apipreview.ap.org
- The Associated Press -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 3d:81:c2:ab:9f:1a:67:a9:00:00:00:00:50:ed:d2:fb was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The Associated Press
Organization:
The Associated Press
State / Province:
New Jersey
Locality: Cranbury
Country: US
Locality: Cranbury
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 3d:81:c2:ab:9f:1a:67:a9:00:00:00:00:50:ed:d2:fbSerial Number (int): 81756662422349797528627969283846951675
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 7d:85:0a:46:75:25:c3:6b:3f:ba:95:c2:d5:12:06:d4:c9:fb:50:e5
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): b1:1c:ab:cf:78:43:d5:2c:3e:73:42:41:13:aa:28:1f:41:63:49:b3
Fingerprint (sha256): 40:d5:b2:2c:4d:8b:87:4f:f1:2a:96:de:cf:3d:51:c8:82:5c:25:ea:34:2e:d1:20:cd:9b:e9:a9:d4:fe:0c:63
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate apipreview.ap.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for apipreview.ap.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
apipreview.ap.org
Other certificates including the domain name ap.org
(limited to 100 certificates)
feedback.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
playbook.ap.org
ervaring.nedvice.nl
www.ap.org
help.ap.org
nycwlcdmz1.ap.org
ap.org
apipreview.ap.org
careers.ap.org
appbnom11.ap.org
ervaring.nedvice.nl
ctchive01.ap.org
inside.ap.org
cwa-ctc.ap.org
ap.org
partners.apvideohub.ap.org
discover.ap.org
ASSP-EXPC-P.ap.org
ap.org
ap.org
epix.ap.org
mail-ctc.ap.org
ap.org
ap.org
ervaring.nedvice.nl
backup.ap.org
ervaring.nedvice.nl
eapws.ap.org
developer.ap.org
ervaring.nedvice.nl
datakit.ap.org
login.ap.org
kibana.associatedpress.com
api.ap.org
DeveloperAPIPreview.ap.org
ap.org
blog.ap.org
sunshine.ap.org
ipdlonbackhaul.ap.org
approdpbnom11.ap.org
careers.ap.org
easyvista.ap.org
ap.org
ssrpm.ap.org
vault.ap.org
tokive01.ap.org
login.ap.org
ctcgsscasper01.ap.org
ap.org
easyvista.ap.org
crmgw.ap.org
api.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
preview.apvideohub.ap.org
ervaring.nedvice.nl
ap.org
sunshine.ap.org
store.ap.org
store.ap.org
origin.hosted.ap.org
ap.org
ap.org
blog.ap.org
store.ap.org
tokive01.ap.org
ap.org
approdpbnom12.ap.org
apipreview.ap.org
ap.org
apvideohub.ap.org
Developerapi.ap.org
eapadmin2.ap.org
ervaring.nedvice.nl
mysap.ap.org
blog.ap.org
discover.ap.org
inside.ap.org
wfm.ap.org
ap.org
discover.ap.org
IMSIPAPGW01.ap.org
ap.org
api-qa.ap.org
ap.org
partners.apvideohub.ap.org
blog.ap.org
store.ap.org
apvideohub.ap.org
sports.ap.org
bejive01.ap.org
discover.ap.org
gamestream.ap.org
apipreview.ap.org
ervaring.nedvice.nl
discover.ap.org
tokive01.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
ervaring.nedvice.nl
playbook.ap.org
ervaring.nedvice.nl
www.ap.org
help.ap.org
nycwlcdmz1.ap.org
ap.org
apipreview.ap.org
careers.ap.org
appbnom11.ap.org
ervaring.nedvice.nl
ctchive01.ap.org
inside.ap.org
cwa-ctc.ap.org
ap.org
partners.apvideohub.ap.org
discover.ap.org
ASSP-EXPC-P.ap.org
ap.org
ap.org
epix.ap.org
mail-ctc.ap.org
ap.org
ap.org
ervaring.nedvice.nl
backup.ap.org
ervaring.nedvice.nl
eapws.ap.org
developer.ap.org
ervaring.nedvice.nl
datakit.ap.org
login.ap.org
kibana.associatedpress.com
api.ap.org
DeveloperAPIPreview.ap.org
ap.org
blog.ap.org
sunshine.ap.org
ipdlonbackhaul.ap.org
approdpbnom11.ap.org
careers.ap.org
easyvista.ap.org
ap.org
ssrpm.ap.org
vault.ap.org
tokive01.ap.org
login.ap.org
ctcgsscasper01.ap.org
ap.org
easyvista.ap.org
crmgw.ap.org
api.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
preview.apvideohub.ap.org
ervaring.nedvice.nl
ap.org
sunshine.ap.org
store.ap.org
store.ap.org
origin.hosted.ap.org
ap.org
ap.org
blog.ap.org
store.ap.org
tokive01.ap.org
ap.org
approdpbnom12.ap.org
apipreview.ap.org
ap.org
apvideohub.ap.org
Developerapi.ap.org
eapadmin2.ap.org
ervaring.nedvice.nl
mysap.ap.org
blog.ap.org
discover.ap.org
inside.ap.org
wfm.ap.org
ap.org
discover.ap.org
IMSIPAPGW01.ap.org
ap.org
api-qa.ap.org
ap.org
partners.apvideohub.ap.org
blog.ap.org
store.ap.org
apvideohub.ap.org
sports.ap.org
bejive01.ap.org
discover.ap.org
gamestream.ap.org
apipreview.ap.org
ervaring.nedvice.nl
discover.ap.org
tokive01.ap.org
ervaring.nedvice.nl
Certificate
The complete raw certificate details for apipreview.ap.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHLjCCBhagAwIBAgIQPYHCq58aZ6kAAAAAUO3S+zANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x OTAyMTkxOTI5NTRaFw0yMTAzMTgxOTU5NTNaMHAxCzAJBgNVBAYTAlVTMRMwEQYD VQQIEwpOZXcgSmVyc2V5MREwDwYDVQQHEwhDcmFuYnVyeTEdMBsGA1UEChMUVGhl IEFzc29jaWF0ZWQgUHJlc3MxGjAYBgNVBAMTEWFwaXByZXZpZXcuYXAub3JnMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6CT/nC64afMdAnQTocUuc4zq m60K7/XVbDU6f69Mf1JxWdwtdEyUkbm3L4Ioz+RbSm1Ap5QA8hBflyMoVzncG9aU m7dtn84fDaKEZSn/JIzLsUvHAKlZp9veob/rQkR2ycJeuSwE9wIn43W2cCUUT3in JyPJP8OMdCNRNtoC9cdcMsrBHx661tNaeYvmpj/mk1Bl64s0q829PvyLyYb370K4 ZQ1IjASHNR6c1cEx8w+c7/yMrTP+V2kbg/E0LTQr4cIpKfvZWGxhZqFizyQqsATR Wd985AEd11wQTkwbCU13JoHpWjhGI7xKSVQSdNSlPLQHsatrjyvjwBXE6BgKaQID AQABo4IDdzCCA3MwHAYDVR0RBBUwE4IRYXBpcHJldmlldy5hcC5vcmcwggH1Bgor BgEEAdZ5AgQCBIIB5QSCAeEB3wB2AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+j qh0HE9MMAAABaQdX61IAAAQDAEcwRQIgMDnCQwt7FKK8u+1nJjM3H3h5wDwCxZQO ib4f5RJnclECIQCchSCgcSfGt/QkM98rVJQjDHxCtEcJHyOZARWHn0PUPAB1AId1 v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMPAAABaQdX60cAAAQDAEYwRAIg YsELx3ZRnLTnBTv9d1W1hMxuEjOj+6h900wtgFF+WkACIA2vuyJqXo8Ro/5wdApS Lhs65AwQUe3jXtRtTKWS4bz/AHYApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fN DsgN3BAAAAFpB1frSAAABAMARzBFAiBBufw7EE5FXqSycLzbBv4dd6sNg//97oq5 HSELE+ELnQIhAPk42sVkl31AEPhDj9cLQwlVS6zAmmZcqrM+aTrPeGGxAHYARJRl LrDuzq/EQAfYqP4owNrmgr7YyzG1P9MzlrW2gagAAAFpB1fsHQAABAMARzBFAiEA 7S5NIZbrFg/y4coW+lgdT7Bcvex4205nx2ni/tVelPACICEbmd1T4fejKLaMDzmu rvrbuIsLhSy636mZOh39t0IdMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggr BgEFBQcDATAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLmVudHJ1c3QubmV0 L2xldmVsMWsuY3JsMEsGA1UdIAREMEIwNgYKYIZIAYb6bAoBBTAoMCYGCCsGAQUF BwIBFhpodHRwOi8vd3d3LmVudHJ1c3QubmV0L3JwYTAIBgZngQwBAgIwaAYIKwYB BQUHAQEEXDBaMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAz BggrBgEFBQcwAoYnaHR0cDovL2FpYS5lbnRydXN0Lm5ldC9sMWstY2hhaW4yNTYu Y2VyMB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU981/p2DGCky/MB0GA1UdDgQWBBR9 hQpGdSXDaz+6lcLVEgbUyftQ5TAJBgNVHRMEAjAAMA0GCSqGSIb3DQEBCwUAA4IB AQApMwvJ1BohaB6W3ScjR4+z5ia7ZJxw6flzkpvMWosmyZ/9beg32umyxxI37QqN 0HWlPSrahVG/+vfQ7yrX8q0LVeYQPT/oGkv8DL51YW3KTLtPgTUa5xCsiDzoeFgQ USalqAOCrAbVhmrZLsoYYymCcxx19Ta5rfpAmc5XYJUBg1OLfJwFL/I7jO23udOT mUwKjUIZqosJ9FZPAuDshz+0jKm7KENIH25ZplqJZh5CiPjIESMRgnHvZrwIWIqe 4V1CaQhM4aokYyFhNYbZmqPskPRwff+GtBMIPnPgl40s4NiMuqOO9OgHCzyrj49x 1ecP3nKavmMwP8QCCiDKKTWk -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6CT/nC64afMdAnQTocUu c4zqm60K7/XVbDU6f69Mf1JxWdwtdEyUkbm3L4Ioz+RbSm1Ap5QA8hBflyMoVznc G9aUm7dtn84fDaKEZSn/JIzLsUvHAKlZp9veob/rQkR2ycJeuSwE9wIn43W2cCUU T3inJyPJP8OMdCNRNtoC9cdcMsrBHx661tNaeYvmpj/mk1Bl64s0q829PvyLyYb3 70K4ZQ1IjASHNR6c1cEx8w+c7/yMrTP+V2kbg/E0LTQr4cIpKfvZWGxhZqFizyQq sATRWd985AEd11wQTkwbCU13JoHpWjhGI7xKSVQSdNSlPLQHsatrjyvjwBXE6BgK aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 81756662422349797528627969283846951675 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-19 19:29:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-18 19:59:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cranbury' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Associated Press' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'apipreview.ap.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29305531381074505400345468458871459998593424907629977234376347358708367086719771417593470531096236400000112025510048092035503665527773691661585122862338726029736105585535741763041699200918471865006588693918143590161377530539403074172589635675557261088540293997843006373570032399688377639941115961819014540655374079116298348297658453232810512428550895129297315005995085265255379321701995621665641170255901102909880354924893993363139532593405150951040534870666781061844958583024236345458500831604866245715602197717822361921289345425892333364051838041360077226599123288440880050853892554946807313107039820117634291599977 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apipreview.ap.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (485 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (481 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7d850a467525c36b3fba95c2d51206d4c9fb50e5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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