*.cgi-bps.com
- CGI Federal Inc. -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 01:f6:a0:8d:03:a8:68:a9:1c:c7:5a:80:e4:d9:cc:70 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
CGI Federal Inc.
Organization:
CGI Federal Inc.
Organization unit: HCP
Organization unit: HCP
State / Province:
OH
Locality: Cleveland
Country: US
Locality: Cleveland
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:f6:a0:8d:03:a8:68:a9:1c:c7:5a:80:e4:d9:cc:70Serial Number (int): 2609789380824031060908726877781871728
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 69:37:f2:91:19:89:23:08:57:67:72:66:7c:b4:25:11:5c:49:4e:53
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): 73:18:e3:55:16:58:dd:2d:cd:8d:5a:b4:e4:54:aa:41:c3:ce:f5:f8
Fingerprint (sha256): 42:b8:86:62:ea:18:e0:4f:6a:a0:e4:dd:14:1a:15:3e:f7:12:72:8a:91:e6:de:89:ce:24:4e:65:a0:dc:ca:17
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g6.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g6.crl
Check the revocation status for certificate *.cgi-bps.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.cgi-bps.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.cgi-bps.com
cgi-bps.com
pbca.cgi-bps.com
cgi-bps.com
pbca.cgi-bps.com
Other certificates including the domain name cgi-bps.com
(limited to 100 certificates)
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.dr.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.dr.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
Certificate
The complete raw certificate details for *.cgi-bps.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG8TCCBdmgAwIBAgIQAfagjQOoaKkcx1qA5NnMcDANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xODA2MDEwMDAwMDBaFw0yMDA4MTIxMjAwMDBa MG8xCzAJBgNVBAYTAlVTMQswCQYDVQQIEwJPSDESMBAGA1UEBxMJQ2xldmVsYW5k MRkwFwYDVQQKExBDR0kgRmVkZXJhbCBJbmMuMQwwCgYDVQQLEwNIQ1AxFjAUBgNV BAMMDSouY2dpLWJwcy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2tfihdC8mi5v43nzceDyKgdLGhOl20Oq8292FpD0goQPV6WB1AeLVv2xVvaIx /kIL3CDbXu960UR68KSnYGBxYT5Jkp+KU6a6EMRcf2KUOQuFIWhiqA8oX656iTQ7 ogRYfuRIJLa6sZDHV54DfLDUGzlzIYdlh022A+LdRnFlwcEivlj7lXMVp2kKB5LE jHqakOw3UqYEX6bY/XNjj5uYHJozESdDNaDW0he3GYBUacNa+bCnIaFLQInOEuoO Cbe1zYGwr3hqEugEwhb6ydDJ6P6bKvPju7JFSrmPJn4oeP53iNBxyaWm48ThKA/C q7Uh8wkKwC7Fbwbc237fia2hAgMBAAGjggOGMIIDgjAfBgNVHSMEGDAWgBRRaP+Q rwIHdTzM2WVkYqISuFlyOzAdBgNVHQ4EFgQUaTfykRmJIwhXZ3JmfLQlEVxJTlMw NwYDVR0RBDAwLoINKi5jZ2ktYnBzLmNvbYILY2dpLWJwcy5jb22CEHBiY2EuY2dp LWJwcy5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjB1BgNVHR8EbjBsMDSgMqAwhi5odHRwOi8vY3JsMy5kaWdpY2VydC5j b20vc2hhMi1oYS1zZXJ2ZXItZzYuY3JsMDSgMqAwhi5odHRwOi8vY3JsNC5kaWdp Y2VydC5jb20vc2hhMi1oYS1zZXJ2ZXItZzYuY3JsMEwGA1UdIARFMEMwNwYJYIZI AYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9D UFMwCAYGZ4EMAQICMIGDBggrBgEFBQcBAQR3MHUwJAYIKwYBBQUHMAGGGGh0dHA6 Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBNBggrBgEFBQcwAoZBaHR0cDovL2NhY2VydHMu ZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkhpZ2hBc3N1cmFuY2VTZXJ2ZXJDQS5j cnQwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYApLkJ kLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFjuaVC+QAABAMARzBFAiEA ieDMWdHDEnvkchMFrw900V1PxI0oc+MtyvnyBC/qqg4CICzJ9Hpk/0TKqYHvMQTX aRDiosfRdu7lZKTPj+k4LXDVAHYAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq /16ggw8AAAFjuaVD3wAABAMARzBFAiBvNbd3M+XODjoDCsR28jTjFmDmGDDAZZF6 3cguy+qd3QIhAJB2Iym8isRT/iLRa9paQEuynKc8ufl9l2amnTlNVSbkAHUAu9nf vB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFjuaVD5wAABAMARjBEAiAP jYb7PH0x5gLUX2AM3MzXB4CmNnQejyWTqN/6DSiszwIgQVH0LXkvj92cvNX6lmTt /JYqbTWpLVE4A7kRm/CD+kUwDQYJKoZIhvcNAQELBQADggEBAAmQQo6ZEaWhtNR7 VCrw5xRO4syJVdC2AdCi51Rt2hwQSAh1cbNAcjLtSnOnMTQZceE/v+P0/D7KVE+w b1wSjtRDu5SWfj61sDFNswdaZ630Xh7Z/TTGHzAcbCJOqOvqNC/CZSJ814zzjcLX Lw6Spf+TMWu6pc9QyTOItKyssiGlqmxEstt6ztYFhPwAtsRab54V6jM0hgJ8FL0q 7LqPS/e/+qmbXApuLQHzyMw9LAqfngj+Vnp8ZzSxgKcpX/9whF1lHMgCikM2c2Hk vdTO7btnRavTFTwsydm6XEi/E0maIpBYWB41DF9IGz4NfRebw0DspuIVa8tymFmj DrmBxrg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrX4oXQvJoub+N583Hg8 ioHSxoTpdtDqvNvdhaQ9IKED1elgdQHi1b9sVb2iMf5CC9wg217vetFEevCkp2Bg cWE+SZKfilOmuhDEXH9ilDkLhSFoYqgPKF+ueok0O6IEWH7kSCS2urGQx1eeA3yw 1Bs5cyGHZYdNtgPi3UZxZcHBIr5Y+5VzFadpCgeSxIx6mpDsN1KmBF+m2P1zY4+b mByaMxEnQzWg1tIXtxmAVGnDWvmwpyGhS0CJzhLqDgm3tc2BsK94ahLoBMIW+snQ yej+myrz47uyRUq5jyZ+KHj+d4jQccmlpuPE4SgPwqu1IfMJCsAuxW8G3Nt+34mt oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2609789380824031060908726877781871728 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-12 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cleveland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CGI Federal Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HCP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.cgi-bps.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23065104853651723544090959227804630386554069130867489553552793206775371211400101268740530797154050855214550518866632394034283565846173260093714824577847145376186136366982811235626280752265957525536323575659046535955755876091574497788054634743522162474948826071037450673995726511696403839587231878761399496449899553001621916499703462574179499639712274520564722768432977838883865188338983064400817145491372891981524383031132673760867948021452445171634044878502909547442327694778671727469502909882390958875949893062363050478396118901061488672264267478766673241731236290205801508939172417548119662166514926618583621021089 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6937f29119892308576772667cb425115c494e53 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cgi-bps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cgi-bps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pbca.cgi-bps.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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