*.alltrails.com
Issued by COMODO RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number 67:0e:4a:7e:08:0f:fd:b8:93:96:d1:fd:97:89:25:4d was issued on by COMODO CA Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.alltrails.com,OU=Domain Control Validated+OU=PositiveSSL Wildcard
COMODO CA Limited
Organization:
COMODO CA Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 67:0e:4a:7e:08:0f:fd:b8:93:96:d1:fd:97:89:25:4dSerial Number (int): 136984686605420181646230437068014167373
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 59:01:ae:d4:16:81:11:fe:ce:ac:ae:7b:92:11:c2:35:a1:38:c9:70
AuthorityKeyId: 90:af:6a:3a:94:5a:0b:d8:90:ea:12:56:73:df:43:b4:3a:28:da:e7
Fingerprint (sha1): 4a:bc:d2:b2:74:70:53:ae:fa:c0:2b:98:aa:c9:2c:52:f4:37:d8:f8
Fingerprint (sha256): 4c:af:fb:cc:2d:fd:a2:33:c8:d9:a6:f5:35:d5:83:df:09:5b:53:f3:12:aa:8d:0a:ce:3c:6f:8f:df:9e:25:a1
Issuing Certificate URL: http://crt.comodoca.com/COMODORSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.comodoca.comCRL Distribution Point: http://crl.comodoca.com/COMODORSADomainValidationSecureServerCA.crl
Check the revocation status for certificate *.alltrails.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.alltrails.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.alltrails.com
alltrails.com
alltrails.com
Other certificates including the domain name alltrails.com
(limited to 100 certificates)
adminsupport.maxwellhealth.com
fluxx.totemapp.net
alltrails.com
orders.alltrails.com
orders.alltrails.com
support.alltrails.com
orders.alltrails.com
orders.alltrails.com
easymarkit.totemapp.net
www.distilnetworks.com
adminsupport.maxwellhealth.com
adminsupport.maxwellhealth.com
orders.alltrails.com
adamlyonsw.totemapp.net
adminsupport.maxwellhealth.com
*.alltrails.com
orders.alltrails.com
dojo-madness.totemapp.net
*.alltrails.com
*.alltrails.com
about.ksting.com
about.ksting.com
orders.alltrails.com
*.alltrails.com
support.alltrails.com
orders.alltrails.com
*.dev.alltrails.com
atlantis.dev.alltrails.com
lp.alltrails.com
about.ksting.com
*.alltrails.com
www.distilnetworks.com
adminsupport.maxwellhealth.com
adminsupport.maxwellhealth.com
about.ksting.com
fr.cdn-assets.alltrails.com
www.distilnetworks.com
adminsupport.maxwellhealth.com
orders.alltrails.com
adminsupport.maxwellhealth.com
press.getsundaily.com
console.alltrails.com
adminsupport.maxwellhealth.com
*.alltrails.com
alltrails.com
alltrails.com
about.ksting.com
*.alltrails.com
alltrails.com
www.distilnetworks.com
shop.alltrails.com
support.alltrails.com
dodo.totemapp.net
adminsupport.maxwellhealth.com
totem.alltrails.com
fluxx.totemapp.net
www.distilnetworks.com
press.swipecast.com
support.swimlane.com
geppetto-api.production.alltrails.com
adminsupport.maxwellhealth.com
picachocoffee.totemapp.net
bonusly.totemapp.net
intothewhoknows.totemapp.net
adminsupport.maxwellhealth.com
archmission.totemapp.net
about.ksting.com
support.swimlane.com
about.ksting.com
*.alltrails.com
press.getsundaily.com
archmission.totemapp.net
*.alltrails.com
about.ksting.com
orders.alltrails.com
britttest.totemapp.net
support.alltrails.com
www.distilnetworks.com
alltrails.com
adminsupport.maxwellhealth.com
fourpointsbar.totemapp.net
totem.alltrails.com
www.distilnetworks.com
*.webdev.alltrails.com
adminsupport.maxwellhealth.com
www.distilnetworks.com
about.ksting.com
*.alltrails.com
insitome.totemapp.net
orders.alltrails.com
beardedbastard.totemapp.net
journal.alltrails.com
shop.alltrails.com
cdn-assets-2.alltrails.com
shop.alltrails.com
orders.alltrails.com
fr.cdn-assets.alltrails.com
*.alltrails.com
*.dev.alltrails.com
orders.alltrails.com
fluxx.totemapp.net
alltrails.com
orders.alltrails.com
orders.alltrails.com
support.alltrails.com
orders.alltrails.com
orders.alltrails.com
easymarkit.totemapp.net
www.distilnetworks.com
adminsupport.maxwellhealth.com
adminsupport.maxwellhealth.com
orders.alltrails.com
adamlyonsw.totemapp.net
adminsupport.maxwellhealth.com
*.alltrails.com
orders.alltrails.com
dojo-madness.totemapp.net
*.alltrails.com
*.alltrails.com
about.ksting.com
about.ksting.com
orders.alltrails.com
*.alltrails.com
support.alltrails.com
orders.alltrails.com
*.dev.alltrails.com
atlantis.dev.alltrails.com
lp.alltrails.com
about.ksting.com
*.alltrails.com
www.distilnetworks.com
adminsupport.maxwellhealth.com
adminsupport.maxwellhealth.com
about.ksting.com
fr.cdn-assets.alltrails.com
www.distilnetworks.com
adminsupport.maxwellhealth.com
orders.alltrails.com
adminsupport.maxwellhealth.com
press.getsundaily.com
console.alltrails.com
adminsupport.maxwellhealth.com
*.alltrails.com
alltrails.com
alltrails.com
about.ksting.com
*.alltrails.com
alltrails.com
www.distilnetworks.com
shop.alltrails.com
support.alltrails.com
dodo.totemapp.net
adminsupport.maxwellhealth.com
totem.alltrails.com
fluxx.totemapp.net
www.distilnetworks.com
press.swipecast.com
support.swimlane.com
geppetto-api.production.alltrails.com
adminsupport.maxwellhealth.com
picachocoffee.totemapp.net
bonusly.totemapp.net
intothewhoknows.totemapp.net
adminsupport.maxwellhealth.com
archmission.totemapp.net
about.ksting.com
support.swimlane.com
about.ksting.com
*.alltrails.com
press.getsundaily.com
archmission.totemapp.net
*.alltrails.com
about.ksting.com
orders.alltrails.com
britttest.totemapp.net
support.alltrails.com
www.distilnetworks.com
alltrails.com
adminsupport.maxwellhealth.com
fourpointsbar.totemapp.net
totem.alltrails.com
www.distilnetworks.com
*.webdev.alltrails.com
adminsupport.maxwellhealth.com
www.distilnetworks.com
about.ksting.com
*.alltrails.com
insitome.totemapp.net
orders.alltrails.com
beardedbastard.totemapp.net
journal.alltrails.com
shop.alltrails.com
cdn-assets-2.alltrails.com
shop.alltrails.com
orders.alltrails.com
fr.cdn-assets.alltrails.com
*.alltrails.com
*.dev.alltrails.com
orders.alltrails.com
Certificate
The complete raw certificate details for *.alltrails.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIQZw5KfggP/biTltH9l4klTTANBgkqhkiG9w0BAQsFADCB kDELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxNjA0BgNV BAMTLUNPTU9ETyBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBD QTAeFw0xNTA1MjYwMDAwMDBaFw0xNzAyMjQyMzU5NTlaMFwxITAfBgNVBAsTGERv bWFpbiBDb250cm9sIFZhbGlkYXRlZDEdMBsGA1UECxMUUG9zaXRpdmVTU0wgV2ls ZGNhcmQxGDAWBgNVBAMUDyouYWxsdHJhaWxzLmNvbTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAL1nzuiLLRq5Q1zDz7FnPJwLamv2s6WnLuL7n4DapfoZ 3j/DSRNg4S8ZRf/wUYAauGHz88EN31JGw5mpitJIYZCESIv4yEeqsDdVk0fgQKiA EG/DZYmlvL5F+rQ7dSJshCSdP9tRfENVIMMx8bRk/ZDUO45jDvcaSYD9J+ShUT+z dDsl/36TO8WvNajaAauSW+kjoUu7zaz6PjlI1E/4877pg8O33lOBfS0kDOjFF13a uI66BW1d+/7JkgCWwYbCQ/mhyk/bX27LofnXsfs9JGtG/CxDiBGOIDWowahaAC+S 6G587sZn+e0/dBm5aTksHZEhTKYtzUj/USEc1sACh/cCAwEAAaOCAdswggHXMB8G A1UdIwQYMBaAFJCvajqUWgvYkOoSVnPfQ7Q6KNrnMB0GA1UdDgQWBBRZAa7UFoER /s6srnuSEcI1oTjJcDAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwTwYDVR0gBEgwRjA6BgsrBgEEAbIx AQICBzArMCkGCCsGAQUFBwIBFh1odHRwczovL3NlY3VyZS5jb21vZG8uY29tL0NQ UzAIBgZngQwBAgEwVAYDVR0fBE0wSzBJoEegRYZDaHR0cDovL2NybC5jb21vZG9j YS5jb20vQ09NT0RPUlNBRG9tYWluVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNy bDCBhQYIKwYBBQUHAQEEeTB3ME8GCCsGAQUFBzAChkNodHRwOi8vY3J0LmNvbW9k b2NhLmNvbS9DT01PRE9SU0FEb21haW5WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0Eu Y3J0MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5jb21vZG9jYS5jb20wKQYDVR0R BCIwIIIPKi5hbGx0cmFpbHMuY29tgg1hbGx0cmFpbHMuY29tMA0GCSqGSIb3DQEB CwUAA4IBAQBJMX7xmHzNPlvqFWPGQdfeAKKwvi5ZU2xQiYxJXWwJ7AHHYgBONyhx JYla38N0DG5QnKTe5tKvQNFaVG3TeYEPtAkEq9LM5KvS2CD/R+f0GzbqZPzVBzMo smGu7PqpRhQbvYRxMVP63mLAzil8MsLhEws3rrAtMS4zIW4pbK/kv6xH2Kp5Jwd+ 3XvFcSKWnQeyMt7gJjkEST+pJaL39laGrzgrJwRUOjhSHQ1+oWxM6Ok8ewm/Hkhx GQ8aLJX4HMafHMtgajRC8ko6UhsPfShLkSny0uUdCi2CS2KIEpEHE7hTeRhIeyIi AJIxdNGSaAvIs0foRZzDyrmsc34cCnoQ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWfO6IstGrlDXMPPsWc8 nAtqa/azpacu4vufgNql+hneP8NJE2DhLxlF//BRgBq4YfPzwQ3fUkbDmamK0khh kIRIi/jIR6qwN1WTR+BAqIAQb8NliaW8vkX6tDt1ImyEJJ0/21F8Q1UgwzHxtGT9 kNQ7jmMO9xpJgP0n5KFRP7N0OyX/fpM7xa81qNoBq5Jb6SOhS7vNrPo+OUjUT/jz vumDw7feU4F9LSQM6MUXXdq4jroFbV37/smSAJbBhsJD+aHKT9tfbsuh+dex+z0k a0b8LEOIEY4gNajBqFoAL5Lobnzuxmf57T90GblpOSwdkSFMpi3NSP9RIRzWwAKH 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 136984686605420181646230437068014167373 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-05-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PositiveSSL Wildcard' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.alltrails.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23910229387543196827199780062924533465557273770673178344375460607203523062925836953993218480851239205614829819526085449197870468644722612738976370491128839784735655710815235781600076462340811237565582264088561602390038877196362027994781877310113797012930694508447025091356119437525941654907491179985117321549197597825310459662945428797605478541676468991823390988640672824859026491822622593069940667489784722815229763203888530692398983429344859976505132107654786703126870390228180923062625133073062007439376552190181267524568663172790306051280844151399347838551643134705330161081606331554460163144625775827443215665143 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 90af6a3a945a0bd890ea125673df43b43a28dae7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5901aed4168111feceacae7b9211c235a138c970 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (77 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODORSADomainValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODORSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alltrails.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alltrails.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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