lg.core.heg.com
Issued by GlobalSign Domain Validation CA - SHA256 - G2
About this certificate
This digital certificate with serial number 06:e2:0c:63:47:93:d8:ae:75:95:cd:85 was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=lg.core.heg.com,OU=Domain Control Validated
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 06:e2:0c:63:47:93:d8:ae:75:95:cd:85Serial Number (int): 2130185793944138580898467205
Serial Number lenght: 91 bits, 12 octets
SubjectKeyId: 91:44:e8:aa:e1:a4:4b:93:84:8d:01:80:bc:5d:63:09:b1:8b:3b:aa
AuthorityKeyId: ea:4e:7c:d4:80:2d:e5:15:81:86:26:8c:82:6d:c0:98:a4:cf:97:0f
Fingerprint (sha1): d8:72:67:1d:cb:42:37:67:9d:f0:33:a8:e2:c4:aa:3f:49:f7:03:0e
Fingerprint (sha256): 4f:0e:bb:02:3b:fe:63:aa:ca:03:1a:f5:e5:b4:05:fd:fb:15:71:c5:31:25:16:23:bf:81:8c:a2:3d:21:e9:7b
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g2CRL Distribution Point: http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl
Check the revocation status for certificate lg.core.heg.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lg.core.heg.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lg.core.heg.com
Other certificates including the domain name heg.com
(limited to 100 certificates)
vpn.heg.com
haproxy-0.cgn.ba.heg.com
confluence.dev.heg.com
bamboo.dev.heg.com
bamboo.dev.heg.com
bamboo.heg.com
confluence.heg.com
tools.core.heg.com
elk0.cgn.ba.heg.com
legal.emeaint.godaddy.com
mirrors.uk.heg.com
www.heg.com
www.heg.com
portal.heg.com
mirrors.uk.heg.com
www.heg.com
cgn-dc02.ad.heg.com
wsus.heg.com
kafka-prod0.cgn.ba.heg.com
jira.heg.com
persis.staging.heg.com
calendar.heg.com
drive.heg.com
legal.emeaint.godaddy.com
www.heg.com
axonivy.heg.com
portal.sam.heg.com
owa.heg.com
exchange.heg.com
lg.core.heg.com
n3pwhegssdc002.ad.heg.com
observium.core.heg.com
lg.core.heg.com
cmpro.heg.com
privacyguard.heg.com
restapi.sam.heg.com
vpn.heg.com
*.o365.heg.com
jira.heg.com
lists.heg.com
tools.core.heg.com
vpn.heg.com
calender.heg.com
jira.dev.heg.com
*.loki.ba.heg.com
portal.heg.com
*.artifactory.ba.heg.com
jira.heg.com
www.heg.com
stash.heg.com
confluence.heg.com
stash.dev.heg.com
exchange.heg.com
vpn.heg.com
stash.heg.com
datastore.heg.com
legal.emeaint.godaddy.com
privacyguard.heg.com
*.media.heg.com
vpn.heg.com
privacyguard.heg.com
stash.dev.heg.com
*.mjolnir.ba.heg.com
confluence.heg.com
calendar.heg.com
*.thor.ba.heg.com
elk2.cgn.ba.heg.com
ldap.heg.com
paste.heg.com
timecontrol.heg.com
heg.com
stash.heg.com
privacyguard.heg.com
vault.ba.heg.com
cmpro.heg.com
confluence.heg.com
lg.core.heg.com
vault.ba.heg.com
www.heg.com
confluence.dev.heg.com
bamboo.heg.com
restapi.sam.heg.com
rsaf.sam.heg.com
observium.core.heg.com
owa.heg.com
blog.heg.com
calendar.heg.com
*.media.heg.com
lg.core.heg.com
finance-ax.heg.com
jira.heg.com
*.freya.ba.heg.com
legal.emeaint.godaddy.com
jabber.heg.com
sam.heg.com
*.odin.ba.heg.com
elk1.cgn.ba.heg.com
lg.core.heg.com
owa.heg.com
jira.dev.heg.com
haproxy-0.cgn.ba.heg.com
confluence.dev.heg.com
bamboo.dev.heg.com
bamboo.dev.heg.com
bamboo.heg.com
confluence.heg.com
tools.core.heg.com
elk0.cgn.ba.heg.com
legal.emeaint.godaddy.com
mirrors.uk.heg.com
www.heg.com
www.heg.com
portal.heg.com
mirrors.uk.heg.com
www.heg.com
cgn-dc02.ad.heg.com
wsus.heg.com
kafka-prod0.cgn.ba.heg.com
jira.heg.com
persis.staging.heg.com
calendar.heg.com
drive.heg.com
legal.emeaint.godaddy.com
www.heg.com
axonivy.heg.com
portal.sam.heg.com
owa.heg.com
exchange.heg.com
lg.core.heg.com
n3pwhegssdc002.ad.heg.com
observium.core.heg.com
lg.core.heg.com
cmpro.heg.com
privacyguard.heg.com
restapi.sam.heg.com
vpn.heg.com
*.o365.heg.com
jira.heg.com
lists.heg.com
tools.core.heg.com
vpn.heg.com
calender.heg.com
jira.dev.heg.com
*.loki.ba.heg.com
portal.heg.com
*.artifactory.ba.heg.com
jira.heg.com
www.heg.com
stash.heg.com
confluence.heg.com
stash.dev.heg.com
exchange.heg.com
vpn.heg.com
stash.heg.com
datastore.heg.com
legal.emeaint.godaddy.com
privacyguard.heg.com
*.media.heg.com
vpn.heg.com
privacyguard.heg.com
stash.dev.heg.com
*.mjolnir.ba.heg.com
confluence.heg.com
calendar.heg.com
*.thor.ba.heg.com
elk2.cgn.ba.heg.com
ldap.heg.com
paste.heg.com
timecontrol.heg.com
heg.com
stash.heg.com
privacyguard.heg.com
vault.ba.heg.com
cmpro.heg.com
confluence.heg.com
lg.core.heg.com
vault.ba.heg.com
www.heg.com
confluence.dev.heg.com
bamboo.heg.com
restapi.sam.heg.com
rsaf.sam.heg.com
observium.core.heg.com
owa.heg.com
blog.heg.com
calendar.heg.com
*.media.heg.com
lg.core.heg.com
finance-ax.heg.com
jira.heg.com
*.freya.ba.heg.com
legal.emeaint.godaddy.com
jabber.heg.com
sam.heg.com
*.odin.ba.heg.com
elk1.cgn.ba.heg.com
lg.core.heg.com
owa.heg.com
jira.dev.heg.com
Certificate
The complete raw certificate details for lg.core.heg.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGdTCCBV2gAwIBAgIMBuIMY0eT2K51lc2FMA0GCSqGSIb3DQEBCwUAMGAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTYwNAYDVQQDEy1H bG9iYWxTaWduIERvbWFpbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0gRzIwHhcN MTgwNzA1MDc0NjU1WhcNMjAwNzA1MDc0NjU1WjA9MSEwHwYDVQQLExhEb21haW4g Q29udHJvbCBWYWxpZGF0ZWQxGDAWBgNVBAMTD2xnLmNvcmUuaGVnLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL5IcGWIjzYRbtUxzgzfqc8Ch9m4 gEfBgNEtljJBeFDzmApWY9qzCxzjVtCgQ0aGmhdS7wEF66HpthFpk9sA3X2M0JTt 5JtYWz5e+j8k12OYCocx7h0FNyLZRm+N1bLQ/jjaR0kZdDI9JHh9wJnFYQFEED0i 3V/zyodYKaeHzF5TWHiTfIYlqf6ZCGCi6HRM6I/c+hx4uOG41Ww9IjKGQOuO3Gw9 JX14yW+tTF0xU4NyAXYP920ZcR24ab/cwDQo+uiQ1mThiTkf7/nsUVTBj8HM37Id tXZ68ogXteKHyLqGzCBSQQtmoNrlvLxMPpyB5rwG9pnfszVAh6Z6osr93fUCAwEA AaOCA1AwggNMMA4GA1UdDwEB/wQEAwIFoDCBlAYIKwYBBQUHAQEEgYcwgYQwRwYI KwYBBQUHMAKGO2h0dHA6Ly9zZWN1cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L2dz ZG9tYWludmFsc2hhMmcycjEuY3J0MDkGCCsGAQUFBzABhi1odHRwOi8vb2NzcDIu Z2xvYmFsc2lnbi5jb20vZ3Nkb21haW52YWxzaGEyZzIwVgYDVR0gBE8wTTBBBgkr BgEEAaAyAQowNDAyBggrBgEFBQcCARYmaHR0cHM6Ly93d3cuZ2xvYmFsc2lnbi5j b20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIBMAkGA1UdEwQCMAAwQwYDVR0fBDwwOjA4 oDagNIYyaHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9ncy9nc2RvbWFpbnZhbHNo YTJnMi5jcmwwGgYDVR0RBBMwEYIPbGcuY29yZS5oZWcuY29tMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUkUToquGkS5OEjQGAvF1jCbGL O6owHwYDVR0jBBgwFoAU6k581IAt5RWBhiaMgm3AmKTPlw8wggF+BgorBgEEAdZ5 AgQCBIIBbgSCAWoBaAB1AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MM AAABZGlokvUAAAQDAEYwRAIgR3Oc2tDYJzmC8Ltb2N3tBCAQqeZxFikivJfsyd3V OIUCIFs2Jkl0pGsDnfjebISSsRvNztyjhnVm8HC2aFQfT84QAHYApLkJkLQYWBSH uxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFkaWiUFQAABAMARzBFAiEAiqp7dsLB +9PW7beQWpoqhWipQfuJDsQ6OR5+VP6Kk58CIA+IQ13bTe8zBIP3mpdMUiA6cQwC UfLkBWyzBwprKm4LAHcAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMA AAFkaWiTRAAABAMASDBGAiEAznOXg5bZapPIha0tp5cvI5tOOCIwpZyKU27w8cuR bnMCIQCMy967FEpNO8tLpNGpaN0+P3NcE03yK2j1+xvlihgTozANBgkqhkiG9w0B AQsFAAOCAQEAhxSuiEDKHWCky70dky2T7rdYSTszQIyab/Ty1DZ8Dev3JS5ixkAq qo0vxcW/dihIdcXNvfBgmdB32Z/k9tWgj2A9DQMH8VUCxhiDqt51wNfCdBvQEP+8 0BzSLay04Oj0Mv9Zaf7x9RxJrmNPMfOwjgk8hL0gHkNOPycFIgqme8pNMmGZmfBX 0PughrjUWzVoS2C80tYxVb9KGCmqiQ2WTn2D11WcaHtjZ25SB8ZwERmoBfNyws8n R6RMVPFPw26gw4Du748jj/cJDF9OvsU+0RkPkXZNs+/ZEXlQknzmAsNxXt/gYrrH b9+5YjuxRvLKC3BTb2ZMnPnq0jwgsnV0qA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkhwZYiPNhFu1THODN+p zwKH2biAR8GA0S2WMkF4UPOYClZj2rMLHONW0KBDRoaaF1LvAQXroem2EWmT2wDd fYzQlO3km1hbPl76PyTXY5gKhzHuHQU3ItlGb43VstD+ONpHSRl0Mj0keH3AmcVh AUQQPSLdX/PKh1gpp4fMXlNYeJN8hiWp/pkIYKLodEzoj9z6HHi44bjVbD0iMoZA 647cbD0lfXjJb61MXTFTg3IBdg/3bRlxHbhpv9zANCj66JDWZOGJOR/v+exRVMGP wczfsh21dnryiBe14ofIuobMIFJBC2ag2uW8vEw+nIHmvAb2md+zNUCHpnqiyv3d 9QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2130185793944138580898467205 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-05 07:46:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-05 07:46:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lg.core.heg.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24020998970090651823619940220725220380200824061127200511168682893361893006047630925825095129724293361333889117413208524249768223061462166678984900726212002189869753976570716391891122035448261970141088498477229760854393707141433427475615280795904106082569503126314313500152843441452291119088520980263630409270413200488248982924165502543095043349182178941949674911802234736662853388742595967481002384508768631432663098284600586230971540301845279675554413714465565043241244062499055835906552274472236439973918138777531726222561215039157595372055222827931431077170232594077095318290630631303898359308403476414643524460021 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10 (globalsignDVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lg.core.heg.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9144e8aae1a44b93848d0180bc5d6309b18b3baa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ea4e7cd4802de5158186268c826dc098a4cf970f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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