dev.sonypictures.co.uk

- Sony Pictures Entertainment -

Issued by DigiCert TLS RSA SHA256 2020 CA1

About this certificate

This digital certificate with serial number 0d:de:35:f2:36:fa:b9:49:f7:3d:c2:b0:df:4b:1e:f1 was issued on by DigiCert Inc.

With 19 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Sony Pictures Entertainment

Organization: Sony Pictures Entertainment
State / Province: California
Locality: Culver City
Country: US

DigiCert Inc

Organization: DigiCert Inc
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0d:de:35:f2:36:fa:b9:49:f7:3d:c2:b0:df:4b:1e:f1
Serial Number (int): 18433748005738257059268977846525828849
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: ef:1e:1e:fc:fb:74:a8:bf:3a:df:55:79:30:42:16:9c:34:3c:40:f8
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4

Fingerprint (sha1): 08:68:93:3b:c5:85:ea:6e:b8:b9:62:05:2b:44:55:b9:92:61:70:19
Fingerprint (sha256): 50:0a:91:33:8e:83:df:2d:7c:24:3a:fd:a4:28:e5:a1:37:09:d7:72:39:93:9a:17:25:9f:f0:2c:52:7c:6a:d7

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1.crl

Check the revocation status for certificate dev.sonypictures.co.uk

19

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for dev.sonypictures.co.uk

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

dev.sonypictures.fr
stg.sonypictures.fr
dev.sonypictures.be
stg.sonypictures.be
dev.sonypictures.co.uk
stg.sonypictures.co.uk
dev.sonypictures.ca
stg.sonypictures.ca
dev.intl.sonypictures.com
stg.intl.sonypictures.com
dev2.sonypictures.es
stg.sonypictures.ie
dev.sonypictures.ie
dev.sonypictures.de
stg.sonypictures.de
dev.sonypictures.at
stg.sonypictures.at
dev.sonypictures.com.br
stg.sonypictures.com.br

Other certificates including the domain name sonypictures.co.uk

(limited to 100 certificates)
edge-micros1.sonypictures.com
edge-micros2.sonypictures.com
microsites.sonypictures.com
edge-micros2.sonypictures.com
edge-micros2.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
microsites.sonypictures.com
edge-micros1.sonypictures.com
flash.sonypictures.com
edge-micros1.sonypictures.com
flash.sonypictures.com
microsites.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
www.sonypictures.co.uk
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros2.sonypictures.com
microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros1.sonypictures.com
microsites.sonypictures.com
edge-micros1.sonypictures.com
stage-microsites.sonypictures.com
perc.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
microsites.sonypictures.com
microsites.sonypictures.com
www.sonypictures.es
microsites.sonypictures.com
stage-microsites.sonypictures.com
microsites.sonypictures.com
perc.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
edge-micros2.sonypictures.com
edge-micros1.sonypictures.com
edge-micros2.sonypictures.com
perc.sonypictures.com
stage-microsites.sonypictures.com
microsites.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
edge-micros2.sonypictures.com
stg.sonypictures.co.uk
edge-micros1.sonypictures.com
edge-micros2.sonypictures.com
edge-micros2.sonypictures.com
edge-micros1.sonypictures.com
microsites.sonypictures.com
microsites.sonypictures.com
perc.sonypictures.com
stage-microsites.sonypictures.com
flash.sonypictures.com
edge-micros2.sonypictures.com
edge-micros2.sonypictures.com
edge-micros1.sonypictures.com
microsites.sonypictures.com
edge-micros2.sonypictures.com
microsites.sonypictures.com
stage-perc.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros1.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros1.sonypictures.com
microsites.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros2.sonypictures.com
edge-micros1.sonypictures.com
stage-microsites.sonypictures.com
microsites.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros2.sonypictures.com
www.sonypictures.co.uk
microsites.sonypictures.com
edge-affiliates.cinesony.com
microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros2.sonypictures.com
edge-micros1.sonypictures.com
edge-affiliates.cinesony.com
microsites.sonypictures.com
edge-micros1.sonypictures.com
staging.cinesony.com
stage-microsites.sonypictures.com
microsites.sonypictures.com

Certificate

The complete raw certificate details for dev.sonypictures.co.uk in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIG+DCCBeCgAwIBAgIQDd418jb6uUn3PcKw30se8TANBgkqhkiG9w0BAQsFADBP
MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE
aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMTA2MDgwMDAwMDBa
Fw0yMjA2MTMyMzU5NTlaMH8xCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9y
bmlhMRQwEgYDVQQHEwtDdWx2ZXIgQ2l0eTEkMCIGA1UEChMbU29ueSBQaWN0dXJl
cyBFbnRlcnRhaW5tZW50MR8wHQYDVQQDExZkZXYuc29ueXBpY3R1cmVzLmNvLnVr
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwshSvZyBiCUIC/j526GD
+fmWvgZTTWeXfvItrEO/zymSszBKtVXysh3DWI+dGVlQkbJtgBv7+3Fw7lj3TDIN
PvOnhp9WV1Y9qrHet9FN1xnNzR4Q2Skauk+O9cs4O4pk5EAqLpE+qj2wTZhhPZAK
IWwbxO307Fhp8ZejjhH2+BnmefLSK7tjAQwcPRUFyelgUYw9fRmWBDnzDNWHdb7M
y/OCNNdd8qRwO8kCB7ELt8j1In5V6xX8Eqgs7ucl2dsJdFcBxMwZEJH4w9xRas1O
Wp7RCdb1RGt2HW+0720GMuHXwLsHsT3Z8fz6EvrbL+XURJjwLGIXxW1C2bdjryAW
CwIDAQABo4IDnjCCA5owHwYDVR0jBBgwFoAUt2ui6qiqhIx56rTaD5iyxZV2ufQw
HQYDVR0OBBYEFO8eHvz7dKi/Ot9VeTBCFpw0PED4MIIBtwYDVR0RBIIBrjCCAaqC
E2Rldi5zb255cGljdHVyZXMuZnKCE3N0Zy5zb255cGljdHVyZXMuZnKCE2Rldi5z
b255cGljdHVyZXMuYmWCE3N0Zy5zb255cGljdHVyZXMuYmWCFmRldi5zb255cGlj
dHVyZXMuY28udWuCFnN0Zy5zb255cGljdHVyZXMuY28udWuCE2Rldi5zb255cGlj
dHVyZXMuY2GCE3N0Zy5zb255cGljdHVyZXMuY2GCGWRldi5pbnRsLnNvbnlwaWN0
dXJlcy5jb22CGXN0Zy5pbnRsLnNvbnlwaWN0dXJlcy5jb22CFGRldjIuc29ueXBp
Y3R1cmVzLmVzghNzdGcuc29ueXBpY3R1cmVzLmllghNkZXYuc29ueXBpY3R1cmVz
LmllghNkZXYuc29ueXBpY3R1cmVzLmRlghNzdGcuc29ueXBpY3R1cmVzLmRlghNk
ZXYuc29ueXBpY3R1cmVzLmF0ghNzdGcuc29ueXBpY3R1cmVzLmF0ghdkZXYuc29u
eXBpY3R1cmVzLmNvbS5icoIXc3RnLnNvbnlwaWN0dXJlcy5jb20uYnIwDgYDVR0P
AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBiwYDVR0f
BIGDMIGAMD6gPKA6hjhodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGlnaUNlcnRU
TFNSU0FTSEEyNTYyMDIwQ0ExLmNybDA+oDygOoY4aHR0cDovL2NybDQuZGlnaWNl
cnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS5jcmwwPgYDVR0gBDcw
NTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5j
b20vQ1BTMH0GCCsGAQUFBwEBBHEwbzAkBggrBgEFBQcwAYYYaHR0cDovL29jc3Au
ZGlnaWNlcnQuY29tMEcGCCsGAQUFBzAChjtodHRwOi8vY2FjZXJ0cy5kaWdpY2Vy
dC5jb20vRGlnaUNlcnRUTFNSU0FTSEEyNTYyMDIwQ0ExLmNydDAMBgNVHRMBAf8E
AjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBdLJiC
l/B1YKdxmOvX+T8963esuXlqmB/ZSoJOXcJNR8n59Enhy3wI1NOR4wMXf6+azola
ROxxoqFJBG07wZMVaam7uQ9dsIq1B7+80Ca3Ze2tC7tglJeQ257cgXy09/IPKZlR
fEGzZeDOOJirDy5BkrY4+iagkJqAlzADo8kk7q09j6mSZjOSFkOFTQc/Zvds1ggg
Sb7zADxEsP4ha3Gx8I2o90nyuWUxSMU2NVFWN8zO9cKuOZodJOGVHzZtCVANchND
JUuswGvhkoEcCSLk0ZwHmSaXOBRn+v2NB1Lt5HnHBk9mq/7cQGiWI25a09SnvJP7
fEEwvzBEwNf5MaCp
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwshSvZyBiCUIC/j526GD
+fmWvgZTTWeXfvItrEO/zymSszBKtVXysh3DWI+dGVlQkbJtgBv7+3Fw7lj3TDIN
PvOnhp9WV1Y9qrHet9FN1xnNzR4Q2Skauk+O9cs4O4pk5EAqLpE+qj2wTZhhPZAK
IWwbxO307Fhp8ZejjhH2+BnmefLSK7tjAQwcPRUFyelgUYw9fRmWBDnzDNWHdb7M
y/OCNNdd8qRwO8kCB7ELt8j1In5V6xX8Eqgs7ucl2dsJdFcBxMwZEJH4w9xRas1O
Wp7RCdb1RGt2HW+0720GMuHXwLsHsT3Z8fz6EvrbL+XURJjwLGIXxW1C2bdjryAW
CwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 18433748005738257059268977846525828849
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-06-08 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-13 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Culver City'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sony Pictures Entertainment'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dev.sonypictures.co.uk'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24589014217860435988531964900171246579245913202163890477768693070996872288279884891012774774639007637002569909232929526515318557925665433262082457897572849007939480299432698771041766703121807052016479180657773717508020467778539204326993011002093828847709951626737856177344830445732889745084737799409173423743652556663274417770506543928061616729880463897732032654488373933622159046885502102030702249301698904589868539085298833659766636902757320069327836106555741418377815812542538810109384115656769180272746025691545159539107285022348812975781730801795003192666785216479350076240202191541322482194683373151144644711947
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ef1e1efcfb74a8bf3adf55793042169c343c40f8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (430 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.sonypictures.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.sonypictures.fr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.sonypictures.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.sonypictures.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.sonypictures.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.sonypictures.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.sonypictures.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.sonypictures.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.intl.sonypictures.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.intl.sonypictures.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev2.sonypictures.es'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.sonypictures.ie'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.sonypictures.ie'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.sonypictures.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.sonypictures.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.sonypictures.at'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.sonypictures.at'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.sonypictures.com.br'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stg.sonypictures.com.br'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (131 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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