.com
cg4.einsteinmed.edu
einsteincsc.einsteinmed.edu
library.einsteinmed.edu
*.thescholr.com
*.thescholr.com
infoed.einsteinmed.edu
Montefiore.org
eng.einsteinmed.edu
*.thescholr.com
*.thescholr.com
intranet.einsteinmed.edu
Montefiore.org
einsteinmed.edu
magazine.einsteinmed.edu
Certificate
The complete raw certificate details for einsteinmed.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHnDCCBoSgAwIBAgIQDew0WkRaIj64UWBRdcbMrDANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMTEwMjAwMDAwMDBa Fw0yMjEwMjAyMzU5NTlaMG4xCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhOZXcgWW9y azEOMAwGA1UEBxMFQnJvbngxIjAgBgNVBAoTGU1vbnRlZmlvcmUgTWVkaWNhbCBD ZW50ZXIxGDAWBgNVBAMTD2VpbnN0ZWlubWVkLmVkdTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAI9o+JZRwMY178OTZgGjR7TDYZrTNnyLFMH9V7aNO5H8 sjHTkGEI5gxVyMdBpiLnTywpjOo13ymnk+DWkWz5aimyZE55iSl7vx3p0zYYCE8I BXSBTyi3YwIGyY5XN/PBmDrsJC2AluZnydsfbceimrtUucNMNn5yCfHQEINmOqrW gKdCHYJ0bl9N1rwvmoanpWLPuBfqudQeR2Rl7RzbyxasoZbmf12GSSfIMgs1aTWC SdUl8pFHMv56aAUE22hTejiOcmFPaKIdpUdtl3VU4NC1Exi0F7bfuHQ/EXm3WuYx 8qzNJXCSUDnknNNb9VJJZStxI36Hpw6O77ZSY1zGLyECAwEAAaOCBFMwggRPMB8G A1UdIwQYMBaAFLdrouqoqoSMeeq02g+YssWVdrn0MB0GA1UdDgQWBBQsGNTmdDHn Oiuq/+8RfKMR+il4NTCB+gYDVR0RBIHyMIHvgg9laW5zdGVpbm1lZC5lZHWCE3d3 dy5laW5zdGVpbm1lZC5lZHWCHGF0aGxldGVzdHVkeS5laW5zdGVpbm1lZC5lZHWC ImJyY2Fjb21tdW5pdHlzdHVkeS5laW5zdGVpbm1lZC5lZHWCHWxpZmVzcGFuc3R1 ZHkuZWluc3RlaW5tZWQuZWR1ghNyYXMuZWluc3RlaW5tZWQuZWR1gh5tZWRpY2lu ZS1hZG1pbi5laW5zdGVpbm1lZC5lZHWCFG1zdHAuZWluc3RlaW5tZWQuZWR1ghtz b2NjZXJzdHVkeS5laW5zdGVpbm1lZC5lZHUwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBjwYDVR0fBIGHMIGEMECgPqA8hjpo dHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGlnaUNlcnRUTFNSU0FTSEEyNTYyMDIw Q0ExLTQuY3JsMECgPqA8hjpodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGlnaUNl cnRUTFNSU0FTSEEyNTYyMDIwQ0ExLTQuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQIC MCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzB/Bggr BgEFBQcBAQRzMHEwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNv bTBJBggrBgEFBQcwAoY9aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lD ZXJ0VExTUlNBU0hBMjU2MjAyMENBMS0xLmNydDAMBgNVHRMBAf8EAjAAMIIBfgYK KwYBBAHWeQIEAgSCAW4EggFqAWgAdgApeb7wnjk5IfBWc59jpXflvld9nGAK+PlN XSZcJV3HhAAAAXyfLxqqAAAEAwBHMEUCIQD9oSXwJirJ1Q2WRvHF9ugqE8jYfy62 m8UN3DMEQ2T1hAIgI5WzeWarlZTB7khNg8pMbftVkAGxiY5V4c7noO6ti3AAdQBR o7D1/QF5nFZtuDd4jwykeswbJ8v3nohCmg3+1IsF5QAAAXyfLxsQAAAEAwBGMEQC IHgTsvG0BBDxKCsPTXef7gYfDK56K8WgfTlUIlDjYcuJAiAq/PiJGXqk1fVSiNiy lV6tNgyN3jaWLbZ5RGJzvFEQAAB3AEHIyrHfIkZKEMahOglCh15OMYsbA+vrS8do 8JBilgb2AAABfJ8vGqQAAAQDAEgwRgIhANTr1Omk9JlpmRRavwKvQDDLJqtmgPbG r7rucfB+jajKAiEA9etsr7KTBHZA/FwWSbvixtlo1+DgziDqjgpFcTfVED4wDQYJ KoZIhvcNAQELBQADggEBAJX03cEG2L5nUSydhKn5OsRmXsehrGi6l0DH+u/oewRA ckjSvLeQkci0YouSyTLXKV+c4Tg8iQNXWy01nWIuM94TLhg0Wh0vIEBpqOS0zX8k 6YCZvBX13PxF4HquE4NLbtmS4USe2hNR1VVo+oZL/mLOZ8+rIDCD8XPYtKtbAKv8 IE3YnMvDM0u3lfkxCZkHyFg6mBbvWowbjX71xKM3JfQWLlRjZJSM9w1EoN3VBZPr SOwyy1cC1EkZ8qFMBPdwBmCSa6q3U3OJbAn24O8MpCVh0bJcdlq9CSLLwM1bfxyT NSS9aUai6b0F4MSa04KyOOnhVihuuTRr7BuHFMwqIfo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj2j4llHAxjXvw5NmAaNH tMNhmtM2fIsUwf1Xto07kfyyMdOQYQjmDFXIx0GmIudPLCmM6jXfKaeT4NaRbPlq KbJkTnmJKXu/HenTNhgITwgFdIFPKLdjAgbJjlc388GYOuwkLYCW5mfJ2x9tx6Ka u1S5w0w2fnIJ8dAQg2Y6qtaAp0IdgnRuX03WvC+ahqelYs+4F+q51B5HZGXtHNvL FqyhluZ/XYZJJ8gyCzVpNYJJ1SXykUcy/npoBQTbaFN6OI5yYU9ooh2lR22XdVTg 0LUTGLQXtt+4dD8Rebda5jHyrM0lcJJQOeSc01v1UkllK3EjfoenDo7vtlJjXMYv IQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18506407840806087547791951709377842348 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bronx' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montefiore Medical Center' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'einsteinmed.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18103840761029576785794102202321246867682500899708874024087024363241979588832709747893137783867109837405037142933568097480614529162166460076979618962628630247497389362245978850209369940224334257305134961283077905235210443907054960969058597506287083500651946399731769003869223095915387531390549513547978489273942465097779636254989918606180994776916237745753309155632141656336286300719537007310387268633770337610765528118736014729309345735241972152996830650974372419709975924255904431904613164763300431796043772357104968977208326132793831299908128964827055971933045458739560762506706239126017504341886302072585943658273 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2c18d4e67431e73a2baaffef117ca311fa297835 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'einsteinmed.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.einsteinmed.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'athletestudy.einsteinmed.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brcacommunitystudy.einsteinmed.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lifespanstudy.einsteinmed.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ras.einsteinmed.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'medicine-admin.einsteinmed.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mstp.einsteinmed.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'soccerstudy.einsteinmed.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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