d.ssl.shopify.com
- Shopify Inc. -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0b:db:e8:96:c8:c2:2f:16:26:01:78:e0:46:00:97:c1 was issued on by DigiCert Inc.
With 106 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Shopify Inc.
Organization:
Shopify Inc.
State / Province:
Ontario
Locality: Ottawa
Country: CA
Locality: Ottawa
Country: CA
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:db:e8:96:c8:c2:2f:16:26:01:78:e0:46:00:97:c1Serial Number (int): 15763338431037382112844970405918709697
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 9d:c7:68:7f:5a:63:78:f4:5d:ba:6b:62:0d:02:a6:9e:28:6a:7d:0a
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): 46:92:7b:a1:5f:82:1e:94:cb:f6:2f:d0:a7:28:c3:7e:84:59:34:ce
Fingerprint (sha256): 64:24:59:be:0b:90:cd:48:9e:55:46:4f:c7:5e:8b:f5:8a:f2:81:17:4d:7e:17:fa:de:a2:8e:30:73:e6:ea:3d
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g4.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g4.crl
Check the revocation status for certificate d.ssl.shopify.com
106
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for d.ssl.shopify.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
d.ssl.shopify.com
www.varesesarabande.com
www.spigen.com
us.kobobooks.com
gl.kobobooks.com
www.modaculture.com
www.everestbands.com
www.kaylaitsines.com
www.thetrendzvenue.com
www.laceylaneshop.com
ca.100percentpure.com
eu.100percentpure.com
uk.100percentpure.com
checkout.vikingmobil.com
checkout.28mobile.com
www.westwardleaning.com
www.tacticaldistributors.com
www.efcollection.com
www.matchatech.com
www.goenjoy.com
store-us.tomorrowsmodernboxes.com
store-eu.tomorrowsmodernboxes.com
store.tomorrowsmodernboxes.com
www.originalgrain.com
www.florencescoveljewelry.com
shop.florencescoveljewelry.co.uk
www.boardwalkbuy.co.uk
www.boardwalkbuy.com
www.brideside.com
www.snaak.com
www.seavees.com
store.naturalstatewholesale.com
www.dalesrawfoods.com
www.mahabis.com
www.lifx.com
www.lsgc.com
www.dentist.net
www.myrume.com
www.cannimed.ca
www.bonefroggunclub.com
www.mielleorganics.com
www.hipvan.com
www.audiopushshop.com
www.brycevineshop.com
www.canaansmithshop.com
www.dawesthebandshop.com
www.elbowmerch.com
www.elhefemerch.com
www.hoziershop.com
www.deathbatshop.com
www.jackieevanchoshop.com
www.janisjoplinshop.com
www.meghantrainorshop.com
www.ozzyshop.com
www.officialpanterashop.com
www.penaltyentshop.com
give.testwv.ca
www.boardwalkbuy.ca
www.mychoicesoftware.com
www.mmawarehouse.com
www.humbuckermusic.com
www.waistlanguage.com
www.downeastbasics.com
shop.ironclad.com
shop.spelldesigns.com
www.ashleybridget.de
www.shethinx.com
www.parachutehome.com
www.fittea.com
global.store.roli.com
eu.store.roli.com
uk.store.roli.com
shop.nyse.com
www.glamseamless.com
www.ministryofsupply.com
www.clothingarts.com
www.livingdeal.ca
www.gentlemansvapes.com
donation.worldvision.ca
checkout.worldvision.ca
www.pinchprovisions.ca
shop.malonesouliers.com
shop.hillaryclinton.com
www.bandowholesale.com
www.rockymountainsoap.com
www.arccosgolf.com
www.leadershipiq.com
www.fathersonsclothing.com
shop.lushfashionlounge.com
www.groundeffect.co.nz
ca.kobobooks.com
ca-fr.kobobooks.com
www.catperkins.com
www.mizzue.com.ph
www.mizzue.co.id
www.fendrihan.ca
store.quellrelief.com
supportkit.gia.edu
supportkit-cn.gia.edu
supportkit-jp.gia.edu
www.cafepod.com
www.primitivestarquiltshop.com
www.suavecitopomade.com
wholesale.suavecitopomade.com
www.pomade.com
www.mrbeard.com
www.varesesarabande.com
www.spigen.com
us.kobobooks.com
gl.kobobooks.com
www.modaculture.com
www.everestbands.com
www.kaylaitsines.com
www.thetrendzvenue.com
www.laceylaneshop.com
ca.100percentpure.com
eu.100percentpure.com
uk.100percentpure.com
checkout.vikingmobil.com
checkout.28mobile.com
www.westwardleaning.com
www.tacticaldistributors.com
www.efcollection.com
www.matchatech.com
www.goenjoy.com
store-us.tomorrowsmodernboxes.com
store-eu.tomorrowsmodernboxes.com
store.tomorrowsmodernboxes.com
www.originalgrain.com
www.florencescoveljewelry.com
shop.florencescoveljewelry.co.uk
www.boardwalkbuy.co.uk
www.boardwalkbuy.com
www.brideside.com
www.snaak.com
www.seavees.com
store.naturalstatewholesale.com
www.dalesrawfoods.com
www.mahabis.com
www.lifx.com
www.lsgc.com
www.dentist.net
www.myrume.com
www.cannimed.ca
www.bonefroggunclub.com
www.mielleorganics.com
www.hipvan.com
www.audiopushshop.com
www.brycevineshop.com
www.canaansmithshop.com
www.dawesthebandshop.com
www.elbowmerch.com
www.elhefemerch.com
www.hoziershop.com
www.deathbatshop.com
www.jackieevanchoshop.com
www.janisjoplinshop.com
www.meghantrainorshop.com
www.ozzyshop.com
www.officialpanterashop.com
www.penaltyentshop.com
give.testwv.ca
www.boardwalkbuy.ca
www.mychoicesoftware.com
www.mmawarehouse.com
www.humbuckermusic.com
www.waistlanguage.com
www.downeastbasics.com
shop.ironclad.com
shop.spelldesigns.com
www.ashleybridget.de
www.shethinx.com
www.parachutehome.com
www.fittea.com
global.store.roli.com
eu.store.roli.com
uk.store.roli.com
shop.nyse.com
www.glamseamless.com
www.ministryofsupply.com
www.clothingarts.com
www.livingdeal.ca
www.gentlemansvapes.com
donation.worldvision.ca
checkout.worldvision.ca
www.pinchprovisions.ca
shop.malonesouliers.com
shop.hillaryclinton.com
www.bandowholesale.com
www.rockymountainsoap.com
www.arccosgolf.com
www.leadershipiq.com
www.fathersonsclothing.com
shop.lushfashionlounge.com
www.groundeffect.co.nz
ca.kobobooks.com
ca-fr.kobobooks.com
www.catperkins.com
www.mizzue.com.ph
www.mizzue.co.id
www.fendrihan.ca
store.quellrelief.com
supportkit.gia.edu
supportkit-cn.gia.edu
supportkit-jp.gia.edu
www.cafepod.com
www.primitivestarquiltshop.com
www.suavecitopomade.com
wholesale.suavecitopomade.com
www.pomade.com
www.mrbeard.com
Other certificates including the domain name shopify.com
(limited to 100 certificates)
f4.shared.global.fastly.net
zh.shopify.com
ingress-imagery-us-central1-2.shopifycloud.com
statuspage.io
themes.shopify.com
l.ssl.shopify.com
merchandise.shopify.com
events.shopify.com
press.shopify.com
statuspage.io
dns-vetting1-jeffg-noah.map.fastly.net
statuspage.io
shopify-app-store.shopifycloud.com
o.ssl.shopify.com
statuspage.io
brochure2-staging12.shopifycloud.com
plusinfo.shopify.com
status.3dcart.com
savage-sign-on.shopifycloud.com
accounts.shopify.com
investor.shopify.com
meetups.shopify.com
projectruru.shopify.com
shopify.com
linkpop.com
chat.shopify.com
commerceplus.shopify.com
marketplace.shopify.com
next.shopify.com
shopify-classifieds.shopifycloud.com
ir.shopify.com
ssl.shopify.com
marketplace.shopify.com
store.shopify.com
secure03.lithium.com
dev.shopify.com
somethingorother.shopify.com
commerceplus.shopify.com
pins.shopify.com
statuspage.io
ssl.cdngc.net
sourcing-admin.shopify.com
cardreader.shopify.com
www.shopify.com
www.shopify.com
secure03.stage.lithium.com
p.ssl.shopify.com
pointofsale.shopify.com
bourgeois.shopifycloud.com
unicorn.shopify.com
upcoming12.shopify.com
sl.shopify.com
tashboard.shopify.com
growthcenter.shopify.com
secure03.stage.lithium.com
statuspage.io
*.b.ssl.fastly.net
gtm.shopify.com
secure03.lithium.com
statuspage.io
analytics.shopify.com
state-of-engage.shopify.com
collabs.shopify.com
unite-registration.shopify.com
photos.shopify.com
data-portal.shopifycloud.com
merch.shopify.com
plusacademy.shopify.com
www.shopify.com
burst.shopify.com
shopify-plus-meet-up.shopify.com
collabs.shopify.com
statuspage.io
privacy.shopify.com
r.ssl.fastly.net
counter.shopify.com
shopify-app-store.shopifycloud.com
statuspage.io
statuspage.io
collabs-merchant-staging.shopify.com
b.ssl.shopify.com
statuspage.io
shopify-app-store-staging.shopifycloud.com
sfn.shopify.com
growthcenter.shopify.com
bcs.shopify.com
statuspage.io
smiley-staging.shopify.com
secure03.lithium.com
statuspage.io
hardware.shopify.com
upcoming-pizx.shopify.com
shopify-classifieds.shopifycloud.com
ny.shopify.com
pursuit.shopify.com
cardreader-giveaway.shopifycloud.com
auth.data.shopify.com
hardware.shopify.com
statuspage.io
ssl.shopify.com
zh.shopify.com
ingress-imagery-us-central1-2.shopifycloud.com
statuspage.io
themes.shopify.com
l.ssl.shopify.com
merchandise.shopify.com
events.shopify.com
press.shopify.com
statuspage.io
dns-vetting1-jeffg-noah.map.fastly.net
statuspage.io
shopify-app-store.shopifycloud.com
o.ssl.shopify.com
statuspage.io
brochure2-staging12.shopifycloud.com
plusinfo.shopify.com
status.3dcart.com
savage-sign-on.shopifycloud.com
accounts.shopify.com
investor.shopify.com
meetups.shopify.com
projectruru.shopify.com
shopify.com
linkpop.com
chat.shopify.com
commerceplus.shopify.com
marketplace.shopify.com
next.shopify.com
shopify-classifieds.shopifycloud.com
ir.shopify.com
ssl.shopify.com
marketplace.shopify.com
store.shopify.com
secure03.lithium.com
dev.shopify.com
somethingorother.shopify.com
commerceplus.shopify.com
pins.shopify.com
statuspage.io
ssl.cdngc.net
sourcing-admin.shopify.com
cardreader.shopify.com
www.shopify.com
www.shopify.com
secure03.stage.lithium.com
p.ssl.shopify.com
pointofsale.shopify.com
bourgeois.shopifycloud.com
unicorn.shopify.com
upcoming12.shopify.com
sl.shopify.com
tashboard.shopify.com
growthcenter.shopify.com
secure03.stage.lithium.com
statuspage.io
*.b.ssl.fastly.net
gtm.shopify.com
secure03.lithium.com
statuspage.io
analytics.shopify.com
state-of-engage.shopify.com
collabs.shopify.com
unite-registration.shopify.com
photos.shopify.com
data-portal.shopifycloud.com
merch.shopify.com
plusacademy.shopify.com
www.shopify.com
burst.shopify.com
shopify-plus-meet-up.shopify.com
collabs.shopify.com
statuspage.io
privacy.shopify.com
r.ssl.fastly.net
counter.shopify.com
shopify-app-store.shopifycloud.com
statuspage.io
statuspage.io
collabs-merchant-staging.shopify.com
b.ssl.shopify.com
statuspage.io
shopify-app-store-staging.shopifycloud.com
sfn.shopify.com
growthcenter.shopify.com
bcs.shopify.com
statuspage.io
smiley-staging.shopify.com
secure03.lithium.com
statuspage.io
hardware.shopify.com
upcoming-pizx.shopify.com
shopify-classifieds.shopifycloud.com
ny.shopify.com
pursuit.shopify.com
cardreader-giveaway.shopifycloud.com
auth.data.shopify.com
hardware.shopify.com
statuspage.io
ssl.shopify.com
Certificate
The complete raw certificate details for d.ssl.shopify.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIOfDCCDWSgAwIBAgIQC9volsjCLxYmAXjgRgCXwTANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNTA0MDIwMDAwMDBaFw0xODA0MDYxMjAwMDBa MGMxCzAJBgNVBAYTAkNBMRAwDgYDVQQIEwdPbnRhcmlvMQ8wDQYDVQQHEwZPdHRh d2ExFTATBgNVBAoTDFNob3BpZnkgSW5jLjEaMBgGA1UEAxMRZC5zc2wuc2hvcGlm eS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ea4d1/h3UTrL C7CvxODI9j3VVLISUryHwWDhuYO2Q2DLlbhbR1/ijl4IfuU+sMCgAlXG6O4uKAur X2U2otfH6+9hQXFWQei5Z7nOp9T7sZ1GwNPfRLS6+ecj/h5ko8QYdhMybFuO7kbv sJLEeHw5slj/swd9XL75d3ZdeBsBiFbUNmSeLwSoyrtD51pboGXeT9VRNomX2miC hAyEqR6cTLZAClc7DGtuhHukxsa+JA3gp2+LmTP/rj4VEHjcW5HIM7vJY2zKjlx2 R3p5xfBKTEf2yH4J0HTtU7ys4BfLk8+Wv7G4dTXYjeKNwP/1GDxKeUaHBu56sY0e DPQ80c+RAgMBAAGjggsdMIILGTAfBgNVHSMEGDAWgBRRaP+QrwIHdTzM2WVkYqIS uFlyOzAdBgNVHQ4EFgQUncdof1pjePRdumtiDQKmnihqfQowgglXBgNVHREEgglO MIIJSoIRZC5zc2wuc2hvcGlmeS5jb22CF3d3dy52YXJlc2VzYXJhYmFuZGUuY29t gg53d3cuc3BpZ2VuLmNvbYIQdXMua29ib2Jvb2tzLmNvbYIQZ2wua29ib2Jvb2tz LmNvbYITd3d3Lm1vZGFjdWx0dXJlLmNvbYIUd3d3LmV2ZXJlc3RiYW5kcy5jb22C FHd3dy5rYXlsYWl0c2luZXMuY29tghZ3d3cudGhldHJlbmR6dmVudWUuY29tghV3 d3cubGFjZXlsYW5lc2hvcC5jb22CFWNhLjEwMHBlcmNlbnRwdXJlLmNvbYIVZXUu MTAwcGVyY2VudHB1cmUuY29tghV1ay4xMDBwZXJjZW50cHVyZS5jb22CGGNoZWNr b3V0LnZpa2luZ21vYmlsLmNvbYIVY2hlY2tvdXQuMjhtb2JpbGUuY29tghd3d3cu d2VzdHdhcmRsZWFuaW5nLmNvbYIcd3d3LnRhY3RpY2FsZGlzdHJpYnV0b3JzLmNv bYIUd3d3LmVmY29sbGVjdGlvbi5jb22CEnd3dy5tYXRjaGF0ZWNoLmNvbYIPd3d3 LmdvZW5qb3kuY29tgiFzdG9yZS11cy50b21vcnJvd3Ntb2Rlcm5ib3hlcy5jb22C IXN0b3JlLWV1LnRvbW9ycm93c21vZGVybmJveGVzLmNvbYIec3RvcmUudG9tb3Jy b3dzbW9kZXJuYm94ZXMuY29tghV3d3cub3JpZ2luYWxncmFpbi5jb22CHXd3dy5m bG9yZW5jZXNjb3ZlbGpld2VscnkuY29tgiBzaG9wLmZsb3JlbmNlc2NvdmVsamV3 ZWxyeS5jby51a4IWd3d3LmJvYXJkd2Fsa2J1eS5jby51a4IUd3d3LmJvYXJkd2Fs a2J1eS5jb22CEXd3dy5icmlkZXNpZGUuY29tgg13d3cuc25hYWsuY29tgg93d3cu c2VhdmVlcy5jb22CH3N0b3JlLm5hdHVyYWxzdGF0ZXdob2xlc2FsZS5jb22CFXd3 dy5kYWxlc3Jhd2Zvb2RzLmNvbYIPd3d3Lm1haGFiaXMuY29tggx3d3cubGlmeC5j b22CDHd3dy5sc2djLmNvbYIPd3d3LmRlbnRpc3QubmV0gg53d3cubXlydW1lLmNv bYIPd3d3LmNhbm5pbWVkLmNhghd3d3cuYm9uZWZyb2dndW5jbHViLmNvbYIWd3d3 Lm1pZWxsZW9yZ2FuaWNzLmNvbYIOd3d3LmhpcHZhbi5jb22CFXd3dy5hdWRpb3B1 c2hzaG9wLmNvbYIVd3d3LmJyeWNldmluZXNob3AuY29tghd3d3cuY2FuYWFuc21p dGhzaG9wLmNvbYIYd3d3LmRhd2VzdGhlYmFuZHNob3AuY29tghJ3d3cuZWxib3dt ZXJjaC5jb22CE3d3dy5lbGhlZmVtZXJjaC5jb22CEnd3dy5ob3ppZXJzaG9wLmNv bYIUd3d3LmRlYXRoYmF0c2hvcC5jb22CGXd3dy5qYWNraWVldmFuY2hvc2hvcC5j b22CF3d3dy5qYW5pc2pvcGxpbnNob3AuY29tghl3d3cubWVnaGFudHJhaW5vcnNo b3AuY29tghB3d3cub3p6eXNob3AuY29tght3d3cub2ZmaWNpYWxwYW50ZXJhc2hv cC5jb22CFnd3dy5wZW5hbHR5ZW50c2hvcC5jb22CDmdpdmUudGVzdHd2LmNhghN3 d3cuYm9hcmR3YWxrYnV5LmNhghh3d3cubXljaG9pY2Vzb2Z0d2FyZS5jb22CFHd3 dy5tbWF3YXJlaG91c2UuY29tghZ3d3cuaHVtYnVja2VybXVzaWMuY29tghV3d3cu d2Fpc3RsYW5ndWFnZS5jb22CFnd3dy5kb3duZWFzdGJhc2ljcy5jb22CEXNob3Au aXJvbmNsYWQuY29tghVzaG9wLnNwZWxsZGVzaWducy5jb22CFHd3dy5hc2hsZXli cmlkZ2V0LmRlghB3d3cuc2hldGhpbnguY29tghV3d3cucGFyYWNodXRlaG9tZS5j b22CDnd3dy5maXR0ZWEuY29tghVnbG9iYWwuc3RvcmUucm9saS5jb22CEWV1LnN0 b3JlLnJvbGkuY29tghF1ay5zdG9yZS5yb2xpLmNvbYINc2hvcC5ueXNlLmNvbYIU d3d3LmdsYW1zZWFtbGVzcy5jb22CGHd3dy5taW5pc3RyeW9mc3VwcGx5LmNvbYIU d3d3LmNsb3RoaW5nYXJ0cy5jb22CEXd3dy5saXZpbmdkZWFsLmNhghd3d3cuZ2Vu dGxlbWFuc3ZhcGVzLmNvbYIXZG9uYXRpb24ud29ybGR2aXNpb24uY2GCF2NoZWNr b3V0LndvcmxkdmlzaW9uLmNhghZ3d3cucGluY2hwcm92aXNpb25zLmNhghdzaG9w Lm1hbG9uZXNvdWxpZXJzLmNvbYIXc2hvcC5oaWxsYXJ5Y2xpbnRvbi5jb22CFnd3 dy5iYW5kb3dob2xlc2FsZS5jb22CGXd3dy5yb2NreW1vdW50YWluc29hcC5jb22C End3dy5hcmNjb3Nnb2xmLmNvbYIUd3d3LmxlYWRlcnNoaXBpcS5jb22CGnd3dy5m YXRoZXJzb25zY2xvdGhpbmcuY29tghpzaG9wLmx1c2hmYXNoaW9ubG91bmdlLmNv bYIWd3d3Lmdyb3VuZGVmZmVjdC5jby5ueoIQY2Eua29ib2Jvb2tzLmNvbYITY2Et ZnIua29ib2Jvb2tzLmNvbYISd3d3LmNhdHBlcmtpbnMuY29tghF3d3cubWl6enVl LmNvbS5waIIQd3d3Lm1penp1ZS5jby5pZIIQd3d3LmZlbmRyaWhhbi5jYYIVc3Rv cmUucXVlbGxyZWxpZWYuY29tghJzdXBwb3J0a2l0LmdpYS5lZHWCFXN1cHBvcnRr aXQtY24uZ2lhLmVkdYIVc3VwcG9ydGtpdC1qcC5naWEuZWR1gg93d3cuY2FmZXBv ZC5jb22CHnd3dy5wcmltaXRpdmVzdGFycXVpbHRzaG9wLmNvbYIXd3d3LnN1YXZl Y2l0b3BvbWFkZS5jb22CHXdob2xlc2FsZS5zdWF2ZWNpdG9wb21hZGUuY29tgg53 d3cucG9tYWRlLmNvbYIPd3d3Lm1yYmVhcmQuY29tMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwdQYDVR0fBG4wbDA0oDKgMIYu aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3NoYTItaGEtc2VydmVyLWc0LmNybDA0 oDKgMIYuaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NoYTItaGEtc2VydmVyLWc0 LmNybDBCBgNVHSAEOzA5MDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRw czovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGDBggrBgEFBQcBAQR3MHUwJAYIKwYB BQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBNBggrBgEFBQcwAoZBaHR0 cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkhpZ2hBc3N1cmFu Y2VTZXJ2ZXJDQS5jcnQwDAYDVR0TAQH/BAIwADANBgkqhkiG9w0BAQsFAAOCAQEA i5eaq4VgE59Db9/ZUpHKP13l67x92mZu2gajeqj9Bq5WEC4+3nsWciNn/rKRopII TGb2LHOLrt8Azao5clcCFlD2jnQUc3duoJ+6LyBSrKIxaOMcntoyLdbUOT1uaNKx +oJ0mShE/8UvPk1g+tFVmmg5aUfCiXHHZplM0MmWqv5Kexq3OupUvC3ntZd4DXcF hvfDp8ZqCK0pwmvQbEl5NCLrY2AZpLlHLQxqZ6GDa5xagNhrzIHdBKcdDWA9tjY2 cvEw7wexCGTmBPiuiCej7rB/6rn5IvcctMsdIY8hzC6CT0Bx8Crcdk4jpUWolzTM sab2Ja1Ia98y/xkUDqhUNQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunmuHdf4d1E6ywuwr8Tg yPY91VSyElK8h8Fg4bmDtkNgy5W4W0df4o5eCH7lPrDAoAJVxujuLigLq19lNqLX x+vvYUFxVkHouWe5zqfU+7GdRsDT30S0uvnnI/4eZKPEGHYTMmxbju5G77CSxHh8 ObJY/7MHfVy++Xd2XXgbAYhW1DZkni8EqMq7Q+daW6Bl3k/VUTaJl9pogoQMhKke nEy2QApXOwxrboR7pMbGviQN4Kdvi5kz/64+FRB43FuRyDO7yWNsyo5cdkd6ecXw SkxH9sh+CdB07VO8rOAXy5PPlr+xuHU12I3ijcD/9Rg8SnlGhwbuerGNHgz0PNHP kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15763338431037382112844970405918709697 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-06 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ottawa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Shopify Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'd.ssl.shopify.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23540327438471719026460121986223197695916457535317145801470787880890045672901856824923116292386325197098475952110074493720539299568220372561649823330715555763116506282209578543261371936169005628350350807499852894161781923759381107599828429428742808566779054142516202962806282137732201358182061657599434911146191937603615752853840226360187758074995151910555095340136726680605183324228572212673283867193097454316382186843641800273629041266731246940133986509055353203797110416049116714201093761128972413182834967081747827559007708672471036274091045133962408044673885674836352313170207376653019335457610829338551721774993 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9dc7687f5a6378f45dba6b620d02a69e286a7d0a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2382 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'd.ssl.shopify.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.varesesarabande.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.spigen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'us.kobobooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gl.kobobooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.modaculture.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.everestbands.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kaylaitsines.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thetrendzvenue.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.laceylaneshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ca.100percentpure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eu.100percentpure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uk.100percentpure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'checkout.vikingmobil.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'checkout.28mobile.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.westwardleaning.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tacticaldistributors.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.efcollection.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.matchatech.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.goenjoy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store-us.tomorrowsmodernboxes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store-eu.tomorrowsmodernboxes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.tomorrowsmodernboxes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.originalgrain.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.florencescoveljewelry.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.florencescoveljewelry.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.boardwalkbuy.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.boardwalkbuy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.brideside.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.snaak.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.seavees.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.naturalstatewholesale.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dalesrawfoods.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mahabis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lifx.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lsgc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dentist.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.myrume.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cannimed.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bonefroggunclub.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mielleorganics.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hipvan.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.audiopushshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.brycevineshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.canaansmithshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dawesthebandshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.elbowmerch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.elhefemerch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hoziershop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.deathbatshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jackieevanchoshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.janisjoplinshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.meghantrainorshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ozzyshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.officialpanterashop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.penaltyentshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'give.testwv.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.boardwalkbuy.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mychoicesoftware.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mmawarehouse.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.humbuckermusic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.waistlanguage.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.downeastbasics.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.ironclad.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.spelldesigns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ashleybridget.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.shethinx.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.parachutehome.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fittea.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'global.store.roli.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eu.store.roli.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uk.store.roli.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.nyse.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.glamseamless.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ministryofsupply.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.clothingarts.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.livingdeal.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gentlemansvapes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'donation.worldvision.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'checkout.worldvision.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pinchprovisions.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.malonesouliers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.hillaryclinton.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bandowholesale.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rockymountainsoap.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.arccosgolf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.leadershipiq.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fathersonsclothing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.lushfashionlounge.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.groundeffect.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ca.kobobooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ca-fr.kobobooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.catperkins.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mizzue.com.ph' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mizzue.co.id' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fendrihan.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.quellrelief.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'supportkit.gia.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'supportkit-cn.gia.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'supportkit-jp.gia.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cafepod.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.primitivestarquiltshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.suavecitopomade.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wholesale.suavecitopomade.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pomade.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mrbeard.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008b979aab8560139f436fdfd95291ca3f5de5ebbc7dda666eda06a37aa8fd06ae56102e3ede7b16722367feb291a292084c66f62c738baedf00cdaa397257021650f68e741473776ea09fba2f2052aca23168e31c9eda322dd6d4393d6e68d2b1fa8274992844ffc52f3e4d60fad1559a68396947c28971c766994cd0c996aafe4a7b1ab73aea54bc2de7b597780d770586f7c3a7c66a08ad29c26bd06c49793422eb636019a4b9472d0c6a67a1836b9c5a80d86bcc81dd04a71d0d603db6363672f130ef07b10864e604f8ae8827a3eeb07feab9f922f71cb4cb1d218f21cc2e824f4071f02adc764e23a545a89734ccb1a6f625ad486bdf32ff19140ea85435