saml-login.cjscp.org.uk
- Ministry of Justice -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 04:f0:ba:c0:c2:9a:fa:0a:dd:d1:66:24:22:5d:99:a1 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Ministry of Justice
Organization:
Ministry of Justice
Organization unit: MOJ Common Platform
Organization unit: MOJ Common Platform
Locality:
London
Country: GB
Country: GB
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f0:ba:c0:c2:9a:fa:0a:dd:d1:66:24:22:5d:99:a1Serial Number (int): 6566851029408951345547642741119097249
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: b0:04:9b:0b:ad:46:54:c0:d0:1d:74:d3:4c:81:39:c0:ab:60:2f:de
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 48:5d:16:bf:5b:02:44:21:ae:c5:85:a4:b4:0b:ae:4a:44:bb:ed:bd
Fingerprint (sha256): 58:62:59:9c:86:6d:55:d4:09:e0:0a:5d:52:0a:a3:31:7a:0d:a7:a6:93:28:2f:9e:cf:63:20:f0:50:b0:71:1d
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate saml-login.cjscp.org.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for saml-login.cjscp.org.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
saml-login.cjscp.org.uk
Other certificates including the domain name cjscp.org.uk
(limited to 100 certificates)
saml-token.cjscp.org.uk
sit.cpp.cjscp.org.uk
saml-login.prp.cjscp.org.uk
onlineplea.cjscp.org.uk
prosecuting.cjscp.org.uk
sit.cjscp.org.uk
apigw.cjscp.org.uk
rota-sit.nftpr1.cjscp.org.uk
apigw.nft.cjscp.org.uk
nft.cpp.cjscp.org.uk
prosecuting.cjscp.org.uk
cjscp.org.uk
rota.cjscp.org.uk
nft.cjscp.org.uk
onlineplea.cjscp.org.uk
sit.cpp.cjscp.org.uk
redact.prosecuting.nft.cjscp.org.uk
cjscp.org.uk
sit.cjscp.org.uk
onlineplea.sit.cjscp.org.uk
defending.sit.cjscp.org.uk
api.nft.cjscp.org.uk
prosecuting.cjscp.org.uk
prosecuting.cjscp.org.uk
login.cjscp.org.uk
prosecuting.cjscp.org.uk
prosecuting.cjscp.org.uk
redact.nft.cpp.cjscp.org.uk
saml-login.cjscp.org.uk
redact.prosecuting.nft.cjscp.org.uk
rota.sit.cjscp.org.uk
defending.prp.cjscp.org.uk
rota-sit.nftpr1.cjscp.org.uk
rota.cjscp.org.uk
login.cjscp.org.uk
apigw.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
onlineplea.sit.cjscp.org.uk
redact.nft.cpp.cjscp.org.uk
demo.cjscp.org.uk
manage-users.nft.cpp.cjscp.org.uk
api.sit.cjscp.org.uk
api.sit.cjscp.org.uk
saml-gateway.prp.cjscp.org.uk
defending.sit.cjscp.org.uk
onlineplea.sit.cjscp.org.uk
saml-gateway.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
api.cjscp.org.uk
saml-token.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
identity-gateway.nft.cpp.cjscp.org.uk
saml-login.cjscp.org.uk
prosecuting.cjscp.org.uk
saml-login.prp.cjscp.org.uk
defending.nft.cjscp.org.uk
apigw.nft.cjscp.org.uk
saml-gateway.cjscp.org.uk
token.nft.cpp.cjscp.org.uk
defending.cjscp.org.uk
sit.cpp.cjscp.org.uk
cjscp.org.uk
sit.cpp.cjscp.org.uk
prosecuting.cjscp.org.uk
saml-token.prp.cjscp.org.uk
saml-gateway.cjscp.org.uk
api.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
apigw.dev.cjscp.org.uk
rota.cjscp.org.uk
defending.nft.cjscp.org.uk
apigw.dev.cjscp.org.uk
api.nft.cjscp.org.uk
sit.cpp.cjscp.org.uk
prosecuting.cjscp.org.uk
prosecuting.cjscp.org.uk
defending.cjscp.org.uk
prosecuting.cjscp.org.uk
nft.cjscp.org.uk
onlineplea.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
rota.sit.cjscp.org.uk
defending.prp.cjscp.org.uk
sit.cpp.cjscp.org.uk
api.prp.cjscp.org.uk
cjscp.org.uk
prosecuting.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
onlineplea.cjscp.org.uk
saml-token.cjscp.org.uk
rota.cjscp.org.uk
apigw.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
prosecuting.cjscp.org.uk
my-services.nft.cpp.cjscp.org.uk
login.cjscp.org.uk
apigw.cjscp.org.uk
prosecuting.cjscp.org.uk
api.cjscp.org.uk
prosecuting.cjscp.org.uk
sit.cpp.cjscp.org.uk
saml-login.prp.cjscp.org.uk
onlineplea.cjscp.org.uk
prosecuting.cjscp.org.uk
sit.cjscp.org.uk
apigw.cjscp.org.uk
rota-sit.nftpr1.cjscp.org.uk
apigw.nft.cjscp.org.uk
nft.cpp.cjscp.org.uk
prosecuting.cjscp.org.uk
cjscp.org.uk
rota.cjscp.org.uk
nft.cjscp.org.uk
onlineplea.cjscp.org.uk
sit.cpp.cjscp.org.uk
redact.prosecuting.nft.cjscp.org.uk
cjscp.org.uk
sit.cjscp.org.uk
onlineplea.sit.cjscp.org.uk
defending.sit.cjscp.org.uk
api.nft.cjscp.org.uk
prosecuting.cjscp.org.uk
prosecuting.cjscp.org.uk
login.cjscp.org.uk
prosecuting.cjscp.org.uk
prosecuting.cjscp.org.uk
redact.nft.cpp.cjscp.org.uk
saml-login.cjscp.org.uk
redact.prosecuting.nft.cjscp.org.uk
rota.sit.cjscp.org.uk
defending.prp.cjscp.org.uk
rota-sit.nftpr1.cjscp.org.uk
rota.cjscp.org.uk
login.cjscp.org.uk
apigw.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
onlineplea.sit.cjscp.org.uk
redact.nft.cpp.cjscp.org.uk
demo.cjscp.org.uk
manage-users.nft.cpp.cjscp.org.uk
api.sit.cjscp.org.uk
api.sit.cjscp.org.uk
saml-gateway.prp.cjscp.org.uk
defending.sit.cjscp.org.uk
onlineplea.sit.cjscp.org.uk
saml-gateway.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
api.cjscp.org.uk
saml-token.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
identity-gateway.nft.cpp.cjscp.org.uk
saml-login.cjscp.org.uk
prosecuting.cjscp.org.uk
saml-login.prp.cjscp.org.uk
defending.nft.cjscp.org.uk
apigw.nft.cjscp.org.uk
saml-gateway.cjscp.org.uk
token.nft.cpp.cjscp.org.uk
defending.cjscp.org.uk
sit.cpp.cjscp.org.uk
cjscp.org.uk
sit.cpp.cjscp.org.uk
prosecuting.cjscp.org.uk
saml-token.prp.cjscp.org.uk
saml-gateway.cjscp.org.uk
api.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
apigw.dev.cjscp.org.uk
rota.cjscp.org.uk
defending.nft.cjscp.org.uk
apigw.dev.cjscp.org.uk
api.nft.cjscp.org.uk
sit.cpp.cjscp.org.uk
prosecuting.cjscp.org.uk
prosecuting.cjscp.org.uk
defending.cjscp.org.uk
prosecuting.cjscp.org.uk
nft.cjscp.org.uk
onlineplea.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
rota.sit.cjscp.org.uk
defending.prp.cjscp.org.uk
sit.cpp.cjscp.org.uk
api.prp.cjscp.org.uk
cjscp.org.uk
prosecuting.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
onlineplea.cjscp.org.uk
saml-token.cjscp.org.uk
rota.cjscp.org.uk
apigw.prp.cjscp.org.uk
prosecuting.cjscp.org.uk
prosecuting.cjscp.org.uk
my-services.nft.cpp.cjscp.org.uk
login.cjscp.org.uk
apigw.cjscp.org.uk
prosecuting.cjscp.org.uk
api.cjscp.org.uk
prosecuting.cjscp.org.uk
Certificate
The complete raw certificate details for saml-login.cjscp.org.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIQBPC6wMKa+grd0WYkIl2ZoTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTcxMjA3MDAwMDAwWhcN MTgxMjIzMTIwMDAwWjB8MQswCQYDVQQGEwJHQjEPMA0GA1UEBxMGTG9uZG9uMRww GgYDVQQKExNNaW5pc3RyeSBvZiBKdXN0aWNlMRwwGgYDVQQLExNNT0ogQ29tbW9u IFBsYXRmb3JtMSAwHgYDVQQDExdzYW1sLWxvZ2luLmNqc2NwLm9yZy51azCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALya4QlhhahMZYjSbOunGveDkYne KqpCPYVQNQHl15Ad7RJ+jM6lD2iuRrGoYhYDh37vz/cPw7/T0abUdquCrpKjlh4i AP6A/Rl59Ksdz6JpfzEjXp5VA37tlwfOHM7G+dJ1Iz05rNTHUMtn69tN1AcOjrqp clwytPvdo13h3mNxioT2j+QsH2fNdEHfWiUzwC7/roHLZDxXv4jdFUrO5hQCruHF YYcWzcDrekKMofXN7EzfVKfPb+jCituymPxCbW5PNFuCKtEc80oSlsIq+CCijn2C /5CY0YtGqr4ZKbDfzxHW5ae0uPM1x5JR3fa02b2HaaaVyTqX35vfVuGNUgUCAwEA AaOCAfAwggHsMB8GA1UdIwQYMBaAFA+AYRyCMWHVLyjnjUY4tCzhxtniMB0GA1Ud DgQWBBSwBJsLrUZUwNAddNNMgTnAq2Av3jAiBgNVHREEGzAZghdzYW1sLWxvZ2lu LmNqc2NwLm9yZy51azAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2lj ZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdp Y2VydC5jb20vc3NjYS1zaGEyLWc2LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwB ATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgG BmeBDAECAjB8BggrBgEFBQcBAQRwMG4wJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBGBggrBgEFBQcwAoY6aHR0cDovL2NhY2VydHMuZGlnaWNl cnQuY29tL0RpZ2lDZXJ0U0hBMlNlY3VyZVNlcnZlckNBLmNydDAJBgNVHRMEAjAA MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBfPFj9l6Nm uX8UPMmV31Anuau18FCVL++c9yOGC2pumw4Khcne22DRuHCm7sGhK8nUb/cTlZ1m oz3khjDuF/O+cKE8CW6Z+JIFls29h80B6k5Dgui6gCy013PxkW5gLWkFtF4iCUWd 5DOwBoiV9vaZWecPAl20XMV6a37dD4R/H13PFGwldlwxQHUp5awzXLZ2oX/NG251 uTiEb6v+njA+flq76IE+5kWKaG37/gYMLuXdIGyA6Nnn7Xs0nbF2E7LpacOUi+lF 0MrmqqI6cdv7tqn9ezIivvg6PZBnDhy81I1mAtXfh6yEu4df50wB4xBOdzpkSAbl l1kh6LvvzKJt -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJrhCWGFqExliNJs66ca 94ORid4qqkI9hVA1AeXXkB3tEn6MzqUPaK5GsahiFgOHfu/P9w/Dv9PRptR2q4Ku kqOWHiIA/oD9GXn0qx3Poml/MSNenlUDfu2XB84czsb50nUjPTms1MdQy2fr203U Bw6OuqlyXDK0+92jXeHeY3GKhPaP5CwfZ810Qd9aJTPALv+ugctkPFe/iN0VSs7m FAKu4cVhhxbNwOt6Qoyh9c3sTN9Up89v6MKK27KY/EJtbk80W4Iq0RzzShKWwir4 IKKOfYL/kJjRi0aqvhkpsN/PEdblp7S48zXHklHd9rTZvYdpppXJOpffm99W4Y1S BQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6566851029408951345547642741119097249 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-23 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ministry of Justice' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MOJ Common Platform' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'saml-login.cjscp.org.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23809175039361147350850276278510642045647962932492956801596934221765561957177515819216383817374661729426738560753481342064396023304147147574388670338929046798354447047558682886633582820723293036162715420339571944254422364333893967825937478234682235653133987125457083982969482321263778807514240460590730130492113513553597080952154190792755680002925636221785671572772664693160420238071277876182008126924296322985816306945198709172808751423435988000276881702511256423597200099011599108762038490685472441675464960152506952747646289788188187544518756872699937607734464426559098165780321043529970970490729050235637185991173 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b0049b0bad4654c0d01d74d34c8139c0ab602fde . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saml-login.cjscp.org.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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