*.apl.com
- American President Lines Ltd. -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0b:c4:f1:23:9a:94:19:97:ad:ae:df:46:46:23:05:8d was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
American President Lines Ltd.
Organization:
American President Lines Ltd.
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:c4:f1:23:9a:94:19:97:ad:ae:df:46:46:23:05:8dSerial Number (int): 15644089019446802259883560485381145997
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: dc:14:58:97:57:1e:d6:17:af:77:e9:1d:7b:66:28:87:41:bd:ca:88
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): a2:68:43:77:7e:47:00:b7:97:82:81:6f:d7:e1:19:cd:3e:2e:22:ad
Fingerprint (sha256): 50:47:26:7c:0c:0d:a2:32:cd:fb:6a:82:ee:ee:0c:fa:0f:55:f5:36:06:a6:08:69:45:a0:90:0e:65:38:21:16
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate *.apl.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.apl.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.apl.com
apl.com
apl.com
Other certificates including the domain name apl.com
(limited to 100 certificates)
www.quantil.com
iap.apl.com
agentvpn.apl.com
*.apl.com
www.apl.com
gem.apl.com
webmail.apl.com
cma-cgm.com
survey.apl.com
www.quantil.com
www.quantil.com
usvpn.apl.com
sip-service.apl.com
survey.apl.com
lift.apl.com
sip-service.apl.com
officewebapps-external.apl.com
officewebapps-external.apl.com
lift.apl.com
tariff.apl.com
survey.apl.com
interchange-stg.apl.com
lyncpool01.d1.ad.apl.com
*.apl.com
sip-service.apl.com
homeport.apl.com
homeport.apl.com
aplinfo.apl.com
sgvpn2.apl.com
www.apl.com
voyage.apl.com
www.quantil.com
info.apl.com
homeport8.apl.com
snxncexpecl01.apac.apl.com
interchange-stg.apl.com
survey.apl.com
identity.apl.com
aplweb.apl.com
homeport.apl.com
mobile.apl.com
interchange-int.apl.com
www.apl.com
gem.apl.com
www.quantil.com
aplinfo.apl.com
www.quantil.com
apl.com
rbitgem.apl.com
apl.com
*.apl.com
interchange.apl.com
lift.apl.com
fson.apl.com
tariff.apl.com
voyage.apl.com
*.apl.com
webmail.apl.com
www.apl.com
homeport.apl.com
snxncexpecl01.apac.apl.com
*.apl.com
*.apl.com
www.apl.com
www.apl.com
lift.apl.com
ubusiness.apl.com
interchange.apl.com
homeport.apl.com
www.apl.com
homeport.apl.com
rbitgem.apl.com
www.apl.com
www.quantil.com
www.apl.com
www.apl.com
www.apl.com
officewebapps-external.apl.com
iap.apl.com
www.apl.com
officewebapps-internal.apl.com
webmail.apl.com
www.quantil.com
cma-cgm.com
www.apl.com
www.apl.com
cf-tariff.apl.com
sgvpn.apl.com
cma-cgm.com
aplinfo.apl.com
ocspool1.d1.ad.apl.com
homeport.apl.com
*.apl.com
fson.apl.com
homeport.apl.com
gccvat.apl.com
agentvpn.apl.com
webmail.apl.com
iam.apl.com
*.apl.com
iap.apl.com
agentvpn.apl.com
*.apl.com
www.apl.com
gem.apl.com
webmail.apl.com
cma-cgm.com
survey.apl.com
www.quantil.com
www.quantil.com
usvpn.apl.com
sip-service.apl.com
survey.apl.com
lift.apl.com
sip-service.apl.com
officewebapps-external.apl.com
officewebapps-external.apl.com
lift.apl.com
tariff.apl.com
survey.apl.com
interchange-stg.apl.com
lyncpool01.d1.ad.apl.com
*.apl.com
sip-service.apl.com
homeport.apl.com
homeport.apl.com
aplinfo.apl.com
sgvpn2.apl.com
www.apl.com
voyage.apl.com
www.quantil.com
info.apl.com
homeport8.apl.com
snxncexpecl01.apac.apl.com
interchange-stg.apl.com
survey.apl.com
identity.apl.com
aplweb.apl.com
homeport.apl.com
mobile.apl.com
interchange-int.apl.com
www.apl.com
gem.apl.com
www.quantil.com
aplinfo.apl.com
www.quantil.com
apl.com
rbitgem.apl.com
apl.com
*.apl.com
interchange.apl.com
lift.apl.com
fson.apl.com
tariff.apl.com
voyage.apl.com
*.apl.com
webmail.apl.com
www.apl.com
homeport.apl.com
snxncexpecl01.apac.apl.com
*.apl.com
*.apl.com
www.apl.com
www.apl.com
lift.apl.com
ubusiness.apl.com
interchange.apl.com
homeport.apl.com
www.apl.com
homeport.apl.com
rbitgem.apl.com
www.apl.com
www.quantil.com
www.apl.com
www.apl.com
www.apl.com
officewebapps-external.apl.com
iap.apl.com
www.apl.com
officewebapps-internal.apl.com
webmail.apl.com
www.quantil.com
cma-cgm.com
www.apl.com
www.apl.com
cf-tariff.apl.com
sgvpn.apl.com
cma-cgm.com
aplinfo.apl.com
ocspool1.d1.ad.apl.com
homeport.apl.com
*.apl.com
fson.apl.com
homeport.apl.com
gccvat.apl.com
agentvpn.apl.com
webmail.apl.com
iam.apl.com
*.apl.com
Certificate
The complete raw certificate details for *.apl.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGJjCCBQ6gAwIBAgIQC8TxI5qUGZetrt9GRiMFjTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgxMjEyMDAwMDAwWhcN MjAwMjEwMTIwMDAwWjBwMQswCQYDVQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTET MBEGA1UEBxMKU2NvdHRzZGFsZTEmMCQGA1UEChMdQW1lcmljYW4gUHJlc2lkZW50 IExpbmVzIEx0ZC4xEjAQBgNVBAMMCSouYXBsLmNvbTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBANPrhgN8nJqNN9h4X7uw9nbsc2OW6pg//tfchMSr4Dr2 GnL0Wdb4gPds67uMDW5tAdM+HfPC/kpnNpQFn0TC0xA1hL1Rj/bi9shnSuw5Xaa6 nP9bCtHWhSlmSYVpFKQ9wpycgKhOutwin6lkfxzGg8UIL3rjlg7XUzc92TZ/ZReZ B0ESxUGBmabBfYMaiILI+570rqa5ZUEC0eECTllr5VvGD1Y5FobBR2o6PVNxtcHw lEcxiojeZh8ElAK41VFq1OX6MKz8eMlul9Kpyh0/JZv90V4Zn0EihQFEUP6svWXf 9K4InTbUJqd+E+OruV5StI6gkbMhsj8x8OUlp2t//BkCAwEAAaOCAt0wggLZMB8G A1UdIwQYMBaAFA+AYRyCMWHVLyjnjUY4tCzhxtniMB0GA1UdDgQWBBTcFFiXVx7W F6936R17ZiiHQb3KiDAdBgNVHREEFjAUggkqLmFwbC5jb22CB2FwbC5jb20wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNV HR8EZDBiMC+gLaArhilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc3NjYS1zaGEy LWc2LmNybDAvoC2gK4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NzY2Etc2hh Mi1nNi5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYc aHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwfAYIKwYBBQUH AQEEcDBuMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wRgYI KwYBBQUHMAKGOmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNI QTJTZWN1cmVTZXJ2ZXJDQS5jcnQwCQYDVR0TBAIwADCCAQMGCisGAQQB1nkCBAIE gfQEgfEA7wB2ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABZ6Rp ebUAAAQDAEcwRQIgNl/cnMHWc+WnlEsDrVKv7nbIHPyAQGuTiugPWQFa9GMCIQDc rZecnq0270X6x7UvKc88XRAq3UQmBSxBT+pIOOCOLQB1AId1v+dZfPiMQ5lfvfNu /1aNR1Y2/0q1YMG06v9eoIMPAAABZ6RpeoMAAAQDAEYwRAIgKuxA2FOZ6oJAjjro /gXKsK9R6qY1kBt4Cattpgp3xF8CIBmf4XSlBCVRI1sCyMwvDVKgBl9dpnP6P9wY q9L/vEPjMA0GCSqGSIb3DQEBCwUAA4IBAQBpKOPdOH7YIxxn0uvZo7O6ykJTGiOo H9aHUafM6yxEovG0lUvss721YjOHl3edpRuCc9fH4HgqMAN1n8Gu2OM9OhEpRvm4 XSUdFMQWSXzLDvhiYIXhQ1Jg8OZ902e8mdVwm/slf8gjTQP04bGaS2ONdR0ZQXvl +3LsvM09ArkjDdocxtRV4QRnPXKCXKCEdBQWn+YXyMhb3xEu7sM6Q2LajoLFU2Gv cl+NkWbLqt6pmzwxwrr4/qMWPoFBvbNDVVTpgdJAsoznIFTu3AkOjA3W2EQ+9a/w 2vE9pHS1JyyvrZ51QaI2ESY6AmREzNJ72UR/WpFcE78Xpef/IBcHusET -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+uGA3ycmo032Hhfu7D2 duxzY5bqmD/+19yExKvgOvYacvRZ1viA92zru4wNbm0B0z4d88L+Smc2lAWfRMLT EDWEvVGP9uL2yGdK7Dldprqc/1sK0daFKWZJhWkUpD3CnJyAqE663CKfqWR/HMaD xQgveuOWDtdTNz3ZNn9lF5kHQRLFQYGZpsF9gxqIgsj7nvSuprllQQLR4QJOWWvl W8YPVjkWhsFHajo9U3G1wfCURzGKiN5mHwSUArjVUWrU5fowrPx4yW6X0qnKHT8l m/3RXhmfQSKFAURQ/qy9Zd/0rgidNtQmp34T46u5XlK0jqCRsyGyPzHw5SWna3/8 GQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15644089019446802259883560485381145997 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-10 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'American President Lines Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.apl.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26752423309737344471812936230784363333460469863799163583223775841929803258509029171024227082356367127129999296098100370334337724893330806511885433905494524412985367117417559743260907246548327620247892045645765973220823118724312871311678876009322800326497161186686580918199710559557648805609759851131921573406490888336799084283965594706090837156928365786400591689974736195926886909890290777507009675116569059290763229888793154961273593859794624185144375263827117323398634090482097591853126349734791000436098591357565696659086573159996521319535061386865369956793261648903535424014575748475180922050126732286975411223577 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dc145897571ed617af77e91d7b66288741bdca88 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.apl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed18500000167a46979b500000403004730450220365fdc9cc1d673e5a7944b03ad52afee76c81cfc80406b938ae80f59015af463022100dcad979c9ead36ef45fac7b52f29cf3c5d102add4426052c414fea4838e08e2d0075008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000167a4697a83000004030046304402202aec40d85399ea82408e3ae8fe05cab0af51eaa635901b7809ab6da60a77c45f0220199fe174a5042551235b02c8cc2f0d52a0065f5da673fa3fdc18abd2ffbc43e3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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