clearpass.lockton.com
- Lockton Companies LLC -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 0f:5a:78:85:00:e0:c6:09:5b:4f:07:f9:0f:aa:1f:4a was issued on by DigiCert Inc.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Lockton Companies LLC
Company registration number:
LC001474102
Organization: Lockton Companies LLC
Organization: Lockton Companies LLC
State / Province:
Missouri
Locality: Kansas City
Country: US
Locality: Kansas City
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:5a:78:85:00:e0:c6:09:5b:4f:07:f9:0f:aa:1f:4aSerial Number (int): 20408171080811659762490092320509796170
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 36:89:3a:0c:33:70:a2:0b:ab:68:56:26:11:95:f2:1f:8c:78:83:f0
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 1c:68:14:bb:0c:a2:f1:9f:08:82:8f:21:28:f4:7a:34:e7:2b:cb:c0
Fingerprint (sha256): 5c:a0:f9:b5:0f:ef:b1:42:c1:db:b4:eb:d2:52:15:ef:37:c9:17:74:65:22:05:1d:6d:d4:b0:cc:02:84:94:c7
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g3.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g3.crl
Check the revocation status for certificate clearpass.lockton.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for clearpass.lockton.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
clearpass.lockton.com
lockton-cppm1.uk.lockton.com
lockton-cppm2.uk.lockton.com
guest.locktonuk.com
guest.lockton.com
guest.point6healthcare.com
lockkc-cp3.lockton.com
lockkc-cp4.lockton.com
lockton-cppm1.uk.lockton.com
lockton-cppm2.uk.lockton.com
guest.locktonuk.com
guest.lockton.com
guest.point6healthcare.com
lockkc-cp3.lockton.com
lockkc-cp4.lockton.com
Other certificates including the domain name lockton.com
(limited to 100 certificates)
test.social.lockton.com
*.lockton.mcdpartners.dev
*.lockton.mcdpartners.dev
eucomms.lockton.com
global.lockton.com
globalbenefits.lockton.com
vcbridge.lockton.com
s.consulting.lockton.com
awt.lockton.com
extranet.uk.lockton.com
activesync.br.lockton.com
976539-web1.uk.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
mail-th.asia.lockton.com
micollab.asia.lockton.com
clearpass.lockton.com
eucomms.lockton.com
*.lockton.com
ssl943496.cloudflaressl.com
www.autocert.lockton.com
micollab.asia.lockton.com
*.lockton.mcdpartners.dev
axis.sage.lockton.com
*.lockton.com
xmp.mena.lockton.com
cirrus.us.lockton.com
global.lockton.com
PDFNet.lockton.com
mail.plf.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
mail.mena.lockton.com
devma360-infolock.lockton.com
cirrus.mena.lockton.com
clearpass.lockton.com
SecureAruba.uk.lockton.com
extranet.uk.lockton.com
insight.lockton.com
976539-web1.uk.lockton.com
fs.uk.lockton.com
micollab.asia.lockton.com
Tunnel.uk.lockton.com
micollab.asia.lockton.com
ftp.lockton.com
vpn2.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
*.lockton.com
sni.cloudflaressl.com
976539-web1.uk.lockton.com
ssl943498.cloudflaressl.com
locktonmail.lockton.com
abi-infolock.lockton.com
www.autocert.lockton.com
globalbenefits.lockton.com
976539-web1.uk.lockton.com
citrix.asia.lockton.com
cirrus.mena.lockton.com
citrix.asia.lockton.com
mail.asia.lockton.com
cirrus.mena.lockton.com
devrpt-infolock.lockton.com
sni.cloudflaressl.com
fs.lockton.com
micollab.asia.lockton.com
extranet.uk.lockton.com
mail.asia.lockton.com
micollab.asia.lockton.com
*.lockton.mcdpartners.dev
mail.asia.lockton.com
*.mcdpartners.dev
mail.asia.lockton.com
ssl943497.cloudflaressl.com
micollab.asia.lockton.com
micollab.asia.lockton.com
ukcomms.lockton.com
mail.mena.lockton.com
www.lockton.com
global.lockton.com
micollab.asia.lockton.com
smtp-dr.lockton.com
extranet.uk.lockton.com
secure.uk.lockton.com
*.lockton.mcdpartners.dev
micollab.asia.lockton.com
owa.lockton.com
ukcomms.lockton.com
micollab.asia.lockton.com
qbe.sage.lockton.com
ssl943498.cloudflaressl.com
activesync.mx.lockton.com
s.consulting.lockton.com
globalbenefits.lockton.com
activesync.uk.lockton.com
asiacomms.lockton.com
fastpass.uk.lockton.com
ssl943496.cloudflaressl.com
globalbenefits.lockton.com
*.lockton.mcdpartners.dev
*.lockton.mcdpartners.dev
eucomms.lockton.com
global.lockton.com
globalbenefits.lockton.com
vcbridge.lockton.com
s.consulting.lockton.com
awt.lockton.com
extranet.uk.lockton.com
activesync.br.lockton.com
976539-web1.uk.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
mail-th.asia.lockton.com
micollab.asia.lockton.com
clearpass.lockton.com
eucomms.lockton.com
*.lockton.com
ssl943496.cloudflaressl.com
www.autocert.lockton.com
micollab.asia.lockton.com
*.lockton.mcdpartners.dev
axis.sage.lockton.com
*.lockton.com
xmp.mena.lockton.com
cirrus.us.lockton.com
global.lockton.com
PDFNet.lockton.com
mail.plf.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
mail.mena.lockton.com
devma360-infolock.lockton.com
cirrus.mena.lockton.com
clearpass.lockton.com
SecureAruba.uk.lockton.com
extranet.uk.lockton.com
insight.lockton.com
976539-web1.uk.lockton.com
fs.uk.lockton.com
micollab.asia.lockton.com
Tunnel.uk.lockton.com
micollab.asia.lockton.com
ftp.lockton.com
vpn2.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
*.lockton.com
sni.cloudflaressl.com
976539-web1.uk.lockton.com
ssl943498.cloudflaressl.com
locktonmail.lockton.com
abi-infolock.lockton.com
www.autocert.lockton.com
globalbenefits.lockton.com
976539-web1.uk.lockton.com
citrix.asia.lockton.com
cirrus.mena.lockton.com
citrix.asia.lockton.com
mail.asia.lockton.com
cirrus.mena.lockton.com
devrpt-infolock.lockton.com
sni.cloudflaressl.com
fs.lockton.com
micollab.asia.lockton.com
extranet.uk.lockton.com
mail.asia.lockton.com
micollab.asia.lockton.com
*.lockton.mcdpartners.dev
mail.asia.lockton.com
*.mcdpartners.dev
mail.asia.lockton.com
ssl943497.cloudflaressl.com
micollab.asia.lockton.com
micollab.asia.lockton.com
ukcomms.lockton.com
mail.mena.lockton.com
www.lockton.com
global.lockton.com
micollab.asia.lockton.com
smtp-dr.lockton.com
extranet.uk.lockton.com
secure.uk.lockton.com
*.lockton.mcdpartners.dev
micollab.asia.lockton.com
owa.lockton.com
ukcomms.lockton.com
micollab.asia.lockton.com
qbe.sage.lockton.com
ssl943498.cloudflaressl.com
activesync.mx.lockton.com
s.consulting.lockton.com
globalbenefits.lockton.com
activesync.uk.lockton.com
asiacomms.lockton.com
fastpass.uk.lockton.com
ssl943496.cloudflaressl.com
globalbenefits.lockton.com
Certificate
The complete raw certificate details for clearpass.lockton.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGkzCCBXugAwIBAgIQD1p4hQDgxglbTwf5D6ofSjANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTIyMDYzMDAwMDAwMFoXDTIzMDczMTIz NTk1OVowgdsxEzARBgsrBgEEAYI3PAIBAxMCVVMxGTAXBgsrBgEEAYI3PAIBAhMI TWlzc291cmkxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRQwEgYDVQQF EwtMQzAwMTQ3NDEwMjELMAkGA1UEBhMCVVMxETAPBgNVBAgTCE1pc3NvdXJpMRQw EgYDVQQHEwtLYW5zYXMgQ2l0eTEeMBwGA1UEChMVTG9ja3RvbiBDb21wYW5pZXMg TExDMR4wHAYDVQQDExVjbGVhcnBhc3MubG9ja3Rvbi5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC5OBDzkS7nH5YSVJFlj8s2eHgeR3Rx2Uddooc9 Q5xIPzqEKpDgqN5u1XGZlOXNcd/38HtxNBqdIxMxAbCknDu2iZZKKD7OCI9xBjSg wgm1F8Q4Op5UtHqbOlsVOux11z9PiijAMp3u1gpXQWGmpSfVcKuMUdGBygKM+8+9 uryS7+T/RvKTGJk12Sm/VxLuL6Kg0SUgxCPflLduTeHA/aXYTBWJeE7wBIlAZbt4 0v1DsL5FlZERHwI/XNrtOHGz2uxDk6popDPjexJCEfsm9dJbfyf0w4Hy3es4Y8h2 ehAWu4IFjrAPnXp5bm8kTcfiXN/kNnqd5T82gw7cdLOE+z69AgMBAAGjggK2MIIC sjAfBgNVHSMEGDAWgBQ901Cl1qCt7vNKYApl0yHU+PjWDzAdBgNVHQ4EFgQUNok6 DDNwoguraFYmEZXyH4x4g/AwgdIGA1UdEQSByjCBx4IVY2xlYXJwYXNzLmxvY2t0 b24uY29tghxsb2NrdG9uLWNwcG0xLnVrLmxvY2t0b24uY29tghxsb2NrdG9uLWNw cG0yLnVrLmxvY2t0b24uY29tghNndWVzdC5sb2NrdG9udWsuY29tghFndWVzdC5s b2NrdG9uLmNvbYIaZ3Vlc3QucG9pbnQ2aGVhbHRoY2FyZS5jb22CFmxvY2trYy1j cDMubG9ja3Rvbi5jb22CFmxvY2trYy1jcDQubG9ja3Rvbi5jb20wDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNVHR8EbjBs MDSgMqAwhi5odHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXIt ZzMuY3JsMDSgMqAwhi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hhMi1ldi1z ZXJ2ZXItZzMuY3JsMEoGA1UdIARDMEEwCwYJYIZIAYb9bAIBMDIGBWeBDAEBMCkw JwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCBiAYIKwYB BQUHAQEEfDB6MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20w UgYIKwYBBQUHMAKGRmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2Vy dFNIQTJFeHRlbmRlZFZhbGlkYXRpb25TZXJ2ZXJDQS5jcnQwCQYDVR0TBAIwADAT BgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAchNaMr0BKK0 hMTLGPiT4pKhYSbTHTlmBrbqTrNUssr0+RBGuq0vjAW6zIq8AmJgUMem+wXiUmkQ QlqZmGWS9xS8epbRm6fd1Nl2crx+tAAdYrdEGDfIrk317VyuqcfubvM4150fDm1d QmyxocGjb+D7pdR7OTamya0/lPMqp2W1owgTMRxNrUwhScXZgTJI1mb424j3vOQi 1ssDFOGxn9Bvb8Ft0bg+wsCpDSluPufyQPYx6xnPTyQBJ0MiR3onGUKFrfJpy4qv uU/YudFy/mXJ+u73LkJyT/geTyB9oWf7JJ0OGWvZ7DO498TI8T5DXHoXgYQJmH2i GZVu/eH5Ug== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTgQ85Eu5x+WElSRZY/L Nnh4Hkd0cdlHXaKHPUOcSD86hCqQ4KjebtVxmZTlzXHf9/B7cTQanSMTMQGwpJw7 tomWSig+zgiPcQY0oMIJtRfEODqeVLR6mzpbFTrsddc/T4oowDKd7tYKV0FhpqUn 1XCrjFHRgcoCjPvPvbq8ku/k/0bykxiZNdkpv1cS7i+ioNElIMQj35S3bk3hwP2l 2EwViXhO8ASJQGW7eNL9Q7C+RZWRER8CP1za7Thxs9rsQ5OqaKQz43sSQhH7JvXS W38n9MOB8t3rOGPIdnoQFruCBY6wD516eW5vJE3H4lzf5DZ6neU/NoMO3HSzhPs+ vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20408171080811659762490092320509796170 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-31 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Missouri' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'LC001474102' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Missouri' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kansas City' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Lockton Companies LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'clearpass.lockton.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23381733700524695861175570324392232243082279273305644182465961616176373455890127882953529399019634548075925165536775273574909104435503616126049204168356049658987591958991521827529671342751736551502289058280767829749178998674438653464871864342984020673897268578528659214302425939764962497233632746777487268037269294844221741902747007217818098470586021748236254182359639834006392855029945741464394081463920029813847722132249756936516458088355805782116101209868884103495253541692123521523217404857894726240774375891490871846199534583802971667337901462334570486109327251166580569257135401415818267082601911446495716654781 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 36893a0c3370a20bab6856261195f21f8c7883f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (202 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clearpass.lockton.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockton-cppm1.uk.lockton.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockton-cppm2.uk.lockton.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guest.locktonuk.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guest.lockton.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guest.point6healthcare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockkc-cp3.lockton.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockkc-cp4.lockton.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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