kirstengillibrand.com
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 05:5f:2a:76:fa:55:cb:30:11:14:d8:a5:dc:af:ac:62 was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kirstengillibrand.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 05:5f:2a:76:fa:55:cb:30:11:14:d8:a5:dc:af:ac:62Serial Number (int): 7140269468086888719653169817562623074
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 49:51:d2:c8:0c:97:9c:70:9f:1a:77:90:90:34:87:8b:8d:24:63:25
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): bb:bf:e2:ab:5a:35:cb:5d:24:e1:72:9e:7b:18:21:fb:25:7f:69:23
Fingerprint (sha256): 41:30:15:76:d9:34:52:05:07:79:0f:1c:a7:30:31:99:71:b8:b2:ff:d2:da:2b:f4:7d:43:67:56:3a:48:7f:d4
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/rGhpGD5u0qkCRL Distribution Point: http://crls.pki.goog/gts1p5/ZLjfCcC0tzo.crl
Check the revocation status for certificate kirstengillibrand.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kirstengillibrand.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kirstengillibrand.com
*.kirstengillibrand.com
*.kirstengillibrand.com
Other certificates including the domain name kirstengillibrand.com
(limited to 100 certificates)
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
www.kirstengillibrand.com
sni199647.cloudflaressl.com
mobilize.us
sni199647.cloudflaressl.com
2020.kirstengillibrand.com
2020.kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
events.kirstengillibrand.com
*.sanssl-002.bsdtools.com
sni199647.cloudflaressl.com
kirstengillibrand.com
www.kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
proxy-fallback.mobilize.us
kirstengillibrand.com
kirstengillibrand.com
events.kirstengillibrand.com
sni.cloudflaressl.com
kirstengillibrand.com
sni199647.cloudflaressl.com
kirstengillibrand.com
mobilize.us
www.kirstengillibrand.com
share.kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
kirstengillibrand.com
sni199647.cloudflaressl.com
kirstengillibrand.com
*.sanssl-002.bsdtools.com
events.kirstengillibrand.com
sni199647.cloudflaressl.com
kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
kirstengillibrand.com
kirstengillibrand.com
sni199647.cloudflaressl.com
kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
mobilize.us
events.elizabethwarren.com
kirstengillibrand.com
store.kirstengillibrand.com
store.kirstengillibrand.com
gillibrand-main.edge.bluestate.digital
store.kirstengillibrand.com
kirstengillibrand.com
kirstengillibrand.com
gillibrand-main.edge.bluestate.digital
kirstengillibrand.com
events.kirstengillibrand.com
www.mobilize.us
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
www.kirstengillibrand.com
gillibrand-main.edge.bluestate.digital
store.kirstengillibrand.com
kirstengillibrand.com
kirstengillibrand.com
www.mobilize.us
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
store.kirstengillibrand.com
2020.kirstengillibrand.com
mobilize.us
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
www.kirstengillibrand.com
2020.kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
kirstengillibrand.com
sni199647.cloudflaressl.com
events.mobilizeamerica.io
kirstengillibrand.com
2020.kirstengillibrand.com
sni199647.cloudflaressl.com
www.kirstengillibrand.com
store.kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
events.kirstengillibrand.com
gillibrand-main.edge.bluestate.digital
kirstengillibrand.com
kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
proxy-fallback.mobilize.us
sni199647.cloudflaressl.com
www.kirstengillibrand.com
sni199647.cloudflaressl.com
mobilize.us
sni199647.cloudflaressl.com
2020.kirstengillibrand.com
2020.kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
events.kirstengillibrand.com
*.sanssl-002.bsdtools.com
sni199647.cloudflaressl.com
kirstengillibrand.com
www.kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
proxy-fallback.mobilize.us
kirstengillibrand.com
kirstengillibrand.com
events.kirstengillibrand.com
sni.cloudflaressl.com
kirstengillibrand.com
sni199647.cloudflaressl.com
kirstengillibrand.com
mobilize.us
www.kirstengillibrand.com
share.kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
kirstengillibrand.com
sni199647.cloudflaressl.com
kirstengillibrand.com
*.sanssl-002.bsdtools.com
events.kirstengillibrand.com
sni199647.cloudflaressl.com
kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
kirstengillibrand.com
kirstengillibrand.com
sni199647.cloudflaressl.com
kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
mobilize.us
events.elizabethwarren.com
kirstengillibrand.com
store.kirstengillibrand.com
store.kirstengillibrand.com
gillibrand-main.edge.bluestate.digital
store.kirstengillibrand.com
kirstengillibrand.com
kirstengillibrand.com
gillibrand-main.edge.bluestate.digital
kirstengillibrand.com
events.kirstengillibrand.com
www.mobilize.us
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
www.kirstengillibrand.com
gillibrand-main.edge.bluestate.digital
store.kirstengillibrand.com
kirstengillibrand.com
kirstengillibrand.com
www.mobilize.us
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
store.kirstengillibrand.com
2020.kirstengillibrand.com
mobilize.us
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
www.kirstengillibrand.com
2020.kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
kirstengillibrand.com
sni199647.cloudflaressl.com
events.mobilizeamerica.io
kirstengillibrand.com
2020.kirstengillibrand.com
sni199647.cloudflaressl.com
www.kirstengillibrand.com
store.kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
events.kirstengillibrand.com
gillibrand-main.edge.bluestate.digital
kirstengillibrand.com
kirstengillibrand.com
sni199647.cloudflaressl.com
sni199647.cloudflaressl.com
proxy-fallback.mobilize.us
Certificate
The complete raw certificate details for kirstengillibrand.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgIQBV8qdvpVyzARFNil3K+sYjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDA1MzAxODU2MzZaFw0yNDA4Mjgx ODU2MzVaMCAxHjAcBgNVBAMTFWtpcnN0ZW5naWxsaWJyYW5kLmNvbTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALn22euu1/094K9m4pfZwuwq8wmLcpe2 1pLy3jGCRQDREP85gNSeHuS5nNIoUT5HjaavOrSMg3uKU4nSTYKplqeIRe7jDbpL mOONXQG67TY23vIkVo9OiJHQNAdGQmL3JctS3hv4ZId4Kpl8ZkLqRT1tJWYEO74c QDn6mOpn015lmunRg02l+9+vAKNSC1WVSIbpB5uWFZvVFJM9uKGeDi0htZ5mAUI4 5G4fSqkuxJD/fLp1Fpf6cUMsc92C3jPffBTR+ZvmDQL59gqJkHxvQzXNLbo44c8U hU/IClpjwJNk2tI+3RvrUL5JqjC5zXeskWP62Ii1UUypX8mErT+k3KMCAwEAAaOC ApQwggKQMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBRJUdLIDJeccJ8ad5CQNIeLjSRjJTAfBgNVHSME GDAWgBTV/J4N3x7K3QiXl24rxV/FK/XsuDB4BggrBgEFBQcBAQRsMGowNQYIKwYB BQUHMAGGKWh0dHA6Ly9vY3NwLnBraS5nb29nL3MvZ3RzMXA1L3JHaHBHRDV1MHFr MDEGCCsGAQUFBzAChiVodHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMxcDUu ZGVyMDkGA1UdEQQyMDCCFWtpcnN0ZW5naWxsaWJyYW5kLmNvbYIXKi5raXJzdGVu Z2lsbGlicmFuZC5jb20wIQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIF AzA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUv WkxqZkNjQzB0em8uY3JsMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUA2ra/az+1 tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGPyxNp3gAABAMARjBEAiBvb9QD LirHtqLj3qrg1WcT+qegmA9UWySbc2rPBdiNIQIgNbUgZQFyFWX67ZjsaYwgqFqt ZwcaHNKzDkOXcyIoYv8AdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6 dAAAAY/LE2XtAAAEAwBHMEUCIQChlSeCHEQnBJ2Os52m4tK8RBMWGyFLW80VktV4 kTySHAIgFwyMkU6mnPrXuiMLdbsjW944AImmwyMWrxhr5lHu71AwDQYJKoZIhvcN AQELBQADggEBAEXgmXz2L3yiBBbt4sqpgM01q2wM0hrUMP9Npqvk0FsjeV8WtHN8 EmXyB6eYpa9uGSl8VdnxRtT6AWJyt7tLayFoM5/5CYemultGpj3Fih4ZQfjs49A1 T4La3XsSNQUPrFB8wGfoaOhka7Y8iuqvFtW+3P+f/lGs2zXcVNAeOK24Kc/axhqo I3MyFz2hUP0KefUsUczKw86xP0IOWnxqI/ROk7qwKrHBo3b0WcWRpQcgT/f3YoWy 7u+61C8tHG/sP71uUWOW4M/oslExSpj0bojzjXaRJ1R23tC6gOAlkL86tHIl98Q/ 2/Msmp8nwPFJ/+kt5OK7+c2gq9ZLUCokQ6w= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufbZ667X/T3gr2bil9nC 7CrzCYtyl7bWkvLeMYJFANEQ/zmA1J4e5Lmc0ihRPkeNpq86tIyDe4pTidJNgqmW p4hF7uMNukuY441dAbrtNjbe8iRWj06IkdA0B0ZCYvcly1LeG/hkh3gqmXxmQupF PW0lZgQ7vhxAOfqY6mfTXmWa6dGDTaX7368Ao1ILVZVIhukHm5YVm9UUkz24oZ4O LSG1nmYBQjjkbh9KqS7EkP98unUWl/pxQyxz3YLeM998FNH5m+YNAvn2ComQfG9D Nc0tujjhzxSFT8gKWmPAk2Ta0j7dG+tQvkmqMLnNd6yRY/rYiLVRTKlfyYStP6Tc owIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7140269468086888719653169817562623074 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-30 18:56:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-28 18:56:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kirstengillibrand.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23475813308145447466815921781632955228665636329784377236834949143828811023615871923720194909770625477889030900438115497750004488866053383341141257822045771380005881177798580921912220893748413430139506736413590473004927670930591516075720787980672931238299350185938739509971477525467209263168563766291136752736326085840683478096167598413951793643074137006427054951057366329403819460015159395112270775829317416475281778035987352943054516457274225797879135275349131195190088686266775050862224819151536876939598501768782001835957206333299926348378955402354351150776938901024642183544402957500942429304214913192972060515491 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4951d2c80c979c709f1a77909034878b8d246325 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/rGhpGD5u0qk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kirstengillibrand.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kirstengillibrand.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/ZLjfCcC0tzo.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018fcb1369de000004030046304402206f6fd4032e2ac7b6a2e3deaae0d56713faa7a0980f545b249b736acf05d88d21022035b5206501721565faed98ec698c20a85aad67071a1cd2b30e439773222862ff00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018fcb1365ed0000040300473045022100a19527821c4427049d8eb39da6e2d2bc4413161b214b5bcd1592d578913c921c0220170c8c914ea69cfad7ba230b75bb235bde380089a6c32316af186be651eeef50 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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