piv.citrix2.s-3.net
- Social & Scientific Systems, Inc. -
Issued by Sectigo RSA Extended Validation Secure Server CA
About this certificate
This digital certificate with serial number 9a:a7:f6:03:19:5a:d8:0d:e0:98:b3:1b:e9:a2:96:ad was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Social & Scientific Systems, Inc.
Company registration number:
852003
Organization: Social & Scientific Systems, Inc.
Organization unit: ITSD
Organization unit: COMODO EV SSL
Organization: Social & Scientific Systems, Inc.
Organization unit: ITSD
Organization unit: COMODO EV SSL
Address:
8757 Georgia avenue 12th floor
Postal code: 20910
State / Province: Maryland
Locality: Silver Spring
Country: US
Postal code: 20910
State / Province: Maryland
Locality: Silver Spring
Country: US
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 9a:a7:f6:03:19:5a:d8:0d:e0:98:b3:1b:e9:a2:96:adSerial Number (int): 205573214644546295351318982313455556269
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 9e:dd:e6:f5:18:82:20:a2:2c:10:45:a4:b5:85:14:b7:67:7b:b7:46
AuthorityKeyId: 2c:69:ff:80:c9:87:90:ae:34:e1:b4:e7:4c:93:85:99:40:e9:a7:b2
Fingerprint (sha1): bf:68:b4:e0:2b:8b:10:93:7a:0a:41:ff:eb:9b:9a:90:b5:bc:50:df
Fingerprint (sha256): 3f:7d:9b:4b:0b:00:1d:c0:fe:61:8d:23:8e:a6:7a:a8:e9:1b:95:6b:1d:ac:1a:f0:fc:13:02:c8:53:87:22:8a
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl
Check the revocation status for certificate piv.citrix2.s-3.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for piv.citrix2.s-3.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
piv.citrix2.s-3.net
www.piv.citrix2.s-3.net
www.piv.citrix2.s-3.net
Other certificates including the domain name s-3.net
(limited to 100 certificates)
meepp.s-3.net
consumer.uat.s-3.net
epr.uat.s-3.net
remote.s-3.net
instruments.qa.ncs.s-3.net
mthelp.survey.uat.s-3.net
hcupcdow.uat.s-3.net
external.sharepoint.s-3.net
*.s-3.net
ncireb.survey.s-3.net
hipsie.s-3.net
prs.s-3.net
member.mis.s-3.net
archive.ncs.uat.s-3.net
ms-registry.uat.s-3.net
ncsarchive.s-3.net
surveys.qa.hpda.s-3.net
external.sharepoint.s-3.net
survey.nioshminer.s-3.net
psotracking.s-3.net
external.sharepoint.s-3.net
psotracking.s-3.net
ncsarchive.uat.s-3.net
citrix.s-3.net
psotracking.s-3.net
mts.meps.s-3.net
reports.narcrms.s-3.net
betracking.qa.s-3.net
external.sharepoint.s-3.net
instruments511.ncs.s-3.net
ms-registry.s-3.net
citrix.s-3.net
sups.survey.s-3.net
sisters.survey.s-3.net
five9hub.uat.sups.s-3.net
ncireb.survey.s-3.net
testpsotracking.s-3.net
tms.medpac.s-3.net
sups.survey.s-3.net
sftp.s-3.net
sisters.survey.s-3.net
ahrq-pts.s-3.net
sisters.survey.s-3.net
*.s-3.net
hdss.uat.s-3.net
betracking.qa.s-3.net
uat.epr.survey.s-3.net
service.gulfstudy.uat.s-3.net
remote.s-3.net
testpsotracking.s-3.net
epr.survey.s-3.net
pso.uat.s-3.net
meps.uat.s-3.net
store2.s-3.net
tricare.ncidceg.s-3.net
remote.s-3.net
service.gulfstudy.uat.s-3.net
tms.medpac.s-3.net
sss.survey.s-3.net
survey.sups.uat.s-3.net
portal.starstictg.s-3.net
store2.s-3.net
five9hub.sups.s-3.net
sisters.survey.s-3.net
piv.citrix2.s-3.net
remote.s-3.net
hcupnet.uat.s-3.net
hdss.s-3.net
archive.ncs.s-3.net
qa.ncireb.survey.s-3.net
ghatest.s-3.net
datatesting.hdss.s-3.net
hcupcdow.uat.s-3.net
proposals.starstictg.s-3.net
sitessurge.s-3.net
actgpmc.qa.s-3.net
member.starstictg.s-3.net
portal.starstictg.s-3.net
ncscit.s-3.net
consumer.uat.s-3.net
tricare.ncidceg.uat.s-3.net
five9hub.sups.s-3.net
surveys.hpda.s-3.net
sftp.s-3.net
proposals.starstictg.s-3.net
survey1.sisterstudy.s-3.net
surveys.hpda.s-3.net
member.starstictg.s-3.net
tms.medpac.s-3.net
medsunrr.s-3.net
vpn.s-3.net
tricare.ncidceg.uat.s-3.net
vwb.ncs.s-3.net
nhqrnet.uat.s-3.net
mthelp.survey.s-3.net
conskills.s-3.net
proposals.starstictg.s-3.net
psotracking.s-3.net
sups.survey.s-3.net
ncsarchive.s-3.net
consumer.uat.s-3.net
epr.uat.s-3.net
remote.s-3.net
instruments.qa.ncs.s-3.net
mthelp.survey.uat.s-3.net
hcupcdow.uat.s-3.net
external.sharepoint.s-3.net
*.s-3.net
ncireb.survey.s-3.net
hipsie.s-3.net
prs.s-3.net
member.mis.s-3.net
archive.ncs.uat.s-3.net
ms-registry.uat.s-3.net
ncsarchive.s-3.net
surveys.qa.hpda.s-3.net
external.sharepoint.s-3.net
survey.nioshminer.s-3.net
psotracking.s-3.net
external.sharepoint.s-3.net
psotracking.s-3.net
ncsarchive.uat.s-3.net
citrix.s-3.net
psotracking.s-3.net
mts.meps.s-3.net
reports.narcrms.s-3.net
betracking.qa.s-3.net
external.sharepoint.s-3.net
instruments511.ncs.s-3.net
ms-registry.s-3.net
citrix.s-3.net
sups.survey.s-3.net
sisters.survey.s-3.net
five9hub.uat.sups.s-3.net
ncireb.survey.s-3.net
testpsotracking.s-3.net
tms.medpac.s-3.net
sups.survey.s-3.net
sftp.s-3.net
sisters.survey.s-3.net
ahrq-pts.s-3.net
sisters.survey.s-3.net
*.s-3.net
hdss.uat.s-3.net
betracking.qa.s-3.net
uat.epr.survey.s-3.net
service.gulfstudy.uat.s-3.net
remote.s-3.net
testpsotracking.s-3.net
epr.survey.s-3.net
pso.uat.s-3.net
meps.uat.s-3.net
store2.s-3.net
tricare.ncidceg.s-3.net
remote.s-3.net
service.gulfstudy.uat.s-3.net
tms.medpac.s-3.net
sss.survey.s-3.net
survey.sups.uat.s-3.net
portal.starstictg.s-3.net
store2.s-3.net
five9hub.sups.s-3.net
sisters.survey.s-3.net
piv.citrix2.s-3.net
remote.s-3.net
hcupnet.uat.s-3.net
hdss.s-3.net
archive.ncs.s-3.net
qa.ncireb.survey.s-3.net
ghatest.s-3.net
datatesting.hdss.s-3.net
hcupcdow.uat.s-3.net
proposals.starstictg.s-3.net
sitessurge.s-3.net
actgpmc.qa.s-3.net
member.starstictg.s-3.net
portal.starstictg.s-3.net
ncscit.s-3.net
consumer.uat.s-3.net
tricare.ncidceg.uat.s-3.net
five9hub.sups.s-3.net
surveys.hpda.s-3.net
sftp.s-3.net
proposals.starstictg.s-3.net
survey1.sisterstudy.s-3.net
surveys.hpda.s-3.net
member.starstictg.s-3.net
tms.medpac.s-3.net
medsunrr.s-3.net
vpn.s-3.net
tricare.ncidceg.uat.s-3.net
vwb.ncs.s-3.net
nhqrnet.uat.s-3.net
mthelp.survey.s-3.net
conskills.s-3.net
proposals.starstictg.s-3.net
psotracking.s-3.net
sups.survey.s-3.net
ncsarchive.s-3.net
Certificate
The complete raw certificate details for piv.citrix2.s-3.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXjCCBUagAwIBAgIRAJqn9gMZWtgN4JizG+milq0wDQYJKoZIhvcNAQELBQAw gZExCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE5MDcGA1UE AxMwU2VjdGlnbyBSU0EgRXh0ZW5kZWQgVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVy IENBMB4XDTE5MDQyMjAwMDAwMFoXDTIxMDQyMTIzNTk1OVowggFCMQ8wDQYDVQQF EwY4NTIwMDMxEzARBgsrBgEEAYI3PAIBAxMCVVMxGTAXBgsrBgEEAYI3PAIBAhMI RGVsYXdhcmUxHTAbBgNVBA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMQswCQYDVQQG EwJVUzEOMAwGA1UEERMFMjA5MTAxETAPBgNVBAgTCE1hcnlsYW5kMRYwFAYDVQQH Ew1TaWx2ZXIgU3ByaW5nMScwJQYDVQQJEx44NzU3IEdlb3JnaWEgYXZlbnVlIDEy dGggZmxvb3IxKjAoBgNVBAoMIVNvY2lhbCAmIFNjaWVudGlmaWMgU3lzdGVtcywg SW5jLjENMAsGA1UECxMESVRTRDEWMBQGA1UECxMNQ09NT0RPIEVWIFNTTDEcMBoG A1UEAxMTcGl2LmNpdHJpeDIucy0zLm5ldDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJxH4ZdPxZ2cks3RmTj2QYlX6Hv0BoGN3i1qiXP0FCh/Rr+jIFT8 CyV0DbIx/OAZd9/L+cnen/X4DDVQkxgy/OhoOiuAfQ0lN2GDZ0mmVvXhRKZRCPih u0N1QcVj9g86QOqELOF29bNiLxeBwUop3YZaDZwM9ifKHehiJNPH5OrvVr9YBGSh lz/r4189praOyUDbBhOg/wH2uNi9FpiQMkdN0Aawe0lzvvxkd/UtEMDTe2qXBvt3 92sIZnjuuWBPdOIyWm2w9tUhjAMa1MuWlYycJPfCxxqikV5kooLP68LLEyGlccBF 39oMC3A7r2xhuCWtuV7a9n3p+RcUarg01FUCAwEAAaOCAfswggH3MB8GA1UdIwQY MBaAFCxp/4DJh5CuNOG050yThZlA6aeyMB0GA1UdDgQWBBSe3eb1GIIgoiwQRaS1 hRS3Z3u3RjAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwSQYDVR0gBEIwQDA1BgwrBgEEAbIxAQIBBQEw JTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwBwYFZ4EMAQEw VgYDVR0fBE8wTTBLoEmgR4ZFaHR0cDovL2NybC5zZWN0aWdvLmNvbS9TZWN0aWdv UlNBRXh0ZW5kZWRWYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3JsMIGGBggrBgEF BQcBAQR6MHgwUQYIKwYBBQUHMAKGRWh0dHA6Ly9jcnQuc2VjdGlnby5jb20vU2Vj dGlnb1JTQUV4dGVuZGVkVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNydDAjBggr BgEFBQcwAYYXaHR0cDovL29jc3Auc2VjdGlnby5jb20wNwYDVR0RBDAwLoITcGl2 LmNpdHJpeDIucy0zLm5ldIIXd3d3LnBpdi5jaXRyaXgyLnMtMy5uZXQwEwYKKwYB BAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAB5OodPPgRZG4lnjl/QQ 6E2XMqCGLsv8TrTuDMnBo5sYos1RuPqhkQ6HAJnpnO8HQayu6MHF8c2AmvR1/wp9 CH4Wu2lp1AazAeiiJ8A+5wq9Wq/hhbdyNoSFQDYz1o1r9UL/HwHCqQR8P7/smIVg AVJs/ciLVIDZtAQ8EYW6fHlOR+v3QgzOSQBfAQIPgX5Tt8Ywr0M3cmQDHP+oCi+v m1k34nk94WTKZWPJfxmnauVE+ChtIp6VrfddzUaFk6KAzVYxj48BHHaIT4EfbXgf AaL038z85oq01a/LHCh44IPrLkLdRd0RWmItgrcl+iLKV8WQcFeU4D+9DtDVXdCf JYw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEfhl0/FnZySzdGZOPZB iVfoe/QGgY3eLWqJc/QUKH9Gv6MgVPwLJXQNsjH84Bl338v5yd6f9fgMNVCTGDL8 6Gg6K4B9DSU3YYNnSaZW9eFEplEI+KG7Q3VBxWP2DzpA6oQs4Xb1s2IvF4HBSind hloNnAz2J8od6GIk08fk6u9Wv1gEZKGXP+vjXz2mto7JQNsGE6D/Afa42L0WmJAy R03QBrB7SXO+/GR39S0QwNN7apcG+3f3awhmeO65YE904jJabbD21SGMAxrUy5aV jJwk98LHGqKRXmSigs/rwssTIaVxwEXf2gwLcDuvbGG4Ja25Xtr2fen5FxRquDTU VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 205573214644546295351318982313455556269 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Extended Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '852003' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Delaware' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '20910' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Silver Spring' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '8757 Georgia avenue 12th floor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Social & Scientific Systems, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ITSD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO EV SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'piv.citrix2.s-3.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19728621522950625824486427434458544017656154398028382030062838146929146615236903251658429384358794060879322516767086066862373494973138058564721270686018970730075980000937259137169572692765780284339870976487255965287788654173786239480038817417467692525526415952732295530642015794042042147459879856283816482733778832025611634970145337956361290221342497700321595108149322022145188729980913041264471333526180279521576845219168823107315578468649699977662402535823570554467299433281662719530915009264313351821040860958285712270147842037853685324078347330101686938585264840630396190546365673375709366607555905779996080526421 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2c69ff80c98790ae34e1b4e74c93859940e9a7b2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9edde6f5188220a22c1045a4b58514b7677bb746 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.5.1 (Comodo EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (122 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'piv.citrix2.s-3.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.piv.citrix2.s-3.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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