www.kay.com
- Sterling Jewelers -
Issued by GeoTrust SSL CA - G3
About this certificate
This digital certificate with serial number 34:3f:10:55:cd:17:1a:4f:23:78:56:86:de:c4:b5:21 was issued on by GeoTrust Inc..
With 56 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Sterling Jewelers
Organization:
Sterling Jewelers
Organization unit: IT
Organization unit: IT
State / Province:
Ohio
Locality: Akron
Country: US
Locality: Akron
Country: US
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 34:3f:10:55:cd:17:1a:4f:23:78:56:86:de:c4:b5:21Serial Number (int): 69447301799323148219394966929799427361
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d2:6f:f7:96:f4:85:3f:72:3c:30:7d:23:da:85:78:9b:a3:7c:5a:7c
Fingerprint (sha1): e8:56:2c:3c:09:86:c6:c0:ce:e5:82:3f:96:14:57:d6:dc:19:a4:ac
Fingerprint (sha256): 5d:d5:13:c8:19:6f:f7:00:76:b3:fc:84:51:60:76:00:55:59:c0:7d:71:3d:39:17:77:2e:35:c6:44:52:80:bb
Issuing Certificate URL: http://gn.symcb.com/gn.crt
Revocation information
OCSP Server: http://gn.symcd.comCRL Distribution Point: http://gn.symcb.com/gn.crl
Check the revocation status for certificate www.kay.com
56
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.kay.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
test.jared.com
sterlingjewelers.com
stage.jared.com
www.kayoutlet.com
test.kay.com
feo1.jared.com
dev1.kayoutlet.com
perf-aka.pagoda.com
img-aka.pagoda.com
prod-aka.pagoda.com
perf-aka.gordonsjewelers.com
feo2.kay.com
www.jared.com
feo2.kayoutlet.com
test3.kay.com
img-aka.zalesoutlet.com
uat-aka.zalesoutlet.com
prod-aka.zales.com
perf-aka.peoplesjewellers.com
perf-aka.zales.com
img-aka.gordonsjewelers.com
test3.kayoutlet.com
dev1.jared.com
test3.jared.com
perf.kayoutlet.com
img-aka.peoplesjewellers.com
prod-aka.gordonsjewelers.com
dev1.sterlingjewelers.com
stage.sterlingjewelers.com
img-aka.zales.com
uat-aka.pagoda.com
feo1.sterlingjewelers.com
kayoutlet.com
dev1.kay.com
feo1.kay.com
perf-aka.zalesoutlet.com
jared.com
stage.kay.com
uat-aka.gordonsjewelers.com
kay.com
perf.jared.com
uat-aka.peoplesjewellers.com
test3.sterlingjewelers.com
test.kayoutlet.com
perf.kay.com
feo1.kayoutlet.com
prod-aka.zalesoutlet.com
stage.kayoutlet.com
perf.sterlingjewelers.com
test.sterlingjewelers.com
feo2.jared.com
uat-aka.zales.com
prod-aka.peoplesjewellers.com
www.sterlingjewelers.com
feo2.sterlingjewelers.com
www.kay.com
sterlingjewelers.com
stage.jared.com
www.kayoutlet.com
test.kay.com
feo1.jared.com
dev1.kayoutlet.com
perf-aka.pagoda.com
img-aka.pagoda.com
prod-aka.pagoda.com
perf-aka.gordonsjewelers.com
feo2.kay.com
www.jared.com
feo2.kayoutlet.com
test3.kay.com
img-aka.zalesoutlet.com
uat-aka.zalesoutlet.com
prod-aka.zales.com
perf-aka.peoplesjewellers.com
perf-aka.zales.com
img-aka.gordonsjewelers.com
test3.kayoutlet.com
dev1.jared.com
test3.jared.com
perf.kayoutlet.com
img-aka.peoplesjewellers.com
prod-aka.gordonsjewelers.com
dev1.sterlingjewelers.com
stage.sterlingjewelers.com
img-aka.zales.com
uat-aka.pagoda.com
feo1.sterlingjewelers.com
kayoutlet.com
dev1.kay.com
feo1.kay.com
perf-aka.zalesoutlet.com
jared.com
stage.kay.com
uat-aka.gordonsjewelers.com
kay.com
perf.jared.com
uat-aka.peoplesjewellers.com
test3.sterlingjewelers.com
test.kayoutlet.com
perf.kay.com
feo1.kayoutlet.com
prod-aka.zalesoutlet.com
stage.kayoutlet.com
perf.sterlingjewelers.com
test.sterlingjewelers.com
feo2.jared.com
uat-aka.zales.com
prod-aka.peoplesjewellers.com
www.sterlingjewelers.com
feo2.sterlingjewelers.com
www.kay.com
Other certificates including the domain name kay.com
(limited to 100 certificates)
imperva.com
sni191bdgl.wpc.edgecastcdn.net
test.kay.com
mstage.jared.com
credithub-test.azusnc-test.jewels.com
stores.kay.com
www2.kay.com
stores.kay.com
www.kay.com
*.classrings.kay.com
sni1d146gl.wpc.edgecastcdn.net
mstage.jared.com
origin-uat1.kay.com
www.kay.com
em.kay.com
t.kay.com
imperva.com
chat.kay.com
chat.kay.com
www.kay.com
credithub-dev.azusnc-test.jewels.com
credithub-test.azusnc-test.jewels.com
san2.yext-cdn.com
san2.yext-cdn.com
www.kay.com
test.kay.com
testbridal.kay.com
classrings.kay.com
san2.yext-cdn.com
classrings.kay.com
link.kay.com
link.kay.com
fashion.kay.com
bridal.kay.com
chat.kay.com
t.kay.com
www2.kay.com
www.kay.com
origin-uat1.kay.com
dtm.kay.com
www.kay.com
www.kay.com
test.kay.com
www.kay.com
signetqa.cbi-rings.com
bridal.kay.com
pay.sterlingjewelers.com
san2.yext-cdn.com
perf-creditapis.jewels.com
san2.yext-cdn.com
familyjewelry.kay.com
imperva.com
em.kay.com
locations.c2crestaurants.com
san2.yext-cdn.com
test.kay.com
stores.kay.com
chat.kay.com
www.kay.com
classrings.kay.com
chat.kay.com
san2.yext-cdn.com
em.kay.com
test.kay.com
testpersonalized.kay.com
www.kay.com
san2.yext-cdn.com
smetrics.kay.com
amp-uat3.kay.com
www.kay.com
pay.sterlingjewelers.com
www.kay.com
sni19bd6gl.wpc.edgecastcdn.net
www.kay.com
www.kay.com
pay.kay.com
origingreen.zales.com
*.kay.com
pages.email.kay.com
test.kay.com
jsorigin.zales.com
pt-stores.iqos.com.yext-cdn.com
familyjewelry.kay.com
www.kay.com
m.kay.com
creditapis.jewels.com
fpc.kay.com
credithub-test.azusnc-test.jewels.com
familyjewelry.kay.com
www.kay.com
classrings.kay.com
www.kay.com
classrings.kay.com
www.kay.com
personalized.jared.com
www.kay.com
www.kay.com
credithub-dev.azusnc-test.jewels.com
www.kay.com
www.kay.com
sni191bdgl.wpc.edgecastcdn.net
test.kay.com
mstage.jared.com
credithub-test.azusnc-test.jewels.com
stores.kay.com
www2.kay.com
stores.kay.com
www.kay.com
*.classrings.kay.com
sni1d146gl.wpc.edgecastcdn.net
mstage.jared.com
origin-uat1.kay.com
www.kay.com
em.kay.com
t.kay.com
imperva.com
chat.kay.com
chat.kay.com
www.kay.com
credithub-dev.azusnc-test.jewels.com
credithub-test.azusnc-test.jewels.com
san2.yext-cdn.com
san2.yext-cdn.com
www.kay.com
test.kay.com
testbridal.kay.com
classrings.kay.com
san2.yext-cdn.com
classrings.kay.com
link.kay.com
link.kay.com
fashion.kay.com
bridal.kay.com
chat.kay.com
t.kay.com
www2.kay.com
www.kay.com
origin-uat1.kay.com
dtm.kay.com
www.kay.com
www.kay.com
test.kay.com
www.kay.com
signetqa.cbi-rings.com
bridal.kay.com
pay.sterlingjewelers.com
san2.yext-cdn.com
perf-creditapis.jewels.com
san2.yext-cdn.com
familyjewelry.kay.com
imperva.com
em.kay.com
locations.c2crestaurants.com
san2.yext-cdn.com
test.kay.com
stores.kay.com
chat.kay.com
www.kay.com
classrings.kay.com
chat.kay.com
san2.yext-cdn.com
em.kay.com
test.kay.com
testpersonalized.kay.com
www.kay.com
san2.yext-cdn.com
smetrics.kay.com
amp-uat3.kay.com
www.kay.com
pay.sterlingjewelers.com
www.kay.com
sni19bd6gl.wpc.edgecastcdn.net
www.kay.com
www.kay.com
pay.kay.com
origingreen.zales.com
*.kay.com
pages.email.kay.com
test.kay.com
jsorigin.zales.com
pt-stores.iqos.com.yext-cdn.com
familyjewelry.kay.com
www.kay.com
m.kay.com
creditapis.jewels.com
fpc.kay.com
credithub-test.azusnc-test.jewels.com
familyjewelry.kay.com
www.kay.com
classrings.kay.com
www.kay.com
classrings.kay.com
www.kay.com
personalized.jared.com
www.kay.com
www.kay.com
credithub-dev.azusnc-test.jewels.com
www.kay.com
www.kay.com
Certificate
The complete raw certificate details for www.kay.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKdTCCCV2gAwIBAgIQND8QVc0XGk8jeFaG3sS1ITANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UEAxMU R2VvVHJ1c3QgU1NMIENBIC0gRzMwHhcNMTcwNzE4MDAwMDAwWhcNMTcxMjE0MjM1 OTU5WjBrMQswCQYDVQQGEwJVUzENMAsGA1UECAwET2hpbzEOMAwGA1UEBwwFQWty b24xGjAYBgNVBAoMEVN0ZXJsaW5nIEpld2VsZXJzMQswCQYDVQQLDAJJVDEUMBIG A1UEAwwLd3d3LmtheS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDxVZVedB7+1s5fL1O3uOdNf+UZqEdGCAMAc/mhnyIBHEkSAWP1yr83DaJY2ni gGUbsSC6VI7q9/kDPnJvomAYmQpdlTq80UtEqv3Fr+A3AL2kNKEB85F1g4FjICvM 4MP+sS49whY6sN4oxCMjZjrS1zVBZhiMhlj4GD0aBOrlTSA0+6vJUeDyirshxGgF YArP1pPGeLFJPWIAvsk++bUjCgICoz0qTvrg6mlg3Wdq64xv3/z0pwk4VOJHa3MY wAsbn4pULm6kDlKJykTAOboL6ILr3elp0t+bSgJ3put75kxyNViXw1ihML3PHRve wGD7dh/7B6nT42w+Q/+ZczHvAgMBAAGjggc6MIIHNjCCBKgGA1UdEQSCBJ8wggSb gg50ZXN0LmphcmVkLmNvbYIUc3RlcmxpbmdqZXdlbGVycy5jb22CD3N0YWdlLmph cmVkLmNvbYIRd3d3LmtheW91dGxldC5jb22CDHRlc3Qua2F5LmNvbYIOZmVvMS5q YXJlZC5jb22CEmRldjEua2F5b3V0bGV0LmNvbYITcGVyZi1ha2EucGFnb2RhLmNv bYISaW1nLWFrYS5wYWdvZGEuY29tghNwcm9kLWFrYS5wYWdvZGEuY29tghxwZXJm LWFrYS5nb3Jkb25zamV3ZWxlcnMuY29tggxmZW8yLmtheS5jb22CDXd3dy5qYXJl ZC5jb22CEmZlbzIua2F5b3V0bGV0LmNvbYINdGVzdDMua2F5LmNvbYIXaW1nLWFr YS56YWxlc291dGxldC5jb22CF3VhdC1ha2EuemFsZXNvdXRsZXQuY29tghJwcm9k LWFrYS56YWxlcy5jb22CHXBlcmYtYWthLnBlb3BsZXNqZXdlbGxlcnMuY29tghJw ZXJmLWFrYS56YWxlcy5jb22CG2ltZy1ha2EuZ29yZG9uc2pld2VsZXJzLmNvbYIT dGVzdDMua2F5b3V0bGV0LmNvbYIOZGV2MS5qYXJlZC5jb22CD3Rlc3QzLmphcmVk LmNvbYIScGVyZi5rYXlvdXRsZXQuY29tghxpbWctYWthLnBlb3BsZXNqZXdlbGxl cnMuY29tghxwcm9kLWFrYS5nb3Jkb25zamV3ZWxlcnMuY29tghlkZXYxLnN0ZXJs aW5namV3ZWxlcnMuY29tghpzdGFnZS5zdGVybGluZ2pld2VsZXJzLmNvbYIRaW1n LWFrYS56YWxlcy5jb22CEnVhdC1ha2EucGFnb2RhLmNvbYIZZmVvMS5zdGVybGlu Z2pld2VsZXJzLmNvbYINa2F5b3V0bGV0LmNvbYIMZGV2MS5rYXkuY29tggxmZW8x LmtheS5jb22CGHBlcmYtYWthLnphbGVzb3V0bGV0LmNvbYIJamFyZWQuY29tgg1z dGFnZS5rYXkuY29tght1YXQtYWthLmdvcmRvbnNqZXdlbGVycy5jb22CB2theS5j b22CDnBlcmYuamFyZWQuY29tghx1YXQtYWthLnBlb3BsZXNqZXdlbGxlcnMuY29t ghp0ZXN0My5zdGVybGluZ2pld2VsZXJzLmNvbYISdGVzdC5rYXlvdXRsZXQuY29t ggxwZXJmLmtheS5jb22CEmZlbzEua2F5b3V0bGV0LmNvbYIYcHJvZC1ha2EuemFs ZXNvdXRsZXQuY29tghNzdGFnZS5rYXlvdXRsZXQuY29tghlwZXJmLnN0ZXJsaW5n amV3ZWxlcnMuY29tghl0ZXN0LnN0ZXJsaW5namV3ZWxlcnMuY29tgg5mZW8yLmph cmVkLmNvbYIRdWF0LWFrYS56YWxlcy5jb22CHXByb2QtYWthLnBlb3BsZXNqZXdl bGxlcnMuY29tghh3d3cuc3RlcmxpbmdqZXdlbGVycy5jb22CGWZlbzIuc3Rlcmxp bmdqZXdlbGVycy5jb22CC3d3dy5rYXkuY29tMAkGA1UdEwQCMAAwDgYDVR0PAQH/ BAQDAgWgMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9nbi5zeW1jYi5jb20vZ24u Y3JsMIGdBgNVHSAEgZUwgZIwgY8GBmeBDAECAjCBhDA/BggrBgEFBQcCARYzaHR0 cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xlZ2Fs MEEGCCsGAQUFBwICMDUMM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJj ZXMvcmVwb3NpdG9yeS9sZWdhbDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwHwYDVR0jBBgwFoAU0m/3lvSFP3I8MH0j2oV4m6N8WnwwVwYIKwYBBQUHAQEE SzBJMB8GCCsGAQUFBzABhhNodHRwOi8vZ24uc3ltY2QuY29tMCYGCCsGAQUFBzAC hhpodHRwOi8vZ24uc3ltY2IuY29tL2duLmNydDCCAQUGCisGAQQB1nkCBAIEgfYE gfMA8QB2AN3rHSt6DU+mIIuBrYFocH4ujp0B1VyIjT0RxM227L7MAAABXVbNpdkA AAQDAEcwRQIgB4AzIvWu/xDnGgRF0M0n4K1aVqCAw+tvf3gdJbzUBzgCIQCo5HDw B9k3Cb2GL7pVIe4M7ApgxSQhHKRIoaxTO5nNeQB3AKS5CZC0GFgUh7sTosxncAo8 NZgE+RvfuON3zQ7IDdwQAAABXVbNphkAAAQDAEgwRgIhAJ6lzTg76YVSYvjN/xJI TtJocEmeNexXzQjmeStHmhiFAiEAqBLxj6hpG0aQEBgkfta5MOWVi8xRos6sk+9R J+YlVQYwDQYJKoZIhvcNAQELBQADggEBAARl8A6bTlE3eTsaB1NZt9tIr94coumO QOnGDgGJ1emZ3bv7kCYbfl8c39QLH92RlbkgaSImMx03DZAdV/BZ9R5UMNm0JpBi hCWWnM04NX6rMxi4/sU1QqHThJjvvtKkcaO21zm1P5dPoUQ4V2OlOQ7zMBYrrD1/ Y/k0x/4TIf1KOSMcIjVRJvZ4mWjdvH1AjVeixqMgzChEACYmjPBa3mRS76Hk73oE sgNa0/FoK99eBNkmCEkYJw4YThnWXmDNqk6MT0l8uw9ILyD17pRr5IgGzI7SIZK+ hyATuA/JCOh9kYSWMgF4fn3ajrbZ1TrX131ue3gcmvTw6xeoV7SBJ0k= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8VWVXnQe/tbOXy9Tt7j nTX/lGahHRggDAHP5oZ8iARxJEgFj9cq/Nw2iWNp4oBlG7EgulSO6vf5Az5yb6Jg GJkKXZU6vNFLRKr9xa/gNwC9pDShAfORdYOBYyArzODD/rEuPcIWOrDeKMQjI2Y6 0tc1QWYYjIZY+Bg9GgTq5U0gNPuryVHg8oq7IcRoBWAKz9aTxnixST1iAL7JPvm1 IwoCAqM9Kk764OppYN1nauuMb9/89KcJOFTiR2tzGMALG5+KVC5upA5SicpEwDm6 C+iC693padLfm0oCd6bre+ZMcjVYl8NYoTC9zx0b3sBg+3Yf+wep0+NsPkP/mXMx 7wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 69447301799323148219394966929799427361 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ohio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Akron' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Sterling Jewelers' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.kay.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24713780089108691871380133893206965881849235295361601644665705727586865950472012579581432972363194311296858850621175758311315231029396794728012746214270030717405785537119336616966017368769650351965569682268823274140687608822112888075644718665005632365433859770291931415712422315670246912407227612680906011046464055228742692704131720836008807449782125700488732637469198176822525998422612887700868429097295821276355079745554118778933289294789827295893689010273207023998902746557053115530968327497585787284930271355291962904992448612358698789557868520113847429576175204620190213726432707283307308096818752765502973751791 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1183 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sterlingjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.kay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'feo1.jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev1.kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf-aka.pagoda.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'img-aka.pagoda.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod-aka.pagoda.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf-aka.gordonsjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'feo2.kay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'feo2.kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test3.kay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'img-aka.zalesoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-aka.zalesoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod-aka.zales.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf-aka.peoplesjewellers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf-aka.zales.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'img-aka.gordonsjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test3.kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev1.jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test3.jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf.kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'img-aka.peoplesjewellers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod-aka.gordonsjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev1.sterlingjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.sterlingjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'img-aka.zales.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-aka.pagoda.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'feo1.sterlingjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev1.kay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'feo1.kay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf-aka.zalesoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.kay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-aka.gordonsjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf.jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-aka.peoplesjewellers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test3.sterlingjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf.kay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'feo1.kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod-aka.zalesoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.kayoutlet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf.sterlingjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.sterlingjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'feo2.jared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-aka.zales.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod-aka.peoplesjewellers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sterlingjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'feo2.sterlingjewelers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kay.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d26ff796f4853f723c307d23da85789ba37c5a7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015d56cda5d90000040300473045022007803322f5aeff10e71a0445d0cd27e0ad5a56a080c3eb6f7f781d25bcd40738022100a8e470f007d93709bd862fba5521ee0cec0a60c524211ca448a1ac533b99cd79007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015d56cda61900000403004830460221009ea5cd383be9855262f8cdff12484ed26870499e35ec57cd08e6792b479a1885022100a812f18fa8691b46901018247ed6b930e5958bcc51a2ceac93ef5127e6255506 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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