th-ipicsha.cnmc.org
- Children's National Medical Center -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 04:3d:37:e6:4c:28:66:53:35:56:f3:e0:42:0b:b9:51 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Children's National Medical Center
Organization:
Children's National Medical Center
Organization unit: IT
Organization unit: IT
State / Province:
DC
Locality: Washington
Country: US
Locality: Washington
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:3d:37:e6:4c:28:66:53:35:56:f3:e0:42:0b:b9:51Serial Number (int): 5634775870085568095137900819422886225
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 83:6d:b1:9b:d8:7e:7b:4b:ef:d1:f2:9f:cc:a0:37:b1:f3:cd:e4:12
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): cb:0a:3c:bf:05:4a:a1:1f:53:7a:db:54:18:3c:3f:42:11:13:a1:98
Fingerprint (sha256): 4f:76:39:19:2b:fa:53:6e:d0:13:84:f7:36:15:48:65:82:b1:d5:7b:b5:91:21:54:b5:b1:f9:1e:af:fd:55:3d
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate th-ipicsha.cnmc.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for th-ipicsha.cnmc.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
th-ipicsha.cnmc.org
Other certificates including the domain name cnmc.org
(limited to 100 certificates)
guest-p2dmz-wlc-01.cnmc.org
hda.cnmc.org
securelink.cnmc.org
pvistdi01.cnmc.org
beartunnel.cnmc.org
bearmail.cnmc.org
guest-p2-wlc-02.cnmc.org
guest-p2-wlc-03.cnmc.org
securelink.cnmc.org
archer.cnmc.org
smobile.cnmc.org
cucn.cnmc.org
smobile.cnmc.org
smobile.cnmc.org
cup.cnmc.org
vmobile.cnmc.org
meetingplace.cnmc.org
lifeimage.cnmc.org
expe2.cnmc.org
vmobile.cnmc.org
imp.cnmc.org
beartime.cnmc.org
bearresourcesfinren.cnmc.org
bearfin.cnmc.org
bearcloud.cnmc.org
bearbkuptunnel.cnmc.org
guest-c2-wlc-04.cnmc.org
AUTH.CNMC.ORG
LIFEIMAGETEST.CNMC.ORG
archer-qa.cnmc.org
hda.cnmc.org
smobile.cnmc.org
amobile.cnmc.org
pvadlds.cnmc.org
cnhsnet.cnmc.org
tvrlsolutions01.cnmc.org
Remote.cnmc.org
Remote.cnmc.org
bearresourcesfindev.cnmc.org
bearfin.cnmc.org
pvisepo01.cnmc.org
vmobile.cnmc.org
REMOTE.CNMC.ORG
deviceportal.cnmc.org
vdi.cnmc.org
guest-p2dmz-wlc-02.cnmc.org
deviceportal.cnmc.org
beartime.cnmc.org
VOIP.CNMC.ORG
guest-p2-wlc-01.cnmc.org
bearresourcesfindev.cnmc.org
expe.cnmc.org
tvrlsolutions01.cnmc.org
pvphmesapp.cnmc.org
beartime.cnmc.org
bearresourceshr.cnmc.org
bearcage.cnmc.org
IMP.CNMC.ORG
guest-c2-wlc-05.cnmc.org
VOIP.CNMC.ORG
amobile.cnmc.org
AUTH.CNMC.ORG
idm.cnmc.org
bearmail.childrensnational.org
lifeimage.cnmc.org
BearNet.cnmc.org
cucn.cnmc.org
echo.cnmc.org
meetingplace1.cnmc.org
remote.cnmc.org
CNMCVCS-E01.cnmc.org
cucn.cnmc.org
childrensmobile.cnmc.org
bearmail.cnmc.org
guest-p2-wlc-03.cnmc.org
PVJabExEg02.cnmc.org
LIFEIMAGETEST.CNMC.ORG
remote.cnmc.org
pvfdtableau.cnmc.org
bearhr.cnmc.org
cucm.cnmc.org
jabberexpc.cnmc.org
guest-p2dmz-wlc-02.cnmc.org
meetingplace1.cnmc.org
VDI.cnmc.org
Auth.cnmc.org
bearresourceshrdev.cnmc.org
infoedapp.cnmc.org
securelink.cnmc.org
remote.cnmc.org
guest-c2-wlc-04.cnmc.org
pvaadapt.cnmc.org
bearbox.cnmc.org
idm.cnmc.org
th-ipicsha.cnmc.org
PVRLIIS01.cnmc.org
guest-p2dmz-wlc-02.cnmc.org
brainlab.cnmc.org
childrensmobile.cnmc.org
PVSECRapid01.cnmc.org
hda.cnmc.org
securelink.cnmc.org
pvistdi01.cnmc.org
beartunnel.cnmc.org
bearmail.cnmc.org
guest-p2-wlc-02.cnmc.org
guest-p2-wlc-03.cnmc.org
securelink.cnmc.org
archer.cnmc.org
smobile.cnmc.org
cucn.cnmc.org
smobile.cnmc.org
smobile.cnmc.org
cup.cnmc.org
vmobile.cnmc.org
meetingplace.cnmc.org
lifeimage.cnmc.org
expe2.cnmc.org
vmobile.cnmc.org
imp.cnmc.org
beartime.cnmc.org
bearresourcesfinren.cnmc.org
bearfin.cnmc.org
bearcloud.cnmc.org
bearbkuptunnel.cnmc.org
guest-c2-wlc-04.cnmc.org
AUTH.CNMC.ORG
LIFEIMAGETEST.CNMC.ORG
archer-qa.cnmc.org
hda.cnmc.org
smobile.cnmc.org
amobile.cnmc.org
pvadlds.cnmc.org
cnhsnet.cnmc.org
tvrlsolutions01.cnmc.org
Remote.cnmc.org
Remote.cnmc.org
bearresourcesfindev.cnmc.org
bearfin.cnmc.org
pvisepo01.cnmc.org
vmobile.cnmc.org
REMOTE.CNMC.ORG
deviceportal.cnmc.org
vdi.cnmc.org
guest-p2dmz-wlc-02.cnmc.org
deviceportal.cnmc.org
beartime.cnmc.org
VOIP.CNMC.ORG
guest-p2-wlc-01.cnmc.org
bearresourcesfindev.cnmc.org
expe.cnmc.org
tvrlsolutions01.cnmc.org
pvphmesapp.cnmc.org
beartime.cnmc.org
bearresourceshr.cnmc.org
bearcage.cnmc.org
IMP.CNMC.ORG
guest-c2-wlc-05.cnmc.org
VOIP.CNMC.ORG
amobile.cnmc.org
AUTH.CNMC.ORG
idm.cnmc.org
bearmail.childrensnational.org
lifeimage.cnmc.org
BearNet.cnmc.org
cucn.cnmc.org
echo.cnmc.org
meetingplace1.cnmc.org
remote.cnmc.org
CNMCVCS-E01.cnmc.org
cucn.cnmc.org
childrensmobile.cnmc.org
bearmail.cnmc.org
guest-p2-wlc-03.cnmc.org
PVJabExEg02.cnmc.org
LIFEIMAGETEST.CNMC.ORG
remote.cnmc.org
pvfdtableau.cnmc.org
bearhr.cnmc.org
cucm.cnmc.org
jabberexpc.cnmc.org
guest-p2dmz-wlc-02.cnmc.org
meetingplace1.cnmc.org
VDI.cnmc.org
Auth.cnmc.org
bearresourceshrdev.cnmc.org
infoedapp.cnmc.org
securelink.cnmc.org
remote.cnmc.org
guest-c2-wlc-04.cnmc.org
pvaadapt.cnmc.org
bearbox.cnmc.org
idm.cnmc.org
th-ipicsha.cnmc.org
PVRLIIS01.cnmc.org
guest-p2dmz-wlc-02.cnmc.org
brainlab.cnmc.org
childrensmobile.cnmc.org
PVSECRapid01.cnmc.org
Certificate
The complete raw certificate details for th-ipicsha.cnmc.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgIQBD035kwoZlM1VvPgQgu5UTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwODIyMDAwMDAwWhcN MjAwODI2MTIwMDAwWjCBhzELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAkRDMRMwEQYD VQQHEwpXYXNoaW5ndG9uMSswKQYDVQQKEyJDaGlsZHJlbidzIE5hdGlvbmFsIE1l ZGljYWwgQ2VudGVyMQswCQYDVQQLEwJJVDEcMBoGA1UEAxMTdGgtaXBpY3NoYS5j bm1jLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANQXZC7QSDoK VcTsZxcdxcPsP5dJ9t+yOLwQ5LvTQHKzxzWMVsH2ERgE/6hugPH0h8lk1a4auuGP GsL2l0kmBszhFD7CVk1cNcJkM3KCbHTD6rCZQ9O4Jy2AU0TJ1lPE9UZ56Xez8z6e hB213J0drUluRPsMlW9FLlWpQME5Fb26kqTn8hbYi0XRAsPoNt99g4s7HoS3x0DF ekqtUsGZjQgbY811lNd5d32Rm9EFvkIvTLW+hoWO/NETiLoRljYWpMwJckM8bizu xKMOb9Lez8Q/XnmcH/JGEtbZ5f9LnNJoexZ6WOhE5TRtb55pwtLhsH0W+c6p6R1x HDblE2egdJMCAwEAAaOCAe8wggHrMB8GA1UdIwQYMBaAFA+AYRyCMWHVLyjnjUY4 tCzhxtniMB0GA1UdDgQWBBSDbbGb2H57S+/R8p/MoDex883kEjAeBgNVHREEFzAV ghN0aC1pcGljc2hhLmNubWMub3JnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDovL2Ny bDMuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwL6AtoCuGKWh0dHA6Ly9j cmw0LmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMEwGA1UdIARFMEMwNwYJ YIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNv bS9DUFMwCAYGZ4EMAQICMHwGCCsGAQUFBwEBBHAwbjAkBggrBgEFBQcwAYYYaHR0 cDovL29jc3AuZGlnaWNlcnQuY29tMEYGCCsGAQUFBzAChjpodHRwOi8vY2FjZXJ0 cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0EuY3J0MAwG A1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQAD ggEBAMUoCZkXWhiEv2ZPCpdattuUXJpnOfKIHvKm3gSjoZPPmv0aomywLM/Riqns Uai1aq0Grt/GywGkZrZwHIiuZsiJ2G02/KiVDlsM4xrIshsJBpWkziY0cMSXg1k3 coMjUw3SW8TrchmV5YAme8pOed23xp0xjIPGPhuGbyRBXMfsoVbqFvY4OTSVL3eO uGr0OeI0esBlQjSc7H0XTYhWsfi6qXELmNp/GoQqKadFbxfz5PFHuTNiRt0isLPj 4rsxMccOq+GX/bAbtJ8ud618uAuxEyXbRu5kZhcV/vfkCtTXGELbYyHSVED32Fc3 hce1cTmq/ZN1WPRYPF3j7ws0e6E= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BdkLtBIOgpVxOxnFx3F w+w/l0n237I4vBDku9NAcrPHNYxWwfYRGAT/qG6A8fSHyWTVrhq64Y8awvaXSSYG zOEUPsJWTVw1wmQzcoJsdMPqsJlD07gnLYBTRMnWU8T1Rnnpd7PzPp6EHbXcnR2t SW5E+wyVb0UuValAwTkVvbqSpOfyFtiLRdECw+g2332DizsehLfHQMV6Sq1SwZmN CBtjzXWU13l3fZGb0QW+Qi9Mtb6GhY780ROIuhGWNhakzAlyQzxuLO7Eow5v0t7P xD9eeZwf8kYS1tnl/0uc0mh7FnpY6ETlNG1vnmnC0uGwfRb5zqnpHXEcNuUTZ6B0 kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5634775870085568095137900819422886225 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-26 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Children's National Medical Center' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'th-ipicsha.cnmc.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26774055352126698540637586929542674413811485016901569594721063759394590529755219342527365256073306600939767753466450806233106217029583588018783288182066808790546740672949920134645080161436231553047191591493337737221465290627828101005022456444837788603888181558208771475576716825113349501488610376799717221426463465294706009971232734440866947540990091704879380011412374198916194482971595818598169309343801015153070215606110228500060102479816761941710533344696095209440776295418644644722170530514346049317482569031024662876885130668952948687706231808051854400980485740685367164904815736453967915236125966195118758196371 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 836db19bd87e7b4befd1f29fcca037b1f3cde412 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'th-ipicsha.cnmc.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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