www.investright.org
- British Columbia Securities Commission -
Issued by Entrust Certification Authority - L1C
About this certificate
This digital certificate with serial number 4c:18:50:49 was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
British Columbia Securities Commission
Organization:
British Columbia Securities Commission
Organization unit: Information Systems
Organization unit: Information Systems
State / Province:
British Columbia
Locality: Vancouver
Country: CA
Locality: Vancouver
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 4c:18:50:49Serial Number (int): 1276661833
Serial Number lenght: 31 bits, 4 octets
SubjectKeyId: a2:90:56:58:f6:9f:88:7b:71:2f:a6:99:a4:53:ea:79:c3:72:3f:1f
AuthorityKeyId: 1e:f1:ab:89:06:f8:49:0f:01:33:77:ee:14:7a:ee:19:7c:93:28:4d
Fingerprint (sha1): 3d:f8:d9:ad:80:7b:ad:af:12:1e:1c:4c:78:c1:22:73:8a:e9:ab:24
Fingerprint (sha256): 61:d4:7d:43:31:86:ae:1d:90:74:96:f2:23:fc:9a:66:52:ed:39:e8:40:ac:83:4e:fc:12:e9:03:82:73:6e:7c
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1c.crl
Check the revocation status for certificate www.investright.org
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.investright.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name investright.org
(limited to 100 certificates)
sni.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
sni.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
www.investright.org
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
webmail.bcsc.bc.ca
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
sni.cloudflaressl.com
subscribe.investright.org
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
webmail.bcsc.bc.ca
ssl390259.cloudflaressl.com
www.investright.org
ssl390259.cloudflaressl.com
investright.org
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390257.cloudflaressl.com
webmail.bcsc.bc.ca
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
subscribe.investright.org
www.investright.org
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
www.investright.org
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
subscribe.investright.org
ssl390259.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
webmail.bcsc.bc.ca
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
www.investright.org
webmail.bcsc.bc.ca
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
subscribe.investright.org
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
www.investright.org
webmail.bcsc.bc.ca
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
subscribe.investright.org
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
sni.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
www.investright.org
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
webmail.bcsc.bc.ca
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
sni.cloudflaressl.com
subscribe.investright.org
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
webmail.bcsc.bc.ca
ssl390259.cloudflaressl.com
www.investright.org
ssl390259.cloudflaressl.com
investright.org
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390257.cloudflaressl.com
webmail.bcsc.bc.ca
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
subscribe.investright.org
www.investright.org
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
www.investright.org
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
subscribe.investright.org
ssl390259.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
webmail.bcsc.bc.ca
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
www.investright.org
webmail.bcsc.bc.ca
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
subscribe.investright.org
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
www.investright.org
webmail.bcsc.bc.ca
ssl390258.cloudflaressl.com
ssl390258.cloudflaressl.com
subscribe.investright.org
ssl390258.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390259.cloudflaressl.com
ssl390257.cloudflaressl.com
ssl390259.cloudflaressl.com
Certificate
The complete raw certificate details for www.investright.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIETBhQSTANBgkqhkiG9w0BAQUFADCBsTELMAkGA1UEBhMC VVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRydXN0 Lm5ldC9ycGEgaXMgaW5jb3Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMW KGMpIDIwMDkgRW50cnVzdCwgSW5jLjEuMCwGA1UEAxMlRW50cnVzdCBDZXJ0aWZp Y2F0aW9uIEF1dGhvcml0eSAtIEwxQzAeFw0xMDA2MjkyMDI2MjJaFw0xMTA2Mjky MDU2MjFaMIGpMQswCQYDVQQGEwJDQTEZMBcGA1UECBMQQnJpdGlzaCBDb2x1bWJp YTESMBAGA1UEBxMJVmFuY291dmVyMS8wLQYDVQQKEyZCcml0aXNoIENvbHVtYmlh IFNlY3VyaXRpZXMgQ29tbWlzc2lvbjEcMBoGA1UECxMTSW5mb3JtYXRpb24gU3lz dGVtczEcMBoGA1UEAxMTd3d3LmludmVzdHJpZ2h0Lm9yZzCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAMqml0JyyUxtj6BBS7pYb+f9aUX8ZK7Yszmu0jUu HvCGh0otKmLOtQmwEa1e9T0a1y3CMVWJTz7WiCV1SA5iUDZ3T630pOngenyBzxzK gXsGMRduzB5V1/RAfKRyhp2yi5ggcCN34AET1e/uEro6z9HeXJnU/r5IJG1yfW5l SvAWTrk2md4aLh8QIP4iQAbd1vkgNdgdpLnxq0yxyvcBH23uBFiNPuFBduZIDZNV FO4E488eRaCkNW6gZAKGblyJtUQcPhrDoYRGwYXpH4wkHdTpLlJ5K38B+HaYT4Z/ BQtx2MmeLuJu9UHYJW8DoWF9AUbx6awJZ1euv4SFugiYpVECAwEAAaOCAScwggEj MAsGA1UdDwQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwMwYD VR0fBCwwKjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFjLmNy bDAzBggrBgEFBQcBAQQnMCUwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1 c3QubmV0MEAGA1UdIAQ5MDcwNQYJKoZIhvZ9B0sCMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly93d3cuZW50cnVzdC5uZXQvcnBhMB8GA1UdIwQYMBaAFB7xq4kG+EkPATN3 7hR67hl8kyhNMB0GA1UdDgQWBBSikFZY9p+Ie3EvppmkU+p5w3I/HzAJBgNVHRME AjAAMA0GCSqGSIb3DQEBBQUAA4IBAQALpS7xE1HOgHJF/n9nlTTOraU3gdbWFvKt T+XST/YrmK4pz6YhTWKJG8AoUaBkzVA72cOzUOb8XMOd0GyL1vRXhlSVr6R4EtXx 2FUa0zoUng6evgcsUA4stRUyyT++8bb/MGR7JQsJ0vxB9QL0o175EYFCULn8AMOt JSbLLwaHprei363vAWE9Oeix0IFF3yRmZOll09k4R7m00uDbg7G3PeTQxj7hJuLI P6ecBWRkA+E5bczHFP72Hfq1fCjNBi4HakOrU3FLzez8SixZAmsOwo7LstmrYjsS xSdITVLmsq6OLofcEMik73yX/BpD8AAELpoNsoXaLOkYDJsCHNPS -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqaXQnLJTG2PoEFLulhv 5/1pRfxkrtizOa7SNS4e8IaHSi0qYs61CbARrV71PRrXLcIxVYlPPtaIJXVIDmJQ NndPrfSk6eB6fIHPHMqBewYxF27MHlXX9EB8pHKGnbKLmCBwI3fgARPV7+4SujrP 0d5cmdT+vkgkbXJ9bmVK8BZOuTaZ3houHxAg/iJABt3W+SA12B2kufGrTLHK9wEf be4EWI0+4UF25kgNk1UU7gTjzx5FoKQ1bqBkAoZuXIm1RBw+GsOhhEbBhekfjCQd 1OkuUnkrfwH4dphPhn8FC3HYyZ4u4m71QdglbwOhYX0BRvHprAlnV66/hIW6CJil UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1276661833 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.entrust.net/rpa is incorporated by reference' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2009 Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1C' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-06-29 20:26:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-06-29 20:56:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'British Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Vancouver' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'British Columbia Securities Commission' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Systems' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.investright.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25582286616797511861334841267563666139597821032608188371582144292140305144621401564109285608001089759001391558369264753600182700607161476229769490008257580078500927636788365781535300598945017205880594968882352884292970905027259233203824539935896645882041960758208922928631163641338650653389504525212964702431125691788136443432235895263057807257920424528671154285715650272736248386845689441217785102287880045129557188656872628766537513665652226293560713019678004439041052149143090410994099900834675926446659147528196871978425388259233608412924735271716871777450618928621391855688743839181177448555938208152607805449553 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1c.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113533.7.75.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1ef1ab8906f8490f013377ee147aee197c93284d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a2905658f69f887b712fa699a453ea79c3723f1f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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