images.stopandshop.com
- Ahold USA -
Issued by Verizon Akamai SureServer CA G14-SHA1
About this certificate
This digital certificate with serial number 4a:96:aa:87:b3:3a:e7:36:a2:e9:10:e5:aa:25:62:5a:86:61:d9:83 was issued on by Verizon Enterprise Solutions.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- When the id-ad-caIssuers accessMethod is used, at least one instance SHOULD specify an accessLocation that is an HTTP or LDAP URI (RFC 5280: 4.2.2.1)
- Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)
Ahold USA
Organization:
Ahold USA
Organization unit: IT
Organization unit: IT
State / Province:
SC
Locality: Greenville
Country: US
Locality: Greenville
Country: US
Verizon Enterprise Solutions
Organization:
Verizon Enterprise Solutions
Organization unit: Cybertrust
Organization unit: Cybertrust
Locality:
Amsterdam
Country: NL
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 4a:96:aa:87:b3:3a:e7:36:a2:e9:10:e5:aa:25:62:5a:86:61:d9:83Serial Number (int): 425825284085709305861758009976270185106616998275
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: bc:62:af:20:16:10:92:4c:7c:3f:47:b5:f0:66:00:b1:c9:c9:d0:45
AuthorityKeyId: dd:6c:80:7c:ba:b5:32:17:a5:84:41:40:f0:d2:04:66:13:2f:a9:90
Fingerprint (sha1): 0f:d4:bc:f9:68:c7:37:51:d9:f1:d6:4d:05:97:d5:0f:66:a5:7b:9a
Fingerprint (sha256): 4f:f5:bf:89:26:a2:47:92:1e:06:99:84:1b:48:47:cb:c7:a4:fc:67:ef:90:da:81:7a:c7:2f:c1:78:d9:b2:79
Issuing Certificate URL: https://cacert.a.omniroot.com/vassg141.crt
Issuing Certificate URL: https://cacert.a.omniroot.com/vassg141.der
Revocation information
OCSP Server: http://vassg141.ocsp.omniroot.comCRL Distribution Point: http://vassg141.crl.omniroot.com/vassg141.crl
Check the revocation status for certificate images.stopandshop.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for images.stopandshop.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
images.stopandshop.com
Other certificates including the domain name stopandshop.com
(limited to 100 certificates)
pharmacy.stopandshop.com
coupons.stopandshop.com
answers-autozone.pagescdn.com
staging.stopandshop.com
circular.stopandshop.com
nonprd-api.pdl.stopandshop.com
recipecenter.stopandshop.com
san3.yext-cdn.com
images.stopandshop.com
pharmacy.stopandshop.com
stores.maxit-pawn.com
pharmacy.stopandshop.com
beta-preprod.stopandshop.com
recipecenter.stopandshop.com
ssl418162.cloudflaressl.com
locations.bannerbank.com
answers-autozone.pagescdn.com
circular.stopandshop.com
stopandshop.com
stopandshop.com
circular.stopandshop.com
mortgage.wf.com
locations.bannerbank.com
pharmacy.stopandshop.com
pharmacy.stopandshop.com
ssl418161.cloudflaressl.com
recipecenter.stopandshop.com
recipecenter.stopandshop.com
krispy-new-maps.krispy.com.pagescdn.com
stores.stopandshop.com
locations.seniorbridge.com
san3.yext-cdn.com
stopandshop.com
synergichealthcareers.yext-cdn.com
stores.stopandshop.com
images.stopandshop.com
www.stopandshop.com
ssl418161.cloudflaressl.com
staging.stopandshop.com
pharmacy.stopandshop.com
dd.stopandshop.com
locations.seniorbridge.com
recipecenter.stopandshop.com
dealers.poolguardusa.com
ssl418162.cloudflaressl.com
answers.ihacares.com.yext-cdn.com
circular.stopandshop.com
refer.stopandshop.com
stores.stopandshop.com
sni.cloudflaressl.com
synergichealthcareers.yext-cdn.com
circular.stopandshop.com
ssl418161.cloudflaressl.com
stores.torafuku.jp
stopandshop.com
stores.stopandshop.com
sit.peapod.com
images.stopandshop.com
store-events.louandgrey.com
api.pdl.stopandshop.com
san3.yext-cdn.com
www.farmersatlanta.com
beta.stopandshop.com
smartlabel.stopandshop.com
pharmacy.stopandshop.com
san3.yext-cdn.com
express.stopandshop.com
stores.stopandshop.com
pharmacy.stopandshop.com
ssl418163.cloudflaressl.com
ssl418163.cloudflaressl.com
circular.stopandshop.com
sni.cloudflaressl.com
stores.torafuku.jp
sni.cloudflaressl.com
stores.tenpura-tensei.jp
www.stopandshop.com
ssl418163.cloudflaressl.com
ssl418162.cloudflaressl.com
standorte.hansaton.at
san3.yext-cdn.com
stores.stopandshop.com
san3.yext-cdn.com
beta.stopandshop.com
ssl418162.cloudflaressl.com
nonprd-api.pdl.stopandshop.com
san3.yext-cdn.com
sni.cloudflaressl.com
www.stopandshop.com
stores.stopandshop.com
events.lifelinescreening.com
krispy-new-maps.krispy.com.pagescdn.com
sni.cloudflaressl.com
ssl418161.cloudflaressl.com
ssl418163.cloudflaressl.com
stores.stopandshop.com
ssl418163.cloudflaressl.com
www.farmersatlanta.com
answers.ihacares.com.yext-cdn.com
san3.yext-cdn.com
coupons.stopandshop.com
answers-autozone.pagescdn.com
staging.stopandshop.com
circular.stopandshop.com
nonprd-api.pdl.stopandshop.com
recipecenter.stopandshop.com
san3.yext-cdn.com
images.stopandshop.com
pharmacy.stopandshop.com
stores.maxit-pawn.com
pharmacy.stopandshop.com
beta-preprod.stopandshop.com
recipecenter.stopandshop.com
ssl418162.cloudflaressl.com
locations.bannerbank.com
answers-autozone.pagescdn.com
circular.stopandshop.com
stopandshop.com
stopandshop.com
circular.stopandshop.com
mortgage.wf.com
locations.bannerbank.com
pharmacy.stopandshop.com
pharmacy.stopandshop.com
ssl418161.cloudflaressl.com
recipecenter.stopandshop.com
recipecenter.stopandshop.com
krispy-new-maps.krispy.com.pagescdn.com
stores.stopandshop.com
locations.seniorbridge.com
san3.yext-cdn.com
stopandshop.com
synergichealthcareers.yext-cdn.com
stores.stopandshop.com
images.stopandshop.com
www.stopandshop.com
ssl418161.cloudflaressl.com
staging.stopandshop.com
pharmacy.stopandshop.com
dd.stopandshop.com
locations.seniorbridge.com
recipecenter.stopandshop.com
dealers.poolguardusa.com
ssl418162.cloudflaressl.com
answers.ihacares.com.yext-cdn.com
circular.stopandshop.com
refer.stopandshop.com
stores.stopandshop.com
sni.cloudflaressl.com
synergichealthcareers.yext-cdn.com
circular.stopandshop.com
ssl418161.cloudflaressl.com
stores.torafuku.jp
stopandshop.com
stores.stopandshop.com
sit.peapod.com
images.stopandshop.com
store-events.louandgrey.com
api.pdl.stopandshop.com
san3.yext-cdn.com
www.farmersatlanta.com
beta.stopandshop.com
smartlabel.stopandshop.com
pharmacy.stopandshop.com
san3.yext-cdn.com
express.stopandshop.com
stores.stopandshop.com
pharmacy.stopandshop.com
ssl418163.cloudflaressl.com
ssl418163.cloudflaressl.com
circular.stopandshop.com
sni.cloudflaressl.com
stores.torafuku.jp
sni.cloudflaressl.com
stores.tenpura-tensei.jp
www.stopandshop.com
ssl418163.cloudflaressl.com
ssl418162.cloudflaressl.com
standorte.hansaton.at
san3.yext-cdn.com
stores.stopandshop.com
san3.yext-cdn.com
beta.stopandshop.com
ssl418162.cloudflaressl.com
nonprd-api.pdl.stopandshop.com
san3.yext-cdn.com
sni.cloudflaressl.com
www.stopandshop.com
stores.stopandshop.com
events.lifelinescreening.com
krispy-new-maps.krispy.com.pagescdn.com
sni.cloudflaressl.com
ssl418161.cloudflaressl.com
ssl418163.cloudflaressl.com
stores.stopandshop.com
ssl418163.cloudflaressl.com
www.farmersatlanta.com
answers.ihacares.com.yext-cdn.com
san3.yext-cdn.com
Certificate
The complete raw certificate details for images.stopandshop.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIUSpaqh7M65zai6RDlqiViWoZh2YMwDQYJKoZIhvcNAQEF BQAwgY0xCzAJBgNVBAYTAk5MMRIwEAYDVQQHEwlBbXN0ZXJkYW0xJTAjBgNVBAoT HFZlcml6b24gRW50ZXJwcmlzZSBTb2x1dGlvbnMxEzARBgNVBAsTCkN5YmVydHJ1 c3QxLjAsBgNVBAMTJVZlcml6b24gQWthbWFpIFN1cmVTZXJ2ZXIgQ0EgRzE0LVNI QTEwHhcNMTUxMTA3MjExMDA5WhcNMTYxMTA3MjExMDA4WjBxMQswCQYDVQQGEwJV UzELMAkGA1UECBMCU0MxEzARBgNVBAcTCkdyZWVudmlsbGUxEjAQBgNVBAoTCUFo b2xkIFVTQTELMAkGA1UECxMCSVQxHzAdBgNVBAMTFmltYWdlcy5zdG9wYW5kc2hv cC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7zxmx+EwKNo7t I6Xx2GTLtNtsI3xSsME5LlpqHM/JgyA179lef/BYsvizd2i7lNp0j6DwyNjixSui W+NCwmisEzA0eXLRmfU92sVBHIjU/jXK0w89Ljl9m16UQvCgeZgVoPmo4b8m+xhO Z2wJ277OYGPU9O4rDasZ9U45f2wKt83XxCfvUzPl96SQMVnLnHuInvdOrNvNaDiY l2YybZHjoD4FbiR6k2rf75b/XDb303sRl/zqLPT7zCnzWiE6HQ3chhle1HuaMRS+ AL90+cvDr/lzDFCFpbq/ihuMBCg+OijDEK/AZ8Gp4YDXd/O0IMH7PqYI+SCSErXa yLj1RYz7AgMBAAGjggHkMIIB4DAMBgNVHRMBAf8EAjAAMEwGA1UdIARFMEMwQQYJ KwYBBAGxPgEyMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vc2VjdXJlLm9tbmlyb290 LmNvbS9yZXBvc2l0b3J5MIGvBggrBgEFBQcBAQSBojCBnzAtBggrBgEFBQcwAYYh aHR0cDovL3Zhc3NnMTQxLm9jc3Aub21uaXJvb3QuY29tMDYGCCsGAQUFBzAChipo dHRwczovL2NhY2VydC5hLm9tbmlyb290LmNvbS92YXNzZzE0MS5jcnQwNgYIKwYB BQUHMAKGKmh0dHBzOi8vY2FjZXJ0LmEub21uaXJvb3QuY29tL3Zhc3NnMTQxLmRl cjAhBgNVHREEGjAYghZpbWFnZXMuc3RvcGFuZHNob3AuY29tMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAU 3WyAfLq1MhelhEFA8NIEZhMvqZAwPgYDVR0fBDcwNTAzoDGgL4YtaHR0cDovL3Zh c3NnMTQxLmNybC5vbW5pcm9vdC5jb20vdmFzc2cxNDEuY3JsMB0GA1UdDgQWBBS8 Yq8gFhCSTHw/R7XwZgCxycnQRTANBgkqhkiG9w0BAQUFAAOCAQEACC4CWsnSTClS KkTx9sl/7GyBUgVBFSbIwRqz757Oo6lcKMPcHvOGOrKSE6P7uyXrKiCXdnocsALv PI3CBg6LsEKIMy12ygM0CBKmRA7BDj2qcjxGWb0qpgD70LDb/jXDMBB6PbISpFyg KT5qSAZvAdLreUgsO0LMICTu9TXvgMUjH8k0IerLPuU3GaL2/C0RHHZMad2opHlr xKEsnSs6JZRT3+jpxG88feq57aOrAt5ElLbXBnawTgAsuXAWZ8MxsHoQdTgT7nwK RoZGOMhoqvHUrxrBo5fyTR2nOVZsf5yfPqlfpoxxgqzdN2VZ6/KnRWcMVOSsqK43 GYXLvAQHCw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu88ZsfhMCjaO7SOl8dhk y7TbbCN8UrDBOS5aahzPyYMgNe/ZXn/wWLL4s3dou5TadI+g8MjY4sUrolvjQsJo rBMwNHly0Zn1PdrFQRyI1P41ytMPPS45fZtelELwoHmYFaD5qOG/JvsYTmdsCdu+ zmBj1PTuKw2rGfVOOX9sCrfN18Qn71Mz5fekkDFZy5x7iJ73TqzbzWg4mJdmMm2R 46A+BW4kepNq3++W/1w299N7EZf86iz0+8wp81ohOh0N3IYZXtR7mjEUvgC/dPnL w6/5cwxQhaW6v4objAQoPjoowxCvwGfBqeGA13fztCDB+z6mCPkgkhK12si49UWM +wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 425825284085709305861758009976270185106616998275 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Verizon Enterprise Solutions' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cybertrust' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Verizon Akamai SureServer CA G14-SHA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-07 21:10:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-07 21:10:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greenville' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ahold USA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'images.stopandshop.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23708688028265681421306095904949915572325356981687469407276998345640154521988069646907351867983066306412388726971326023662107189316565288286995266594005957142586876823402724372856452731766931706902829839115609448813451354907666031188646391043347201242315551243567255960056081164503261595406481550363313247749202763621761073704447013842564255516307793634313796828655039525517156057639294214684478242381430569218410222139491606342074335410051100953352609288837538437273304635470502959108489805714907676814911123035196848294070480179002692944518572868912868027171697346602987947463480010435485914265444828553016301161723 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6334.1.50 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.omniroot.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (162 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://vassg141.ocsp.omniroot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'https://cacert.a.omniroot.com/vassg141.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'https://cacert.a.omniroot.com/vassg141.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.stopandshop.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName dd6c807cbab53217a5844140f0d20466132fa990 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://vassg141.crl.omniroot.com/vassg141.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bc62af201610924c7c3f47b5f06600b1c9c9d045 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00082e025ac9d24c29522a44f1f6c97fec6c815205411526c8c11ab3ef9ecea3a95c28c3dc1ef3863ab29213a3fbbb25eb2a2097767a1cb002ef3c8dc2060e8bb04288332d76ca03340812a6440ec10e3daa723c4659bd2aa600fbd0b0dbfe35c330107a3db212a45ca0293e6a48066f01d2eb79482c3b42cc2024eef535ef80c5231fc93421eacb3ee53719a2f6fc2d111c764c69dda8a4796bc4a12c9d2b3a259453dfe8e9c46f3c7deab9eda3ab02de4494b6d70676b04e002cb9701667c331b07a10753813ee7c0a46864638c868aaf1d4af1ac1a397f24d1da739566c7f9c9f3ea95fa68c7182acdd376559ebf2a745670c54e4aca8ae371985cbbc04070b