origingreen.zales.com
- Signet Group Services US Inc -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 79:d5:36:74:fb:11:86:ad:d4:05:9c:ba:3a:06:f5:16 was issued on by Sectigo Limited.
With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Signet Group Services US Inc
Organization:
Signet Group Services US Inc
State / Province:
Ohio
Country: US
Country: US
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 79:d5:36:74:fb:11:86:ad:d4:05:9c:ba:3a:06:f5:16Serial Number (int): 161943651239130112958867983879390033174
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: ea:ec:72:1d:f0:97:62:c1:57:c2:e6:e5:3e:68:b3:4f:71:14:ac:7c
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 3e:b5:55:c4:a3:46:53:02:0b:a6:75:0f:be:08:52:47:34:8f:64:5f
Fingerprint (sha256): 3f:c8:16:75:27:6b:72:af:57:26:1d:c2:a3:78:d7:d4:f2:14:03:9f:c4:56:57:50:56:28:b4:1c:6e:d0:27:7f
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate origingreen.zales.com
14
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for origingreen.zales.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
origingreen.zales.com
jsorigingreen.banter.com
jsorigingreen.jared.com
jsorigingreen.kay.com
jsorigingreen.kayoutlet.com
jsorigingreen.peoplesjewellers.com
jsorigingreen.zales.com
jsorigingreen.zalesoutlet.com
origingreen.banter.com
origingreen.jared.com
origingreen.kay.com
origingreen.kayoutlet.com
origingreen.peoplesjewellers.com
origingreen.zalesoutlet.com
jsorigingreen.banter.com
jsorigingreen.jared.com
jsorigingreen.kay.com
jsorigingreen.kayoutlet.com
jsorigingreen.peoplesjewellers.com
jsorigingreen.zales.com
jsorigingreen.zalesoutlet.com
origingreen.banter.com
origingreen.jared.com
origingreen.kay.com
origingreen.kayoutlet.com
origingreen.peoplesjewellers.com
origingreen.zalesoutlet.com
Other certificates including the domain name zales.com
(limited to 100 certificates)
createyourown.zales.com
link.zales.com
m.zales.com
uat1-dc.gordonsjewelers.com
dev-configurator.azurejewelryinc.com
test.kay.com
events.biggestfantour.com
jewelersservices.zales.com
createyourown.zales.com
credithub-test.azusnc-test.jewels.com
smetrics.zales.com
storeinventorytest.zales.com
personalizedgems.zales.com
storeinventorytest.zales.com
events.biggestfantour.com
m.zales.com
smetrics.zales.com
www.kay.com
www.zales.com
configurator.azurejewelryinc.com
bridal.zales.com
suncor.zales.com
link.zales.com
m.zales.com
www.kay.com
em.zales.com
createyourown.zales.com
cbirings.zales.com
persona.zales.com
sni12701gl.wpc.edgecastcdn.net
suncor.zales.com
jewelcreator.zales.com
dev-configurator.azurejewelryinc.com
test.kay.com
www.zales.com
*.zales.com
smetrics.zales.com
www.zales.com
mbm.zales.com
creditservices.zales.com
storeinventorytest.zales.com
stores.zales.com
dc.gordonsjewelers.com
fashion.kay.com
dev-configurator.azurejewelryinc.com
www.zales.com
zalesqa.cbi-rings.com
dev-ccchat.zales.com
storeinventorynew.zales.com
wonderjewel.zales.com
www.kay.com
www.kay.com
wvw.zales.com
uat1-dc.gordonsjewelers.com
hampden.zales.com
test.kay.com
configurator.azurejewelryinc.com
smetrics.zales.com
ibb.zales.com
dev-configurator.azurejewelryinc.com
dev-configurator.azurejewelryinc.com
test.kay.com
mbm.zales.com
storiesofhope.zales.com
*.zales.com
www.zales.com
jewelers.services
stores.zales.com
ibb.zales.com
configurator.azurejewelryinc.com
test.kay.com
www.kay.com
mbm.zales.com
www.zales.com
dtm.zales.com
dev-configurator.azurejewelryinc.com
personalizedgems.zales.com
dev-configurator.azurejewelryinc.com
cbirings.zales.com
images.zales.com
sni12ff4gl.wpc.edgecastcdn.net
www.kay.com
ibb.zales.com
jewelcreator.zales.com
www.kay.com
www.zales.com
sni12979gl.wpc.edgecastcdn.net
www.kay.com
prd-ccchat.zales.com
www.kay.com
dev-configurator.azurejewelryinc.com
origingreen.zales.com
*.artcarved.zales.com
sni13040gl.wpc.edgecastcdn.net
sni130e2gl.wpc.edgecastcdn.net
test.kay.com
jsorigin.zales.com
e.zales.com
m.zales.com
personalizedgems.zales.com
link.zales.com
m.zales.com
uat1-dc.gordonsjewelers.com
dev-configurator.azurejewelryinc.com
test.kay.com
events.biggestfantour.com
jewelersservices.zales.com
createyourown.zales.com
credithub-test.azusnc-test.jewels.com
smetrics.zales.com
storeinventorytest.zales.com
personalizedgems.zales.com
storeinventorytest.zales.com
events.biggestfantour.com
m.zales.com
smetrics.zales.com
www.kay.com
www.zales.com
configurator.azurejewelryinc.com
bridal.zales.com
suncor.zales.com
link.zales.com
m.zales.com
www.kay.com
em.zales.com
createyourown.zales.com
cbirings.zales.com
persona.zales.com
sni12701gl.wpc.edgecastcdn.net
suncor.zales.com
jewelcreator.zales.com
dev-configurator.azurejewelryinc.com
test.kay.com
www.zales.com
*.zales.com
smetrics.zales.com
www.zales.com
mbm.zales.com
creditservices.zales.com
storeinventorytest.zales.com
stores.zales.com
dc.gordonsjewelers.com
fashion.kay.com
dev-configurator.azurejewelryinc.com
www.zales.com
zalesqa.cbi-rings.com
dev-ccchat.zales.com
storeinventorynew.zales.com
wonderjewel.zales.com
www.kay.com
www.kay.com
wvw.zales.com
uat1-dc.gordonsjewelers.com
hampden.zales.com
test.kay.com
configurator.azurejewelryinc.com
smetrics.zales.com
ibb.zales.com
dev-configurator.azurejewelryinc.com
dev-configurator.azurejewelryinc.com
test.kay.com
mbm.zales.com
storiesofhope.zales.com
*.zales.com
www.zales.com
jewelers.services
stores.zales.com
ibb.zales.com
configurator.azurejewelryinc.com
test.kay.com
www.kay.com
mbm.zales.com
www.zales.com
dtm.zales.com
dev-configurator.azurejewelryinc.com
personalizedgems.zales.com
dev-configurator.azurejewelryinc.com
cbirings.zales.com
images.zales.com
sni12ff4gl.wpc.edgecastcdn.net
www.kay.com
ibb.zales.com
jewelcreator.zales.com
www.kay.com
www.zales.com
sni12979gl.wpc.edgecastcdn.net
www.kay.com
prd-ccchat.zales.com
www.kay.com
dev-configurator.azurejewelryinc.com
origingreen.zales.com
*.artcarved.zales.com
sni13040gl.wpc.edgecastcdn.net
sni130e2gl.wpc.edgecastcdn.net
test.kay.com
jsorigin.zales.com
e.zales.com
m.zales.com
personalizedgems.zales.com
Certificate
The complete raw certificate details for origingreen.zales.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIQedU2dPsRhq3UBZy6Ogb1FjANBgkqhkiG9w0BAQsFADCB lTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMT0wOwYDVQQD EzRTZWN0aWdvIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2Vy dmVyIENBMB4XDTI0MDYwMzAwMDAwMFoXDTI1MDcwMzIzNTk1OVowYzELMAkGA1UE BhMCVVMxDTALBgNVBAgTBE9oaW8xJTAjBgNVBAoTHFNpZ25ldCBHcm91cCBTZXJ2 aWNlcyBVUyBJbmMxHjAcBgNVBAMTFW9yaWdpbmdyZWVuLnphbGVzLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMQq4tao6Ti6HQyOGN8SDftf53V0 SYaqa1nQW1ghq3IGtZeJjIWwIGigicLuaybuG77TLraUOLysYVYHZ9cPww847u3d UDjkw3HBqWx7b8wsbts+3LZuSrwrY1EBEGN2mkxAvgk6hK6wOEI2SHtaUQSrKGrl bpGdn2lZkm/jm/OUsi2D3+AwJpTQ+ApxUcBFiTfG5vyMAS+YLsGDdYJzI6cwl/Ej wGVHw9iMrc+DtuNDEhUaFl6OQ7Sqi1iUyaeKHKLz+oPs0rzBHZ2rA9R3Y2bH3JNU eH0//pT0k5po1yek8cexOca782bP0ptkxYHPApLIWOdYmjtFBa8krezcoYECAwEA AaOCA1QwggNQMB8GA1UdIwQYMBaAFBfZ1iUnZ/kxwklD2TA2RIxsqU/rMB0GA1Ud DgQWBBTq7HId8JdiwVfC5uU+aLNPcRSsfDAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0T AQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwSgYDVR0gBEMw QTA1BgwrBgEEAbIxAQIBAwQwJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdv LmNvbS9DUFMwCAYGZ4EMAQICMFoGA1UdHwRTMFEwT6BNoEuGSWh0dHA6Ly9jcmwu c2VjdGlnby5jb20vU2VjdGlnb1JTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1 cmVTZXJ2ZXJDQS5jcmwwgYoGCCsGAQUFBwEBBH4wfDBVBggrBgEFBQcwAoZJaHR0 cDovL2NydC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNBT3JnYW5pemF0aW9uVmFsaWRh dGlvblNlY3VyZVNlcnZlckNBLmNydDAjBggrBgEFBQcwAYYXaHR0cDovL29jc3Au c2VjdGlnby5jb20wEwYKKwYBBAHWeQIEAwEB/wQCBQAwggGFBgNVHREEggF8MIIB eIIVb3JpZ2luZ3JlZW4uemFsZXMuY29tghhqc29yaWdpbmdyZWVuLmJhbnRlci5j b22CF2pzb3JpZ2luZ3JlZW4uamFyZWQuY29tghVqc29yaWdpbmdyZWVuLmtheS5j b22CG2pzb3JpZ2luZ3JlZW4ua2F5b3V0bGV0LmNvbYIianNvcmlnaW5ncmVlbi5w ZW9wbGVzamV3ZWxsZXJzLmNvbYIXanNvcmlnaW5ncmVlbi56YWxlcy5jb22CHWpz b3JpZ2luZ3JlZW4uemFsZXNvdXRsZXQuY29tghZvcmlnaW5ncmVlbi5iYW50ZXIu Y29tghVvcmlnaW5ncmVlbi5qYXJlZC5jb22CE29yaWdpbmdyZWVuLmtheS5jb22C GW9yaWdpbmdyZWVuLmtheW91dGxldC5jb22CIG9yaWdpbmdyZWVuLnBlb3BsZXNq ZXdlbGxlcnMuY29tghtvcmlnaW5ncmVlbi56YWxlc291dGxldC5jb20wDQYJKoZI hvcNAQELBQADggEBAFAFPeDbFkV0UhdSa4x/rgrIpoizDfuWK083yblzECQAeynR M6RQO2gu82EGfSl2X8Bu/NkAAPy6YNjDblBbbqB2/hcYisCcmti5oadVWl12HT8v bJciRkpSFzFq/gfk0vwxXk0ANMOiu/G6Aqx7DXnZ6i3q/pZ9ULJsKpOWvywbbzuW OmImKQJv54rqIug+GsScmV0OEFmAzf/AFcc0jwVeEhdgsj2gcLPh9+hlJs74eRFg qfobaPg1gmfV7ZWrg29TF4ZMI0JSEV9Va9Zdr2enmHpw5/8aT3HF3pjg4r5naENM NGLo1YGC7ULDf0Ndf1rcsTBfwRmWY4Qokjwloyg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCri1qjpOLodDI4Y3xIN +1/ndXRJhqprWdBbWCGrcga1l4mMhbAgaKCJwu5rJu4bvtMutpQ4vKxhVgdn1w/D Dzju7d1QOOTDccGpbHtvzCxu2z7ctm5KvCtjUQEQY3aaTEC+CTqErrA4QjZIe1pR BKsoauVukZ2faVmSb+Ob85SyLYPf4DAmlND4CnFRwEWJN8bm/IwBL5guwYN1gnMj pzCX8SPAZUfD2Iytz4O240MSFRoWXo5DtKqLWJTJp4ocovP6g+zSvMEdnasD1Hdj Zsfck1R4fT/+lPSTmmjXJ6Txx7E5xrvzZs/Sm2TFgc8CkshY51iaO0UFrySt7Nyh gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 161943651239130112958867983879390033174 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ohio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Signet Group Services US Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'origingreen.zales.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24763855691508717919186773205783458175591817157421178110863619297937486400383420583274640306125044735585059835212155765607280919621012750833450114343796341326778382812761533025453172393775068236193933615258201464469298182315101706901890562067355902525736313828836619683274891082581497524027204851799354316292953450315232862295535513979970949969513733547855156114376748929501123471198337717145553101184390465818869055635539335340017135737712315720286924839710546083013715958073841149478593215761120095870577388782826612277746823177985035258769832202104394902560895808871306128355404003385474372583285158100781904994689 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eaec721df09762c157c2e6e53e68b34f7114ac7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (380 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origingreen.zales.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jsorigingreen.banter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jsorigingreen.jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jsorigingreen.kay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jsorigingreen.kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jsorigingreen.peoplesjewellers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jsorigingreen.zales.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jsorigingreen.zalesoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origingreen.banter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origingreen.jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origingreen.kay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origingreen.kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origingreen.peoplesjewellers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origingreen.zalesoutlet.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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