*.gtus.com
- Grant Thornton LLP -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 71:42:dc:11:17:33:6b:7a:ef:d2:4d:1d:0e:a6:fc:0a was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Grant Thornton LLP
Organization:
Grant Thornton LLP
State / Province:
Illinois
Locality: Downers Grove
Country: US
Locality: Downers Grove
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 71:42:dc:11:17:33:6b:7a:ef:d2:4d:1d:0e:a6:fc:0aSerial Number (int): 150549918600530676375288904275489913866
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 2f:44:c6:d1:72:66:01:dd:3b:ba:77:49:43:09:a7:7d:18:77:77:42
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): fe:e0:0b:33:2d:c6:22:68:04:9e:ec:37:40:a3:b5:df:61:7f:0a:88
Fingerprint (sha256): 46:45:98:d4:25:3a:7e:5b:47:b6:5b:05:de:c0:b6:6f:5f:48:a8:9c:86:4c:9e:07:4c:35:42:a7:87:68:11:6e
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate *.gtus.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.gtus.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.gtus.com
gtus.com
gtus.com
Other certificates including the domain name gtus.com
(limited to 100 certificates)
iemail.gtus.com
IEMAIL.GTUS.COM
amplify.gtus.com
rcm-test-rapidrm.gtus.com
rcm-test-rapidrm.gtus.com
iemail.gtus.com
*.hotdocsdev.gtus.com
o365saviyntconnector.gtus.com
iemail.gtus.com
gtconvene.gtus.com
test-access.gtus.com
iemail.gtus.com
webmail.gtus.com
*.gtus.com
access.gtus.com
webmail.gtus.com
taxtoollibrary.gtus.com
iemail.gtus.com
*.gtus.com
lawsonhistory-dev.gtus.com
taxtoollibrary.gtus.com
lawsonhistory.gtus.com
rcm-rapidrm.gtus.com
*.gtus.com
events.gtus.com
gtconvene.gtus.com
securefiletransfer.gtus.com
securefiletransfer.gtus.com
taxtoollibrary.us.gt.com
*.gtus.com
*.gtus.com
securefiletransfer.gtus.com
*.gtus.com
lawsonhistory.gtus.com
*.gtus.com
securefiletransfer.gtus.com
taxsymphony.gtus.com
webmail.gtus.com
amplify.gtus.com
iemail.gtus.com
test-access.gtus.com
test-access.gtus.com
events.gtus.com
taxtoollibrary.us.gt.com
rcm-rapidrm.gtus.com
amplify.gtus.com
IEMAIL.GTUS.COM
amplify.gtus.com
rcm-test-rapidrm.gtus.com
rcm-test-rapidrm.gtus.com
iemail.gtus.com
*.hotdocsdev.gtus.com
o365saviyntconnector.gtus.com
iemail.gtus.com
gtconvene.gtus.com
test-access.gtus.com
iemail.gtus.com
webmail.gtus.com
*.gtus.com
access.gtus.com
webmail.gtus.com
taxtoollibrary.gtus.com
iemail.gtus.com
*.gtus.com
lawsonhistory-dev.gtus.com
taxtoollibrary.gtus.com
lawsonhistory.gtus.com
rcm-rapidrm.gtus.com
*.gtus.com
events.gtus.com
gtconvene.gtus.com
securefiletransfer.gtus.com
securefiletransfer.gtus.com
taxtoollibrary.us.gt.com
*.gtus.com
*.gtus.com
securefiletransfer.gtus.com
*.gtus.com
lawsonhistory.gtus.com
*.gtus.com
securefiletransfer.gtus.com
taxsymphony.gtus.com
webmail.gtus.com
amplify.gtus.com
iemail.gtus.com
test-access.gtus.com
test-access.gtus.com
events.gtus.com
taxtoollibrary.us.gt.com
rcm-rapidrm.gtus.com
amplify.gtus.com
Certificate
The complete raw certificate details for *.gtus.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIQcULcERcza3rv0k0dDqb8CjANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDA1MjExNTMzMTBaFw0yNTA2MjAxNTMzMDlaMGoxCzAJBgNVBAYTAlVTMREwDwYD VQQIEwhJbGxpbm9pczEWMBQGA1UEBxMNRG93bmVycyBHcm92ZTEbMBkGA1UEChMS R3JhbnQgVGhvcm50b24gTExQMRMwEQYDVQQDDAoqLmd0dXMuY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0fFVg13+DLKDj5CHzRKU1jctM/fGttA S9wOt77mnuzGiEkSNjePtzy8Wsfnayk+kJcaOFhV/9iHnX1FqHk7C6GKQtR3wqQg pUKnGbrMhTZ+qIb6nwEpTL4Vohzia2DOMCsNK96S86CGltgW5wya+yLBEv9H/IKA 4nCR1H5zaiEKm5kU2SypoQeiuB8yNg+15x7FYKh7u+CiXNTIcUDBobOFi9ALRYb0 Io1ee8h9ZssX9uxQec8WB7pRfNxtlrAJ9+JqITbidb2Yg0Gy9wQI10gsKY5Bd4n4 1Te70ZUpdT825OmoSIR8/s/WFx+7IuiqoE+ex85lRWyz/YojjWypZQIDAQABo4IB azCCAWcwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUL0TG0XJmAd07undJQwmnfRh3 d0IwHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3zX+nYMYKTL8waAYIKwYBBQUHAQEE XDBaMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAzBggrBgEF BQcwAoYnaHR0cDovL2FpYS5lbnRydXN0Lm5ldC9sMWstY2hhaW4yNTYuY2VyMDMG A1UdHwQsMCowKKAmoCSGImh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxay5j cmwwHwYDVR0RBBgwFoIKKi5ndHVzLmNvbYIIZ3R1cy5jb20wDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjATBgNVHSAEDDAKMAgG BmeBDAECAjATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEA jaouuYaOsjz/uW4q69FrmaivnhYp+N93/vM03d3GpOkPij1Sy2ZZk05WBLaBG8ZB /UryL4l98XYxequUct/KtwoU0p6r8NbRb/exzWdnFoekvq/dWshXMntyfrPmZh+o T1g0zquAcxzgEws5aAobcX1Vs2/KeMuadhlcTVC0+zZ8DQb0yWBRmgaDH/Gd5DN/ ziVOXjwOBQhfUEdUIGZoTy5YLUvLpG5EWDtBDAyblGIYEArm3nbm0FJKyrnagAyN DS7Ws7LXyjZcvzJ6GOrTzpa58sqnxJcNSRCW5cTP+mCv0w1mllbWeVs+RjDjwBCe FXqWOCEFqpL56z8I3T+IiQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0fFVg13+DLKDj5CHzRK U1jctM/fGttAS9wOt77mnuzGiEkSNjePtzy8Wsfnayk+kJcaOFhV/9iHnX1FqHk7 C6GKQtR3wqQgpUKnGbrMhTZ+qIb6nwEpTL4Vohzia2DOMCsNK96S86CGltgW5wya +yLBEv9H/IKA4nCR1H5zaiEKm5kU2SypoQeiuB8yNg+15x7FYKh7u+CiXNTIcUDB obOFi9ALRYb0Io1ee8h9ZssX9uxQec8WB7pRfNxtlrAJ9+JqITbidb2Yg0Gy9wQI 10gsKY5Bd4n41Te70ZUpdT825OmoSIR8/s/WFx+7IuiqoE+ex85lRWyz/YojjWyp ZQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 150549918600530676375288904275489913866 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-21 15:33:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-20 15:33:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Downers Grove' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Grant Thornton LLP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.gtus.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23137001331177427745228568949803945689762764284414905245885712617425885123040130819004994378662934804742702558354474290981012570849016009583306788703106684029483321878786780441536373408848183992862250198652221003656606663982653279903762352101706451262650043659628991229796605877656183350528781768357502401948691596661586296488084838806869942684762065738011518586278186335608697502954736985542810053977752970025443724632586791217560241534180379808459307246568520937197669369472588531079339198762209541875841930621796089582886802440475482024637815685506428544173468279915251255667590845828627519871345011706328070793573 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2f44c6d1726601dd3bba77494309a77d18777742 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gtus.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gtus.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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