merialrewardsplusclinic-qa.us.aimia.com
- AIMIA PROPRIETARY LOYALTY U.S. INC -
Issued by USERTrust Legacy Secure Server CA
About this certificate
This digital certificate with serial number fb:81:60:8e:31:f9:aa:47:76:f0:4b:c1:38:24:3d:9a was issued on by The USERTRUST Network.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
AIMIA PROPRIETARY LOYALTY U.S. INC
Organization:
AIMIA PROPRIETARY LOYALTY U.S. INC
Organization unit: Aimia.com
Organization unit: Hosted by Carlson Marketing Worldwide, Inc
Organization unit: Unified Communications
Organization unit: Aimia.com
Organization unit: Hosted by Carlson Marketing Worldwide, Inc
Organization unit: Unified Communications
Address:
1405 Xenium Lane North
Postal code: 55441
State / Province: MN
Locality: Minneapolis
Country: US
Postal code: 55441
State / Province: MN
Locality: Minneapolis
Country: US
The USERTRUST Network
Organization:
The USERTRUST Network
State / Province:
UT
Locality: Salt Lake City
Country: US
Locality: Salt Lake City
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): fb:81:60:8e:31:f9:aa:47:76:f0:4b:c1:38:24:3d:9aSerial Number (int): 334307991613952496579753944865409613210
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: b8:1b:6c:18:bc:18:7b:cb:25:3d:35:64:a2:30:16:fd:a7:ca:33:aa
AuthorityKeyId: af:a4:40:af:9f:16:fe:ab:31:fd:fb:d5:97:8b:f5:91:a3:24:86:16
Fingerprint (sha1): 55:b0:d8:69:9c:bb:f6:0d:6d:e1:87:87:61:9a:5c:a0:01:2c:63:d7
Fingerprint (sha256): 44:76:26:ea:c7:56:a0:19:ad:ce:33:56:7c:78:91:93:3b:3c:6a:1e:f7:66:0b:cd:78:fd:91:1e:13:d3:f5:0e
Issuing Certificate URL: http://crt.usertrust.com/USERTrustLegacySecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/USERTrustLegacySecureServerCA.crl
Check the revocation status for certificate merialrewardsplusclinic-qa.us.aimia.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for merialrewardsplusclinic-qa.us.aimia.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
merialrewardsplusclinic-qa.us.aimia.com
merialrewardsplusclinic-qa.carlsonmarketing.com
www.merialrewardsplusclinic-qa.carlsonmarketing.com
www.merialrewardsplusclinic-qa.us.aimia.com
merialrewardsplusclinic-qa.carlsonmarketing.com
www.merialrewardsplusclinic-qa.carlsonmarketing.com
www.merialrewardsplusclinic-qa.us.aimia.com
Other certificates including the domain name aimia.com
(limited to 100 certificates)
*.ca.aimia.com
showtimerewardscatalog.us.aimia.com
aimia.com
cds1.cvent.com
us.aimia.com
cds1.cvent.com
cds1.cvent.com
cds2.cvent.com
*.ca.aimia.com
cds2.cvent.com
cds1.cvent.com
aimialegal.one10marketing.com
cds1.cvent.com
comstice.aimia.com
view.uk.aimia.com
aimia.com
exl.demo.us.aimia.com
tmscatalog.us.aimia.com
services.us.aimia.com
*.aimia.com
cds2.cvent.com
cds1.cvent.com
privacy-ethics-security.aimia.com
cds2.cvent.com
cds2.cvent.com
cds1.cvent.com
cds2.cvent.com
nectarnetwork.aimia.com
webinfo.us.aimia.com
us.aimia.com
interactadminpreprod.ca-intranet.aimia.com
cds1.cvent.com
cds2.cvent.com
rewardsintegration.one10marketing.com
secure-ede.us.aimia.com
cds2.cvent.com
navistarbdc-qa.us.aimia.com
emmprodreporting.ca-intranet.aimia.com
news.aimia.com
dc.ca.aimia.com
cds2.cvent.com
cds2.cvent.com
*.aimia.com
cds1.cvent.com
belkincdwrepslne.us.aimia.com
cds1.cvent.com
*.tst.ca-intranet.aimia.com
cds2.cvent.com
us.aimia.com
brandsite.aimia.com
us.aimia.com
dc.ca.aimia.com
emmdev.ca-intranet.aimia.com
interactadminprod2.ca-intranet.aimia.com
aimialegal.one10marketing.com
fusionTVR-qaua.us.aimia.com
*.aimia.com
us.aimia.com
cds2.cvent.com
cds2.cvent.com
cds1.cvent.com
*.tst.ca-intranet.aimia.com
emmprod.ca-intranet.aimia.com
cds1.cvent.com
cds2.cvent.com
cds2.cvent.com
applause.us.aimia.com
cds1.cvent.com
cds1.cvent.com
cds2.cvent.com
cds2.cvent.com
cds1.cvent.com
us.aimia.com
*.us.aimia.com
cds1.cvent.com
themix.us.aimia.com
cds2.cvent.com
adfs.aimia.com
cds2.cvent.com
zoetis.us.aimia.com
interactadminprod1.ca-intranet.aimia.com
sharpcatalog.us.aimia.com
us.aimia.com
cds2.cvent.com
cds1.cvent.com
cds2.cvent.com
cds1.cvent.com
emmprod.ca-intranet.aimia.com
cds1.cvent.com
galcyyzibm001.ca.aimia.com
news.aimia.com
interactadmindev2.ca-intranet.aimia.com
cds1.cvent.com
powerofyou.us.aimia.com
cds1.cvent.com
emmdev.ca-intranet.aimia.com
us.aimia.com
cds1.cvent.com
vpn2.us.aimia.com
hadoop-atom.ca-intranet.aimia.com
showtimerewardscatalog.us.aimia.com
aimia.com
cds1.cvent.com
us.aimia.com
cds1.cvent.com
cds1.cvent.com
cds2.cvent.com
*.ca.aimia.com
cds2.cvent.com
cds1.cvent.com
aimialegal.one10marketing.com
cds1.cvent.com
comstice.aimia.com
view.uk.aimia.com
aimia.com
exl.demo.us.aimia.com
tmscatalog.us.aimia.com
services.us.aimia.com
*.aimia.com
cds2.cvent.com
cds1.cvent.com
privacy-ethics-security.aimia.com
cds2.cvent.com
cds2.cvent.com
cds1.cvent.com
cds2.cvent.com
nectarnetwork.aimia.com
webinfo.us.aimia.com
us.aimia.com
interactadminpreprod.ca-intranet.aimia.com
cds1.cvent.com
cds2.cvent.com
rewardsintegration.one10marketing.com
secure-ede.us.aimia.com
cds2.cvent.com
navistarbdc-qa.us.aimia.com
emmprodreporting.ca-intranet.aimia.com
news.aimia.com
dc.ca.aimia.com
cds2.cvent.com
cds2.cvent.com
*.aimia.com
cds1.cvent.com
belkincdwrepslne.us.aimia.com
cds1.cvent.com
*.tst.ca-intranet.aimia.com
cds2.cvent.com
us.aimia.com
brandsite.aimia.com
us.aimia.com
dc.ca.aimia.com
emmdev.ca-intranet.aimia.com
interactadminprod2.ca-intranet.aimia.com
aimialegal.one10marketing.com
fusionTVR-qaua.us.aimia.com
*.aimia.com
us.aimia.com
cds2.cvent.com
cds2.cvent.com
cds1.cvent.com
*.tst.ca-intranet.aimia.com
emmprod.ca-intranet.aimia.com
cds1.cvent.com
cds2.cvent.com
cds2.cvent.com
applause.us.aimia.com
cds1.cvent.com
cds1.cvent.com
cds2.cvent.com
cds2.cvent.com
cds1.cvent.com
us.aimia.com
*.us.aimia.com
cds1.cvent.com
themix.us.aimia.com
cds2.cvent.com
adfs.aimia.com
cds2.cvent.com
zoetis.us.aimia.com
interactadminprod1.ca-intranet.aimia.com
sharpcatalog.us.aimia.com
us.aimia.com
cds2.cvent.com
cds1.cvent.com
cds2.cvent.com
cds1.cvent.com
emmprod.ca-intranet.aimia.com
cds1.cvent.com
galcyyzibm001.ca.aimia.com
news.aimia.com
interactadmindev2.ca-intranet.aimia.com
cds1.cvent.com
powerofyou.us.aimia.com
cds1.cvent.com
emmdev.ca-intranet.aimia.com
us.aimia.com
cds1.cvent.com
vpn2.us.aimia.com
hadoop-atom.ca-intranet.aimia.com
Certificate
The complete raw certificate details for merialrewardsplusclinic-qa.us.aimia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGkzCCBXugAwIBAgIRAPuBYI4x+apHdvBLwTgkPZowDQYJKoZIhvcNAQEFBQAw fzELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAlVUMRcwFQYDVQQHEw5TYWx0IExha2Ug Q2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMSowKAYDVQQDEyFV U0VSVHJ1c3QgTGVnYWN5IFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTIwODE0MDAwMDAw WhcNMTMwODE0MjM1OTU5WjCCASoxCzAJBgNVBAYTAlVTMQ4wDAYDVQQREwU1NTQ0 MTELMAkGA1UECBMCTU4xFDASBgNVBAcTC01pbm5lYXBvbGlzMR8wHQYDVQQJExYx NDA1IFhlbml1bSBMYW5lIE5vcnRoMSswKQYDVQQKEyJBSU1JQSBQUk9QUklFVEFS WSBMT1lBTFRZIFUuUy4gSU5DMRIwEAYDVQQLEwlBaW1pYS5jb20xMzAxBgNVBAsT Kkhvc3RlZCBieSBDYXJsc29uIE1hcmtldGluZyBXb3JsZHdpZGUsIEluYzEfMB0G A1UECxMWVW5pZmllZCBDb21tdW5pY2F0aW9uczEwMC4GA1UEAxMnbWVyaWFscmV3 YXJkc3BsdXNjbGluaWMtcWEudXMuYWltaWEuY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAyD46fiDGgKjoacW9n3Zgt5q0trggm5mpnSLJc2ZoRoU4 CvAF0TP3vBcSKHcPmPcSTJyAag0yj5OGkk2S6Sj6yuzGSdRKToZA5KyVXob3xh7r qHRfbVRqtc+uvJ8u1TbbwsuZxSUfDK8jGylVOBRH3GzPaWE4afwgbsMhit+Nogwy e2Deci7bdzVb8QA9ZE0hUoxEOuGfl6WQgXax0VeqYGwgnuu2oZazfy04A0FB5kpo 4sz4cONqnBGPyME/V26KiAeRfv/jzmoGhT7uVHFvsG9SOT4FD+PWXz47MZ1RgNxg 9onelDtXUR1IRCixLH38pH5J+OjXtbjq7w5D1RO02wIDAQABo4ICWzCCAlcwHwYD VR0jBBgwFoAUr6RAr58W/qsx/fvVl4v1kaMkhhYwHQYDVR0OBBYEFLgbbBi8GHvL JT01ZKIwFv2nyjOqMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBCBgNVHSAEOzA5MDcGDCsGAQQBsjEB AgEDBDAnMCUGCCsGAQUFBwIBFhlodHRwczovL2Nwcy51c2VydHJ1c3QuY29tMEsG A1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1 c3RMZWdhY3lTZWN1cmVTZXJ2ZXJDQS5jcmwwfQYIKwYBBQUHAQEEcTBvMEYGCCsG AQUFBzAChjpodHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vVVNFUlRydXN0TGVnYWN5 U2VjdXJlU2VydmVyQ0EuY3J0MCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC51c2Vy dHJ1c3QuY29tMIHHBgNVHREEgb8wgbyCJ21lcmlhbHJld2FyZHNwbHVzY2xpbmlj LXFhLnVzLmFpbWlhLmNvbYIvbWVyaWFscmV3YXJkc3BsdXNjbGluaWMtcWEuY2Fy bHNvbm1hcmtldGluZy5jb22CM3d3dy5tZXJpYWxyZXdhcmRzcGx1c2NsaW5pYy1x YS5jYXJsc29ubWFya2V0aW5nLmNvbYIrd3d3Lm1lcmlhbHJld2FyZHNwbHVzY2xp bmljLXFhLnVzLmFpbWlhLmNvbTANBgkqhkiG9w0BAQUFAAOCAQEAg6paIhEl3+27 GI/bjvc/Z1tVQxC9kV987yqFufYKSOaT/o4Ehlk3j6BplAHBaqivCRM1BJ/24yVk LJYgMVTNdaZ8jSwfeUK9ro+Xg9n5J6MfstvAkEr8iaMQmir01Dy5sfYjlf8lveVC 8BgkqJcF+5o6BnQusykkSKOHqXtWayyH5hvIMVd/SHM/AXFffuSUrSsEhNyGnglG Ea8S8pLXD13iRr+XCw6dZtnxjQMqgT4aKzaaI1C5W+J2mRhuNzbSHp1qH08ZHoeA R/kWSi8A8OIFG+cPF9HNue3KtnyeIAx1jKnhXlow4BdWfIUglmzIXGEWcTIQByjd GPJMYC6L8Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyD46fiDGgKjoacW9n3Zg t5q0trggm5mpnSLJc2ZoRoU4CvAF0TP3vBcSKHcPmPcSTJyAag0yj5OGkk2S6Sj6 yuzGSdRKToZA5KyVXob3xh7rqHRfbVRqtc+uvJ8u1TbbwsuZxSUfDK8jGylVOBRH 3GzPaWE4afwgbsMhit+Nogwye2Deci7bdzVb8QA9ZE0hUoxEOuGfl6WQgXax0Veq YGwgnuu2oZazfy04A0FB5kpo4sz4cONqnBGPyME/V26KiAeRfv/jzmoGhT7uVHFv sG9SOT4FD+PWXz47MZ1RgNxg9onelDtXUR1IRCixLH38pH5J+OjXtbjq7w5D1RO0 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 334307991613952496579753944865409613210 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salt Lake City' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The USERTRUST Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'USERTrust Legacy Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-08-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-08-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '55441' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minneapolis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1405 Xenium Lane North' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AIMIA PROPRIETARY LOYALTY U.S. INC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aimia.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by Carlson Marketing Worldwide, Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Unified Communications' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'merialrewardsplusclinic-qa.us.aimia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25278347003864776934078634822775016255328603066667743666774920844206886660593107467852513741362354883965118931066564462574012314522099782215911077808332498467074092965923788331926201055121750678553283663207016855281493291141886751199293864166091547009773016802659446886302509217793776291841712477706914168112532657440465234399116495313827309512895402025539663985061902619797252592961164460722623804225960075410076302170926036178413290091511202606992270697758590688776558991108805565178116942060951067229950722183253628756815578623566199801129062420991604898089776741313878573023528501424107175505881190753974160176347 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName afa440af9f16feab31fdfbd5978bf591a3248616 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b81b6c18bc187bcb253d3564a23016fda7ca33aa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/USERTrustLegacySecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/USERTrustLegacySecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (191 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'merialrewardsplusclinic-qa.us.aimia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'merialrewardsplusclinic-qa.carlsonmarketing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.merialrewardsplusclinic-qa.carlsonmarketing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.merialrewardsplusclinic-qa.us.aimia.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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