shop.bizharvest.com
Issued by Starfield Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number d0:69:ee:0d:54:9b:a8:57 was issued on by Starfield Technologies, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
Certificate Subject
CN=shop.bizharvest.com
Starfield Technologies, Inc.
Organization:
Starfield Technologies, Inc.
Organization unit: http://certs.starfieldtech.com/repository/
Organization unit: http://certs.starfieldtech.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): d0:69:ee:0d:54:9b:a8:57Serial Number (int): 15017796173465102423
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: b3:15:3b:18:ea:36:7f:80:78:4c:6a:1d:cc:7a:cb:7e:c5:15:9d:dd
AuthorityKeyId: 25:45:81:68:50:26:38:3d:3b:2d:2c:be:cd:6a:d9:b6:3d:b3:66:63
Fingerprint (sha1): 04:c2:e0:29:91:be:3a:45:bd:95:91:04:e9:5e:0b:4d:fb:ee:94:33
Fingerprint (sha256): 50:13:9c:ac:55:e2:5c:7c:db:09:91:b2:77:00:c1:21:bf:b6:21:48:27:71:96:b2:d2:d1:fc:bf:7b:b1:e3:3e
Issuing Certificate URL: http://certificates.starfieldtech.com/repository/sfig2.crt
Revocation information
OCSP Server: http://ocsp.starfieldtech.com/CRL Distribution Point: http://crl.starfieldtech.com/sfig2s1-655.crl
Check the revocation status for certificate shop.bizharvest.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shop.bizharvest.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shop.bizharvest.com
Other certificates including the domain name bizharvest.com
(limited to 100 certificates)
katescrazycakes.com
bizharvest.com
apistatus.returnpath.com
natebuie.com
apistatus.returnpath.com
apistatus.returnpath.com
orsd-static.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
andrei.sterda.com
natebuie.com
krautburger.com
email.bizharvest.com
andrei.sterda.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
illinoishereford.com
email.bizharvest.com
runwindsorco.com
status.anywhere365.io
apistatus.returnpath.com
andrei.sterda.com
apistatus.returnpath.com
*.s30.orsd.biz
apistatus.returnpath.com
natebuie.com
madscouse.com
apistatus.returnpath.com
apistatus.returnpath.com
andrei.sterda.com
apistatus.returnpath.com
apistatus.returnpath.com
status.anywhere365.io
wildcatcattle.com
xfeproducts.com
fortress.today
apistatus.returnpath.com
krautburger.com
status.bizharvest.com
apistatus.returnpath.com
andrei.sterda.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
bizharvest.com
apistatus.returnpath.com
andrei.sterda.com
apistatus.returnpath.com
coloradofarmshow.com
bizharvest.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
cnwsidingandwindows.com
apistatus.returnpath.com
fultonranch.com
apistatus.returnpath.com
katescrazycakes.com
katescrazycakes.com
katescrazycakes.com
andrei.sterda.com
andrei.sterda.com
status.anywhere365.io
fortress.today
apistatus.returnpath.com
andrei.sterda.com
madscouse.com
natebuie.com
apistatus.returnpath.com
fortress.today
andrei.sterda.com
krautburger.com
fortress.today
apistatus.returnpath.com
illinoishereford.com
apistatus.returnpath.com
bizharvest.com
shop.bizharvest.com
apistatus.returnpath.com
coloradofarmshow.com
status.bizharvest.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
bizharvest.com
apistatus.returnpath.com
xfeproducts.com
katescrazycakes.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
status.bizharvest.com
apistatus.returnpath.com
apistatus.returnpath.com
natebuie.com
theanimalambulance.com
bizharvest.com
apistatus.returnpath.com
natebuie.com
apistatus.returnpath.com
apistatus.returnpath.com
orsd-static.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
andrei.sterda.com
natebuie.com
krautburger.com
email.bizharvest.com
andrei.sterda.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
illinoishereford.com
email.bizharvest.com
runwindsorco.com
status.anywhere365.io
apistatus.returnpath.com
andrei.sterda.com
apistatus.returnpath.com
*.s30.orsd.biz
apistatus.returnpath.com
natebuie.com
madscouse.com
apistatus.returnpath.com
apistatus.returnpath.com
andrei.sterda.com
apistatus.returnpath.com
apistatus.returnpath.com
status.anywhere365.io
wildcatcattle.com
xfeproducts.com
fortress.today
apistatus.returnpath.com
krautburger.com
status.bizharvest.com
apistatus.returnpath.com
andrei.sterda.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
bizharvest.com
apistatus.returnpath.com
andrei.sterda.com
apistatus.returnpath.com
coloradofarmshow.com
bizharvest.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
cnwsidingandwindows.com
apistatus.returnpath.com
fultonranch.com
apistatus.returnpath.com
katescrazycakes.com
katescrazycakes.com
katescrazycakes.com
andrei.sterda.com
andrei.sterda.com
status.anywhere365.io
fortress.today
apistatus.returnpath.com
andrei.sterda.com
madscouse.com
natebuie.com
apistatus.returnpath.com
fortress.today
andrei.sterda.com
krautburger.com
fortress.today
apistatus.returnpath.com
illinoishereford.com
apistatus.returnpath.com
bizharvest.com
shop.bizharvest.com
apistatus.returnpath.com
coloradofarmshow.com
status.bizharvest.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
bizharvest.com
apistatus.returnpath.com
xfeproducts.com
katescrazycakes.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
apistatus.returnpath.com
status.bizharvest.com
apistatus.returnpath.com
apistatus.returnpath.com
natebuie.com
theanimalambulance.com
Certificate
The complete raw certificate details for shop.bizharvest.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIJANBp7g1Um6hXMA0GCSqGSIb3DQEBCwUAMIHGMQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEl MCMGA1UEChMcU3RhcmZpZWxkIFRlY2hub2xvZ2llcywgSW5jLjEzMDEGA1UECxMq aHR0cDovL2NlcnRzLnN0YXJmaWVsZHRlY2guY29tL3JlcG9zaXRvcnkvMTQwMgYD VQQDEytTdGFyZmllbGQgU2VjdXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcy MB4XDTIzMTIxOTA1MDgwMloXDTI1MDExOTA1MDgwMlowHjEcMBoGA1UEAxMTc2hv cC5iaXpoYXJ2ZXN0LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANb2ppOWlux3SaZULvbgEQWbkwsJp40TF2Z74s60ULJmko1fxdQ9RBXFsCesFB+G TLFcj10h9b+xEDrnKQQhpJZxOVrdPCFuaKJ8Za2ocKukBR1movao51qYIpJ4iq4H paXfgUAPKGkH/PZOonCn/TEUp6Gxla2syMs0nOHN3QC0HJV9VxNF6L2SC3T5RLcb 4SRs9xe84udd0NH7Vt6Hqrfa9+g7AdOnOOvX7WfiBJarMJNJrhLe+yZqmo7y4JJu YFO5PT9InOJZBbVsuS+JB1fjQJYhEBOgtHgIkNu1GphgVcSe9NAfpn41753qzl8X nv+sFIuNXxDHhwpL4lwFrh0CAwEAAaOCAd8wggHbMAwGA1UdEwEB/wQCMAAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA9BgNV HR8ENjA0MDKgMKAuhixodHRwOi8vY3JsLnN0YXJmaWVsZHRlY2guY29tL3NmaWcy czEtNjU1LmNybDBjBgNVHSAEXDBaME4GC2CGSAGG/W4BBxcBMD8wPQYIKwYBBQUH AgEWMWh0dHA6Ly9jZXJ0aWZpY2F0ZXMuc3RhcmZpZWxkdGVjaC5jb20vcmVwb3Np dG9yeS8wCAYGZ4EMAQIBMIGCBggrBgEFBQcBAQR2MHQwKgYIKwYBBQUHMAGGHmh0 dHA6Ly9vY3NwLnN0YXJmaWVsZHRlY2guY29tLzBGBggrBgEFBQcwAoY6aHR0cDov L2NlcnRpZmljYXRlcy5zdGFyZmllbGR0ZWNoLmNvbS9yZXBvc2l0b3J5L3NmaWcy LmNydDAfBgNVHSMEGDAWgBQlRYFoUCY4PTstLL7Natm2PbNmYzAeBgNVHREEFzAV ghNzaG9wLmJpemhhcnZlc3QuY29tMB0GA1UdDgQWBBSzFTsY6jZ/gHhMah3Mest+ xRWd3TATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqnfM 9wrvt3wKjB18IiDYNk13WYCTol5itdMF72+JjU2qjPRtQsiAZbtIWNe5rUq+qgYZ j41Qz5xiVYc1u/CfeUX6yRs+vumSo/rSJDhU0oBZAPL5jNW1g5Q28bqEUwDBnJ2a dm6fdszRgYn3VToY+kD0NB7v1E18ZXvnU6QOQJWKTsQCoesfE8cjOA9hRqUXENnP oePNrpgRcdebaoIyayKBCr1Je3G2SRX94uO5cT5vnSBUeFLUIj895xBTrjb62r+x CZmLokSlwpOUhQQ+ogMatDG1kVdNk64svcYoI2AZIdwpI72zk3HmuuiEPlSyN4f5 XIl2qtj22WQZGrtmtg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vamk5aW7HdJplQu9uAR BZuTCwmnjRMXZnvizrRQsmaSjV/F1D1EFcWwJ6wUH4ZMsVyPXSH1v7EQOucpBCGk lnE5Wt08IW5oonxlrahwq6QFHWai9qjnWpgikniKrgelpd+BQA8oaQf89k6icKf9 MRSnobGVrazIyzSc4c3dALQclX1XE0XovZILdPlEtxvhJGz3F7zi513Q0ftW3oeq t9r36DsB06c469ftZ+IElqswk0muEt77JmqajvLgkm5gU7k9P0ic4lkFtWy5L4kH V+NAliEQE6C0eAiQ27UamGBVxJ700B+mfjXvnerOXxee/6wUi41fEMeHCkviXAWu HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15017796173465102423 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Technologies, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.starfieldtech.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-19 05:08:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-19 05:08:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shop.bizharvest.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27136625250874983763461047991558254761114983733943472406444761789690778238087974785500068507634179911171170760859192031362974254146550603852157357859408057380175925330252046098763580731329218716934890587614812314086923486082644636434650807663438707537938769277155268615044417364193248394197453895779115898807022186063550656087892675192712397853207775926986811104176496020509483570181057015523961618087115994788806955956651161641218693000642089153965813942984961448019747053031835318776755787769736588365673711507994262452072653557401070976139821955527797417134153301976641243507758539598063380439991778709615642258973 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.starfieldtech.com/sfig2s1-655.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114414.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.starfieldtech.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.starfieldtech.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.starfieldtech.com/repository/sfig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 254581685026383d3b2d2cbecd6ad9b63db36663 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.bizharvest.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b3153b18ea367f80784c6a1dcc7acb7ec5159ddd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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