ia-cem.secureweb.inalco.com
- Industrial Alliance Insurance and Financial Services Inc. -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 7d:5d:00:fb:79:59:1b:02:db:6a:c1:fd:43:bb:7c:8a was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Industrial Alliance Insurance and Financial Services Inc.
Organization:
Industrial Alliance Insurance and Financial Services Inc.
State / Province:
Quebec
Locality: Quebec
Country: CA
Locality: Quebec
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 7d:5d:00:fb:79:59:1b:02:db:6a:c1:fd:43:bb:7c:8aSerial Number (int): 166636403004782422305705598348624100490
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 6c:82:87:84:e4:0e:ff:cb:e3:cd:15:9a:50:f6:7a:1b:44:f1:87:87
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 24:31:51:3d:98:6a:75:45:a1:0c:cb:69:62:8b:81:aa:da:d0:0c:e8
Fingerprint (sha256): 49:44:4f:0a:a6:ca:5b:3f:6e:6e:df:92:f1:01:e2:51:9f:f5:66:c0:17:0f:25:e8:08:40:6d:b6:5d:7c:0f:a4
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate ia-cem.secureweb.inalco.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ia-cem.secureweb.inalco.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ia-cem.secureweb.inalco.com
www.ia-cem.secureweb.inalco.com
www.ia-cem.secureweb.inalco.com
Other certificates including the domain name inalco.com
(limited to 100 certificates)
poupon.inalco.com
www.inalco.com
securefonc.inalco.com
webmail.inalco.com
rave01.inalco.com
poupon.inalco.com
ei.secureweb.inalco.com
intg.api.inalco.com
imageserver.secureweb.inalco.com
inalco.com
iamobile.inalco.com
fr.wiki-crm.kronos-web.com
www.inalco.com
gestionclients.intg.inalco.com
inalco.com
poupon.inalco.com
www.inalco.com
inalco.com
we.secureweb.inalco.com
inalco.com
www.iaretirement.inalco.com
imageserver.secureweb.accp.ia.iafg.net
we.intg.secureweb.inalco.com
imageserver.secureweb.inalco.com
bambin.inalco.com
poupon.inalco.com
*.intg.secureweb.ia.ca
api.ia.ca
ia-cem.accp.secureweb.inalco.com
www.inalco.com
fs41.inalco.com
*.inalco.com
webmail.ia.ca
fs41.inalco.com
poupon.inalco.com
accp.api.ia.ca
secure2.inalco.com
imageserver.secureweb.inalco.com
imageserver.secureweb.inalco.com
iagtools.inalco.com
*.secureweb.inalco.com
*.intg.secureweb.ia.ca
imageserver.secureweb.inalco.com
fs01.inalco.com
secure.inalco.com
poupon.inalco.com
*.external.inalco.com
secure2.inalco.com
fr.wiki-crm.kronos-web.com
login.service.dealers.inalco.com
AWSSOIA.inalco.com
webadmin.inalco.com
imageserver.secureweb.inalco.com
rave01.inalco.com
www.inalco.com
accp.api.inalco.com
www.inalco.com
ia-cem.secureweb.inalco.com
fs01.inalco.com
stmartin.inalco.com
inalco.com
poupon.inalco.com
webmail.ia.ca
statss.inalco.com
secure.inalco.com
inalco.com
fs01.inalco.com
fr.wiki-crm.kronos-web.com
we.secureweb.inalco.com
iagtools.inalco.com
extranet.inalco.com
www.inalco.com
inalco.com
inalco.com
www.inalco.com
fnct.api.inalco.com
novus.inalco.com
bambin.inalco.com
test.domaine2.secureweb.inalco.com
proxy.accp.secureweb.inalco.com
www.inalco.com
www.inalco.com
poupon.inalco.com
ia-cem.accp.secureweb.inalco.com
imageserver.secureweb.inalco.com
*.secureweb.inalco.com
bambin.inalco.com
inalco.com
fs41.inalco.com
proxy.secureweb.inalco.com
fr.wiki-crm.kronos-web.com
imageserver.secureweb.accp.ia.iafg.net
*.accp.webrequests.inalco.com
*.webrequests.inalco.com
IAGTOOLS.inalco.com
imageserver.secureweb.inalco.com
*.inalco.com
webmail.ia.ca
proxy.intg.secureweb.inalco.com
*.secureweb.inalco.com
www.inalco.com
securefonc.inalco.com
webmail.inalco.com
rave01.inalco.com
poupon.inalco.com
ei.secureweb.inalco.com
intg.api.inalco.com
imageserver.secureweb.inalco.com
inalco.com
iamobile.inalco.com
fr.wiki-crm.kronos-web.com
www.inalco.com
gestionclients.intg.inalco.com
inalco.com
poupon.inalco.com
www.inalco.com
inalco.com
we.secureweb.inalco.com
inalco.com
www.iaretirement.inalco.com
imageserver.secureweb.accp.ia.iafg.net
we.intg.secureweb.inalco.com
imageserver.secureweb.inalco.com
bambin.inalco.com
poupon.inalco.com
*.intg.secureweb.ia.ca
api.ia.ca
ia-cem.accp.secureweb.inalco.com
www.inalco.com
fs41.inalco.com
*.inalco.com
webmail.ia.ca
fs41.inalco.com
poupon.inalco.com
accp.api.ia.ca
secure2.inalco.com
imageserver.secureweb.inalco.com
imageserver.secureweb.inalco.com
iagtools.inalco.com
*.secureweb.inalco.com
*.intg.secureweb.ia.ca
imageserver.secureweb.inalco.com
fs01.inalco.com
secure.inalco.com
poupon.inalco.com
*.external.inalco.com
secure2.inalco.com
fr.wiki-crm.kronos-web.com
login.service.dealers.inalco.com
AWSSOIA.inalco.com
webadmin.inalco.com
imageserver.secureweb.inalco.com
rave01.inalco.com
www.inalco.com
accp.api.inalco.com
www.inalco.com
ia-cem.secureweb.inalco.com
fs01.inalco.com
stmartin.inalco.com
inalco.com
poupon.inalco.com
webmail.ia.ca
statss.inalco.com
secure.inalco.com
inalco.com
fs01.inalco.com
fr.wiki-crm.kronos-web.com
we.secureweb.inalco.com
iagtools.inalco.com
extranet.inalco.com
www.inalco.com
inalco.com
inalco.com
www.inalco.com
fnct.api.inalco.com
novus.inalco.com
bambin.inalco.com
test.domaine2.secureweb.inalco.com
proxy.accp.secureweb.inalco.com
www.inalco.com
www.inalco.com
poupon.inalco.com
ia-cem.accp.secureweb.inalco.com
imageserver.secureweb.inalco.com
*.secureweb.inalco.com
bambin.inalco.com
inalco.com
fs41.inalco.com
proxy.secureweb.inalco.com
fr.wiki-crm.kronos-web.com
imageserver.secureweb.accp.ia.iafg.net
*.accp.webrequests.inalco.com
*.webrequests.inalco.com
IAGTOOLS.inalco.com
imageserver.secureweb.inalco.com
*.inalco.com
webmail.ia.ca
proxy.intg.secureweb.inalco.com
*.secureweb.inalco.com
Certificate
The complete raw certificate details for ia-cem.secureweb.inalco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgIQfV0A+3lZGwLbasH9Q7t8ijANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDAxMTYxNDUwNTJaFw0yNTAyMTYxNDUwNTFaMIGZMQswCQYDVQQGEwJDQTEPMA0G A1UECBMGUXVlYmVjMQ8wDQYDVQQHEwZRdWViZWMxQjBABgNVBAoTOUluZHVzdHJp YWwgQWxsaWFuY2UgSW5zdXJhbmNlIGFuZCBGaW5hbmNpYWwgU2VydmljZXMgSW5j LjEkMCIGA1UEAxMbaWEtY2VtLnNlY3VyZXdlYi5pbmFsY28uY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4aZiZBp2cwcHDEoOBI0OyppV1XT9W7HR fP/nN0Psfe6VovXfBPnBgq/TDN7ibsNChpQ4VMq+EIirAOZ1InBPNaBjTYLiFB8T Cs6bmuA9vfU3bFGDOcZYvb1yUi6zuHo/dRNKMA7NEFfICF7syx5kDbF0Pe2RGUER 3iWUp0ZlUHeu19Hg5wx8C5zzlzoqNMUasCpka90//u84PggFAMhFfB5kjpGgx7y9 B9qcLgQR6EYXFivHJOjPIwyIGxjweRTQWxspbXzj/iDYjF+HSxoHQTQ3avhIIExQ VFAJh6BmnW8+AoJ7SJfZymqwnGAylwMMs7/PB1BOR7CmrUq/S2x0NwIDAQABo4IB kzCCAY8wDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUbIKHhOQO/8vjzRWaUPZ6G0Tx h4cwHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3zX+nYMYKTL8waAYIKwYBBQUHAQEE XDBaMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAzBggrBgEF BQcwAoYnaHR0cDovL2FpYS5lbnRydXN0Lm5ldC9sMWstY2hhaW4yNTYuY2VyMDMG A1UdHwQsMCowKKAmoCSGImh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxay5j cmwwRwYDVR0RBEAwPoIbaWEtY2VtLnNlY3VyZXdlYi5pbmFsY28uY29tgh93d3cu aWEtY2VtLnNlY3VyZXdlYi5pbmFsY28uY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwEwYDVR0gBAwwCjAIBgZngQwBAgIw EwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAMc/l2zoc0/2 A8gZzAbOSuW9XTz/CXZnhGOP1PJROMZXf36+Akkxp7DGsVvvuxzZxt++WfY43lQw A+/2TI8fzevac4vy+7LhHRfWNRkdM0Vs6wbEpnXWocYucOcUdxk41zv6bWDGcJ9e v48q7CEY5CL34+yJ01VMS3W+7FlY39fPQp4kjoL13UtF+F5t5nrcHX1qfeh0CyFQ Uzgl0vYlXrmgGJqASYKQO6b7UGR/P/qyN+iMz5/fIARFWkmvfmdeWTp7RjZYKO8m f0q+QLEed0g61gcJRkrsE4PLbhLSgSZtaZweLBCrRPIMGxSAloLwTXZJ+Xa5CceC j+bznZXd+8c= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4aZiZBp2cwcHDEoOBI0O yppV1XT9W7HRfP/nN0Psfe6VovXfBPnBgq/TDN7ibsNChpQ4VMq+EIirAOZ1InBP NaBjTYLiFB8TCs6bmuA9vfU3bFGDOcZYvb1yUi6zuHo/dRNKMA7NEFfICF7syx5k DbF0Pe2RGUER3iWUp0ZlUHeu19Hg5wx8C5zzlzoqNMUasCpka90//u84PggFAMhF fB5kjpGgx7y9B9qcLgQR6EYXFivHJOjPIwyIGxjweRTQWxspbXzj/iDYjF+HSxoH QTQ3avhIIExQVFAJh6BmnW8+AoJ7SJfZymqwnGAylwMMs7/PB1BOR7CmrUq/S2x0 NwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 166636403004782422305705598348624100490 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-16 14:50:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-16 14:50:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Quebec' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Quebec' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Industrial Alliance Insurance and Financial Services Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ia-cem.secureweb.inalco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28485665793335720718884946380771718820251248479352162652597993395471648026329733655030174504804548821946032227307762915511848724410647302103704270929542669896582435602140056903376370412959768898992757454356128782418476802779689023364802451823136235650905194579930012808165334952727653351933705455760850037776316848263079107629167474645902518172070600255570192731693879852734913229318827710012773281601861386137779869641531741094731931816741696737985482227132867144977337580252356973615131425921207132369613196420536867711286185733051557365422212950400641767521741350059188302351846500679970169373963392679329980511287 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6c828784e40effcbe3cd159a50f67a1b44f18787 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ia-cem.secureweb.inalco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ia-cem.secureweb.inalco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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