vpn.cic.deloitte.be
- Deloitte Services & Investments -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 02:9c:86:59:4d:8d:6c:7d:ed:50:79:96:52:83:9c:37 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Deloitte Services & Investments
Organization:
Deloitte Services & Investments
Organization unit: NOC
Organization unit: NOC
Locality:
Zaventem
Country: BE
Country: BE
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:9c:86:59:4d:8d:6c:7d:ed:50:79:96:52:83:9c:37Serial Number (int): 3471179219695934584553919917483858999
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 09:4f:b9:98:d1:b8:21:23:bf:e2:88:bf:ef:23:17:1a:9b:2b:12:f5
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): 4e:88:1b:22:e5:55:7e:0c:c9:5e:c5:e4:a3:bf:f3:55:58:f8:92:92
Fingerprint (sha256): 62:92:12:d9:09:a1:df:3f:e3:a1:b5:ec:d7:8b:16:79:6b:c0:56:ed:6d:74:d6:67:5a:b2:1c:b5:02:8a:6e:b2
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g6.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g6.crl
Check the revocation status for certificate vpn.cic.deloitte.be
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vpn.cic.deloitte.be
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vpn.cic.deloitte.be
Other certificates including the domain name deloitte.be
(limited to 100 certificates)
swift-trustdelivered.deloitte.be
digitalaccountant.deloitte.be
readz.com
survey.gradwell.com
*.deloitte.be
readz.com
*.app.deloitte.be
*.deloitte.be
*.deloitte.be
survey.westernwindowsystems.com
readz.com
supportsurvey.control4.com
readz.com
usap42.us.deloitte.com
usap42.us.deloitte.com
readz.com
usap42.us.deloitte.com
*.deloitte.be
*.deloitte.be
meet.deloitte.nl
registerfast50.deloitte.be
readz.com
cody-test.getgetfeedbackback.com
meet.deloitte.nl
readz.com
*.deloitte.be
readz.com
readz.com
readz.com
certificates.getfeedback.com
meet.deloitte.nl
usap42.us.deloitte.com
readz.com
survey.boomtownroi.com
readz.com
sip.gsinet.be
readz.com
readz.com
readz.com
readz.com
*.deloitte.be
readz.com
readz.com
usap42.us.deloitte.com
readz.com
readz.com
usap41.us.deloitte.com
supportsurvey.control4.com
feedback.liftago.com
readz.com
readz.com
feedback.nanotempertech.com
customdomain.getfeedback.com
meet.deloitte.nl
readz.com
usap42.us.deloitte.com
readz.com
readz.com
survey.westernwindowsystems.com
survey.adstream.com
*.deloitte.be
*.deloitte.be
readz.com
mobile-consumer-survey.deloitte.be
readz.com
readz.com
feedback.auditorservice.com
readz.com
sip.deloitte.nl
readz.com
*.deloitte.be
usap42.us.deloitte.com
readz.com
sms.cic.deloitte.be
sip.deloitte.nl
mobile-consumer-survey.deloitte.be
readz.com
*.deloitte.be
readz.com
*.deloitte.be
readz.com
readz.com
customdomain.getfeedback.com
*.deloitte.be
feedback.nextdc.com
readz.com
registerfast50.deloitte.be
readz.com
password.deloitte.be
feedback.inap.com
feedback.auditorservice.com
readz.com
readz.com
readz.com
readz.com
survey.gradwell.com
feedback.nextdc.com
mobility.deloitte.be
certificates.getfeedback.com
readz.com
digitalaccountant.deloitte.be
readz.com
survey.gradwell.com
*.deloitte.be
readz.com
*.app.deloitte.be
*.deloitte.be
*.deloitte.be
survey.westernwindowsystems.com
readz.com
supportsurvey.control4.com
readz.com
usap42.us.deloitte.com
usap42.us.deloitte.com
readz.com
usap42.us.deloitte.com
*.deloitte.be
*.deloitte.be
meet.deloitte.nl
registerfast50.deloitte.be
readz.com
cody-test.getgetfeedbackback.com
meet.deloitte.nl
readz.com
*.deloitte.be
readz.com
readz.com
readz.com
certificates.getfeedback.com
meet.deloitte.nl
usap42.us.deloitte.com
readz.com
survey.boomtownroi.com
readz.com
sip.gsinet.be
readz.com
readz.com
readz.com
readz.com
*.deloitte.be
readz.com
readz.com
usap42.us.deloitte.com
readz.com
readz.com
usap41.us.deloitte.com
supportsurvey.control4.com
feedback.liftago.com
readz.com
readz.com
feedback.nanotempertech.com
customdomain.getfeedback.com
meet.deloitte.nl
readz.com
usap42.us.deloitte.com
readz.com
readz.com
survey.westernwindowsystems.com
survey.adstream.com
*.deloitte.be
*.deloitte.be
readz.com
mobile-consumer-survey.deloitte.be
readz.com
readz.com
feedback.auditorservice.com
readz.com
sip.deloitte.nl
readz.com
*.deloitte.be
usap42.us.deloitte.com
readz.com
sms.cic.deloitte.be
sip.deloitte.nl
mobile-consumer-survey.deloitte.be
readz.com
*.deloitte.be
readz.com
*.deloitte.be
readz.com
readz.com
customdomain.getfeedback.com
*.deloitte.be
feedback.nextdc.com
readz.com
registerfast50.deloitte.be
readz.com
password.deloitte.be
feedback.inap.com
feedback.auditorservice.com
readz.com
readz.com
readz.com
readz.com
survey.gradwell.com
feedback.nextdc.com
mobility.deloitte.be
certificates.getfeedback.com
readz.com
Certificate
The complete raw certificate details for vpn.cic.deloitte.be in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIQApyGWU2NbH3tUHmWUoOcNzANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xOTA2MjUwMDAwMDBaFw0yMTA2MjkxMjAwMDBa MHYxCzAJBgNVBAYTAkJFMREwDwYDVQQHEwhaYXZlbnRlbTEoMCYGA1UECgwfRGVs b2l0dGUgU2VydmljZXMgJiBJbnZlc3RtZW50czEMMAoGA1UECxMDTk9DMRwwGgYD VQQDExN2cG4uY2ljLmRlbG9pdHRlLmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA1VBCHF5cnp7a1JjV7dc2FFgmWx1Ooa/ctTyOksW/fsCThT5C8hLc pXf+GRTG50LZLA//DYg/TjniJV/uVB3DjtiOFbDUzAdOZh+PaTmulbxLotpo1RVA bjd+Ci5rTm21JAI7mEyxip6r3frgoSYMGQrwFg2kdgAW679zsZGFtn5Lw8qNuths je0ZDalOTW83oIt99dlGn+iqnQAL4gYGm+01bZ8jO/KqCTPhEGRU2KkOpmum6Yyp gu4IC9y7ym8SRwMKcQkKm2D4Yg3V9zvXblLbm9MA7wnm3rvaWmywDH+Hdy7a3f0l Za1eF/FmBtVIpl5UvKdSiFhBCv1jqMcCMwIDAQABo4ICATCCAf0wHwYDVR0jBBgw FoAUUWj/kK8CB3U8zNllZGKiErhZcjswHQYDVR0OBBYEFAlPuZjRuCEjv+KIv+8j FxqbKxL1MB4GA1UdEQQXMBWCE3Zwbi5jaWMuZGVsb2l0dGUuYmUwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNVHR8EbjBs MDSgMqAwhi5odHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc2hhMi1oYS1zZXJ2ZXIt ZzYuY3JsMDSgMqAwhi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hhMi1oYS1z ZXJ2ZXItZzYuY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUH AgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMIGDBggr BgEFBQcBAQR3MHUwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNv bTBNBggrBgEFBQcwAoZBaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lD ZXJ0U0hBMkhpZ2hBc3N1cmFuY2VTZXJ2ZXJDQS5jcnQwDAYDVR0TAQH/BAIwADAT BgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIHwGoSBOtBz1 EsG1ZeGsynfgMi6z0zJ7youD7+2TIXTSN6O/73WzkOb6IZef5HfQDyTNlJ5500dL iSi+r5R7x6LvI6uVzHD3W3qwlWtoyuzD5OM1YevUl9kuUEQ0ataJ8jRXU/bULTfn fCWpYfVpYSR/jvJeQpYusiGN054gRZSbYTrG081kTtAVe/IXiL9W4fmlDML/3+QR q8ZsXm6jxbn1Q2waK4BF9/JCyzy7Cv7MkiXiFR3TEbryvZ0unrLTDfMkIcM5P+Yy 8/zoX0nKUXVy3lUQuFJlq8J3FMloJUQgBWcmAl7cbIj6+e+dfA5P9+ZtnX77ZVRX 05oCjcf5gg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1VBCHF5cnp7a1JjV7dc2 FFgmWx1Ooa/ctTyOksW/fsCThT5C8hLcpXf+GRTG50LZLA//DYg/TjniJV/uVB3D jtiOFbDUzAdOZh+PaTmulbxLotpo1RVAbjd+Ci5rTm21JAI7mEyxip6r3frgoSYM GQrwFg2kdgAW679zsZGFtn5Lw8qNuthsje0ZDalOTW83oIt99dlGn+iqnQAL4gYG m+01bZ8jO/KqCTPhEGRU2KkOpmum6Yypgu4IC9y7ym8SRwMKcQkKm2D4Yg3V9zvX blLbm9MA7wnm3rvaWmywDH+Hdy7a3f0lZa1eF/FmBtVIpl5UvKdSiFhBCv1jqMcC MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3471179219695934584553919917483858999 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-06-29 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zaventem' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Deloitte Services & Investments' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NOC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vpn.cic.deloitte.be' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26928335773610804182901426759739014036749053525041368549153215539870827204935515830485712165348056037863168895491184576122569881137466953069810082407614850005613143884535563857965208483788255244792408433475368576099531629953197371123011188984259632838928427905926041320309673136703380383261247692874584277796131495490060436746182507553646695069377207220729621157491957360009537524361437004668320090643303440949180483738302645751389571536492353015762658884920721464730103052351062940305719542269026306071759855834725236770796804830739849217597020693292111326764713211436792562194661267249539871720478328687033114362419 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 094fb998d1b82123bfe288bfef23171a9b2b12f5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn.cic.deloitte.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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