*.IllinoisComptroller.gov
- Illinois Office of Comptroller -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number a6:4f:ed:48:d9:52:f9:59:00:00:00:00:50:eb:b8:a0 was issued on by Entrust, Inc..
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Illinois Office of Comptroller
Organization:
Illinois Office of Comptroller
State / Province:
Illinois
Locality: Springfield
Country: US
Locality: Springfield
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): a6:4f:ed:48:d9:52:f9:59:00:00:00:00:50:eb:b8:a0Serial Number (int): 221066851454882609317063400059034122400
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 89:2a:c9:05:ec:f3:c4:5a:35:2e:52:eb:42:23:53:38:e2:ee:a6:ef
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 9e:0b:59:4b:d7:37:54:d4:98:7b:c8:d2:30:54:a9:45:e3:0e:de:57
Fingerprint (sha256): 42:a3:5f:17:07:ec:6b:d7:b2:cf:5a:75:1a:1f:5f:67:7d:eb:ea:fc:dc:d7:3a:fe:85:f0:5b:d8:69:3d:99:b5
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate *.IllinoisComptroller.gov
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.IllinoisComptroller.gov
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.IllinoisComptroller.gov
IllinoisComptroller.gov
*.illinoiscomptroller.com
illinoiscomptroller.com
*.ioc.state.il.us
ioc.state.il.us
IllinoisComptroller.gov
*.illinoiscomptroller.com
illinoiscomptroller.com
*.ioc.state.il.us
ioc.state.il.us
Other certificates including the domain name IllinoisComptroller.gov
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.IllinoisComptroller.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIyDCCB7CgAwIBAgIRAKZP7UjZUvlZAAAAAFDruKAwDQYJKoZIhvcNAQELBQAw gboxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMSgwJgYDVQQL Ex9TZWUgd3d3LmVudHJ1c3QubmV0L2xlZ2FsLXRlcm1zMTkwNwYDVQQLEzAoYykg MjAxMiBFbnRydXN0LCBJbmMuIC0gZm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxLjAs BgNVBAMTJUVudHJ1c3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgLSBMMUswHhcN MTkwMTAzMTYwMDQ2WhcNMjAwOTEwMTYzMDQ0WjCBgzELMAkGA1UEBhMCVVMxETAP BgNVBAgTCElsbGlub2lzMRQwEgYDVQQHEwtTcHJpbmdmaWVsZDEnMCUGA1UEChMe SWxsaW5vaXMgT2ZmaWNlIG9mIENvbXB0cm9sbGVyMSIwIAYDVQQDDBkqLklsbGlu b2lzQ29tcHRyb2xsZXIuZ292MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEAjpGN8I4NnEqyLt9nud96lerAvQMPK0q5Oel9i4d26gnBFf/eO0wlethn54By RHNoA7lv5irE+CoWcY8bv6pS4Gr/L9idnfvR+TwRxBz2zT8z6cAf4/4LmG2fIFGC CY1ZXLsDXb944R4cMYCsm0Roq4707TT9H5a3OLGa4BO6Xz2OBdmrnWgKkkiX05iv DMCh/Md3bMbVJMvb5FX6FDhg4PDPBJNkaYqkpGjCpeeOjQ93phtF2ulP7mLStyPn 2M0O1usybUaIe8+qaza0TkOOxtDWpf2dU0hGhoy6ZbOy2a8cqHMDf/eXxxrtPBlQ n1SyUSAVYNvpyarxURle6nz88BAoI8iJzvJRglEtZBqVWoX0N8d5TQx6pSbRsLou xktMAK5Suox6pv8SyzuMjwOyDC2f0TeSuFdKfHEdpKg2JrmNdfRNlDpbC4LIZgeY ABq4zvqRT6eEa7iFzizDxpGIGxB9fNKyRqINw46PymyRDke5IBubRwRtq0nhQQHt YNQAMYZUJt2q5ZfQJ7sXNNxZhWHR97v92l+fJmzaUFxEsjOsdTPuRVDn80ZLC6e6 Xh9FwOLnttUI9bELF/ubZJSiHSxA6LH9pM+qhISeWnxk2haJLe2dpz9OLf1pFECe TRvp5M5Zallhbdx+PZ29NN7Oen/sldNX9xV+xkzlrCN+bV8CAwEAAaOCA/wwggP4 MIGXBgNVHREEgY8wgYyCGSouSWxsaW5vaXNDb21wdHJvbGxlci5nb3aCF0lsbGlu b2lzQ29tcHRyb2xsZXIuZ292ghkqLmlsbGlub2lzY29tcHRyb2xsZXIuY29tghdp bGxpbm9pc2NvbXB0cm9sbGVyLmNvbYIRKi5pb2Muc3RhdGUuaWwudXOCD2lvYy5z dGF0ZS5pbC51czCCAfQGCisGAQQB1nkCBAIEggHkBIIB4AHeAHUAVYHUwhaQNgFK 6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAFoFI2KrQAABAMARjBEAiAzOzfhcmG2 Wl/UaCjC0hxrZ2DYL7R3ShcZa3eUbyL81QIgDRfccxOLSX6u0D6Vb5Rk7vwe6Pg6 Cqig63Gha69QcqwAdgCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAA AWgUjYrKAAAEAwBHMEUCIQD88qJXaxPzdd4/AEkctqHrpDHlWTB8pVPu11s51cKd 7wIgVtAhvead8ucCKKZMdMhGx2MFxMIx1LzbdZswSnC2ursAdQBep3P531bA57U2 SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAWgUjYqmAAAEAwBGMEQCIHHHLc2RbtXO LL6dBxlcdux7vGRYXAPxOZPu/2Cyj2TKAiBOAuMPSBd470SgAT9Zhhm9wjbf/a5b wjIkq8+kZpjYZQB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAAB aBSNisIAAAQDAEcwRQIge5gvVMAiYPjLXvCxjxMFypKAptDelhRlhfXd+ZOiITwC IQCPkp0MzAN4zxC8IWFzcPpzw+wR4pkhvTQvPyc1x5bKsjAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDMGA1UdHwQsMCowKKAm oCSGImh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxay5jcmwwSwYDVR0gBEQw QjA2BgpghkgBhvpsCgEFMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly93d3cuZW50cnVz dC5uZXQvcnBhMAgGBmeBDAECAjBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUHMAGG F2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8vYWlh LmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwHwYDVR0jBBgwFoAUgqJwdN28 Uz/Pe9T3zX+nYMYKTL8wHQYDVR0OBBYEFIkqyQXs88RaNS5S60IjUzji7qbvMAkG A1UdEwQCMAAwDQYJKoZIhvcNAQELBQADggEBAIf1wP4+2r9aUP+YPVvURHQtXXu+ rG534bWii1ZZVJgz5uTGiTKSlbR32BOGKb92zBOQRY5iYd8vxnHVmSmR68jTajSq Oz1EonBjHNnZiwQvTsZHftq1SkAo8GzbZgmteETT7v4Clzg2oQ6Jd9WDZSeSX0tg z0ObBUEG6imoB3SoKXGlKYmIqOOYfXVksP7N8EqcgExVoldaKvTAPikq6fyEX/xj 3bf0DwcpBvGpykiakZdtyK9jF5I2i547Ofla2FoCrMYKujU8Q8fK+hEgqq2Q26FM AsEar1i8lLxpwKMYUwfhNgP5J02Is/pYXpvq7AG8mMBFyTJEz7K9O7LauoA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAjpGN8I4NnEqyLt9nud96 lerAvQMPK0q5Oel9i4d26gnBFf/eO0wlethn54ByRHNoA7lv5irE+CoWcY8bv6pS 4Gr/L9idnfvR+TwRxBz2zT8z6cAf4/4LmG2fIFGCCY1ZXLsDXb944R4cMYCsm0Ro q4707TT9H5a3OLGa4BO6Xz2OBdmrnWgKkkiX05ivDMCh/Md3bMbVJMvb5FX6FDhg 4PDPBJNkaYqkpGjCpeeOjQ93phtF2ulP7mLStyPn2M0O1usybUaIe8+qaza0TkOO xtDWpf2dU0hGhoy6ZbOy2a8cqHMDf/eXxxrtPBlQn1SyUSAVYNvpyarxURle6nz8 8BAoI8iJzvJRglEtZBqVWoX0N8d5TQx6pSbRsLouxktMAK5Suox6pv8SyzuMjwOy DC2f0TeSuFdKfHEdpKg2JrmNdfRNlDpbC4LIZgeYABq4zvqRT6eEa7iFzizDxpGI GxB9fNKyRqINw46PymyRDke5IBubRwRtq0nhQQHtYNQAMYZUJt2q5ZfQJ7sXNNxZ hWHR97v92l+fJmzaUFxEsjOsdTPuRVDn80ZLC6e6Xh9FwOLnttUI9bELF/ubZJSi HSxA6LH9pM+qhISeWnxk2haJLe2dpz9OLf1pFECeTRvp5M5Zallhbdx+PZ29NN7O en/sldNX9xV+xkzlrCN+bV8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 221066851454882609317063400059034122400 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-03 16:00:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-10 16:30:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Springfield' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois Office of Comptroller' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.IllinoisComptroller.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 581629029361856110697393830837335633928820898926290626631523664750105437268490387902061677446509127716411716385234360641314724150934536334429518563225378419808206993016834058041669561394555785779533752960526264250168782512877670397596865004370938746044885900018536215488113540994438107630947786061877498717478444264672161602465332588332480269621123060101019110152239981838757883057537593263714609436105504846591672918511677503811704659573418748089076187973694500023099922929949417538576841354643641810900498500729417624374487666299426262509712151234672318958684399791456419598507903187930307950478241207772351780612597114699508788347171948265031571223389772002045480201331158503184735431437195948743400243549782056794060484601315687532363521387606436877893048444068596210111604473587505636902407621314349813964622901238071355757841639295155551145190679759028254157209150092418646741302425656062937332904151469137487885409516918344415642939527369656489692343900722589849923119206702948368299850802072435719071211740351442285259745447611980172061449456504330825735573334818274474433780545688445685020096758496238709715232341787687089086972568986215871260696065828714300241850148169136448629824455582228525061880938051166755601845742943 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (143 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.IllinoisComptroller.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'IllinoisComptroller.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.illinoiscomptroller.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'illinoiscomptroller.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ioc.state.il.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ioc.state.il.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (484 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (480 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 892ac905ecf3c45a352e52eb42235338e2eea6ef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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