www.lululemon.com
- Lululemon Athletica Canada inc. -
Issued by GeoTrust SSL CA
About this certificate
This digital certificate with serial number 02:89:2e was issued on by GeoTrust, Inc..
With 38 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- SAN DNSName contains duplicate values (awslabs certlint)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Lululemon Athletica Canada inc.
Company registration number:
66cFmjNYWS287mOQGKZZLinfFI6Xa0sR
Organization: Lululemon Athletica Canada inc.
Organization unit: IT Infrastructure
Organization: Lululemon Athletica Canada inc.
Organization unit: IT Infrastructure
State / Province:
British Columbia
Locality: Vancouver
Country: CA
Locality: Vancouver
Country: CA
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:89:2eSerial Number (int): 166190
Serial Number lenght: 18 bits, 3 octets
SubjectKeyId: b0:3e:e7:15:bb:3e:db:fa:4e:09:bd:ce:08:76:73:4c:16:69:62:52
AuthorityKeyId: 42:79:54:1b:61:cd:55:2b:3e:63:d5:3c:48:57:f5:9f:fb:45:ce:4a
Fingerprint (sha1): 51:18:bc:a5:9b:91:3e:22:0d:d9:3f:5e:7c:3b:b9:d4:0e:05:9a:f6
Fingerprint (sha256): 64:a7:73:58:c9:24:55:f0:bb:93:4b:25:07:b3:ed:df:74:3c:26:c4:67:9f:b5:51:63:a4:45:dd:24:e1:05:a4
Issuing Certificate URL: http://gtssl-aia.geotrust.com/gtssl.crt
Revocation information
OCSP Server: http://gtssl-ocsp.geotrust.comCRL Distribution Point: http://gtssl-crl.geotrust.com/crls/gtssl.crl
Check the revocation status for certificate www.lululemon.com
38
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.lululemon.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.lululemon.co.uk
cdn.lululemon.co.uk
static.lululemon.co.uk
static-global.lululemon.co.uk
images.lululemon.co.uk
www.eu.lululemon.com
cdn.eu.lululemon.com
static.eu.lululemon.com
static-global.eu.lululemon.com
images.eu.lululemon.com
shop.lululemon.com
lululemon.com
pnimages.lululemon.com
cdn.lululemon.com
static.lululemon.com
images.lululemon.com
shop.ivivva.com
www.ivivva.com
cdn.ivivva.com
static.ivivva.com
images.ivivva.com
www.lululemon.com.au
cdn.lululemon.com.au
static.lululemon.com.au
static-global.lululemon.com.au
images.lululemon.com.au
www.lululemon.co.nz
cdn.lululemon.co.nz
static.lululemon.co.nz
static-global.lululemon.co.nz
images.lululemon.co.nz
www.lululemon.com.hk
cdn.lululemon.com.hk
static.lululemon.com.hk
static-global.lululemon.com.hk
images.lululemon.com.hk
www.lululemon.com
lululemon.com
cdn.lululemon.co.uk
static.lululemon.co.uk
static-global.lululemon.co.uk
images.lululemon.co.uk
www.eu.lululemon.com
cdn.eu.lululemon.com
static.eu.lululemon.com
static-global.eu.lululemon.com
images.eu.lululemon.com
shop.lululemon.com
lululemon.com
pnimages.lululemon.com
cdn.lululemon.com
static.lululemon.com
images.lululemon.com
shop.ivivva.com
www.ivivva.com
cdn.ivivva.com
static.ivivva.com
images.ivivva.com
www.lululemon.com.au
cdn.lululemon.com.au
static.lululemon.com.au
static-global.lululemon.com.au
images.lululemon.com.au
www.lululemon.co.nz
cdn.lululemon.co.nz
static.lululemon.co.nz
static-global.lululemon.co.nz
images.lululemon.co.nz
www.lululemon.com.hk
cdn.lululemon.com.hk
static.lululemon.com.hk
static-global.lululemon.com.hk
images.lululemon.com.hk
www.lululemon.com
lululemon.com
Other certificates including the domain name lululemon.com
(limited to 100 certificates)
vanity22.jiveon.com
*.strategicsales.lululemon.com
lululemon.com
stage.lululemon.com
lululemon.com
vanity22.jiveon.com
stage.lululemon.com
eu.lululemon.com
*.lululemon.com
leapfrog-ssl-28.gcs-web.com
whatwelove.lululemon.com
secure5s.scene7.com
*.lululemon.com
imperva.com
cdn.lululemon.com.au
test.preprod-apis.lululemon.com
smetrics.lululemon.com
vanity22.jiveon.com
cdn.lululemon.com.au
preview.apis.lululemon.com
grin.lululemon.com
sso-signing.lululemon.com
sni.cloudflaressl.com
lululemon.com.au
lululemon.com
stage.lululemon.com
sni.cloudflaressl.com
ehc-dev.lululemon.com
*.lululemon.com
imperva.com
akamai-san90.exacttarget.com
imperva.com
stage.lululemon.com
vanity22.jiveon.com
leapfrog-ssl-28.gcs-web.com
leapfrog-ssl-28.gcs-web.com
click.e.lululemon.com
stage.lululemon.com
whatwelove.lululemon.com
whatwelove.lululemon.com
akamai-san90.exacttarget.com
*.lllatg.com
vanity22.jiveon.com
investor.lululemon.com
lululemon.com
lululemon.ca
ehc-dev.lululemon.com
delivery.lululemon.com
lululemon.com
cdn.lululemon.com.au
eu.lululemon.com
vanity22.jiveon.com
smetrics.lululemon.com
secure5s.scene7.com
secure5s.scene7.com
ehc-dev.lululemon.com
akamai-san90.exacttarget.com
cloudflare-sandbox.lululemon.com
lll.flow.anaplan.qa.lululemon.com
sni.cloudflaressl.com
www.lululemon.com
repair.lululemon.com
secure5s.scene7.com
lululemon.com
ehc-dev.lululemon.com
test.preprod-apis.lululemon.com
vanity22.jiveon.com
leapfrog-ssl-28.gcs-web.com
*.atg.lululemon.com
leapfrog-ssl-28.gcs-web.com
*.lululemon.com
apim-stage.tokenapi.lululemon.com
cdn.lululemon.com.au
stage.lululemon.com
theghostrace.lululemon.com
grin.lululemon.com
vanity22.jiveon.com
prod.apis.lllext.com
lululemon.com
owa.lululemon.com
leapfrog-ssl-28.gcs-web.com
www.lululemon.com
ehc-dev.lululemon.com
cdn.lululemon.com.au
vanity22.jiveon.com
lululemon.ca
vanity22.jiveon.com
ehc-dev.lululemon.com
sso-encryption.lululemon.com
www.lululemon.com
eu.lululemon.com
lululemon.com
apim-stage.tokenapi.lululemon.com
prod.apis.lllext.com
vanity22.jiveon.com
www.lululemon.com
sni.cloudflaressl.com
www.lululemon.com
cloud.e.lululemon.com
view.e.lululemon.com
*.strategicsales.lululemon.com
lululemon.com
stage.lululemon.com
lululemon.com
vanity22.jiveon.com
stage.lululemon.com
eu.lululemon.com
*.lululemon.com
leapfrog-ssl-28.gcs-web.com
whatwelove.lululemon.com
secure5s.scene7.com
*.lululemon.com
imperva.com
cdn.lululemon.com.au
test.preprod-apis.lululemon.com
smetrics.lululemon.com
vanity22.jiveon.com
cdn.lululemon.com.au
preview.apis.lululemon.com
grin.lululemon.com
sso-signing.lululemon.com
sni.cloudflaressl.com
lululemon.com.au
lululemon.com
stage.lululemon.com
sni.cloudflaressl.com
ehc-dev.lululemon.com
*.lululemon.com
imperva.com
akamai-san90.exacttarget.com
imperva.com
stage.lululemon.com
vanity22.jiveon.com
leapfrog-ssl-28.gcs-web.com
leapfrog-ssl-28.gcs-web.com
click.e.lululemon.com
stage.lululemon.com
whatwelove.lululemon.com
whatwelove.lululemon.com
akamai-san90.exacttarget.com
*.lllatg.com
vanity22.jiveon.com
investor.lululemon.com
lululemon.com
lululemon.ca
ehc-dev.lululemon.com
delivery.lululemon.com
lululemon.com
cdn.lululemon.com.au
eu.lululemon.com
vanity22.jiveon.com
smetrics.lululemon.com
secure5s.scene7.com
secure5s.scene7.com
ehc-dev.lululemon.com
akamai-san90.exacttarget.com
cloudflare-sandbox.lululemon.com
lll.flow.anaplan.qa.lululemon.com
sni.cloudflaressl.com
www.lululemon.com
repair.lululemon.com
secure5s.scene7.com
lululemon.com
ehc-dev.lululemon.com
test.preprod-apis.lululemon.com
vanity22.jiveon.com
leapfrog-ssl-28.gcs-web.com
*.atg.lululemon.com
leapfrog-ssl-28.gcs-web.com
*.lululemon.com
apim-stage.tokenapi.lululemon.com
cdn.lululemon.com.au
stage.lululemon.com
theghostrace.lululemon.com
grin.lululemon.com
vanity22.jiveon.com
prod.apis.lllext.com
lululemon.com
owa.lululemon.com
leapfrog-ssl-28.gcs-web.com
www.lululemon.com
ehc-dev.lululemon.com
cdn.lululemon.com.au
vanity22.jiveon.com
lululemon.ca
vanity22.jiveon.com
ehc-dev.lululemon.com
sso-encryption.lululemon.com
www.lululemon.com
eu.lululemon.com
lululemon.com
apim-stage.tokenapi.lululemon.com
prod.apis.lllext.com
vanity22.jiveon.com
www.lululemon.com
sni.cloudflaressl.com
www.lululemon.com
cloud.e.lululemon.com
view.e.lululemon.com
Certificate
The complete raw certificate details for www.lululemon.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIeDCCB2CgAwIBAgIDAokuMA0GCSqGSIb3DQEBBQUAMEAxCzAJBgNVBAYTAlVT MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEYMBYGA1UEAxMPR2VvVHJ1c3QgU1NM IENBMB4XDTEzMDkyNTAxMjIzMVoXDTE0MDgzMDIyMzQxMVowgckxKTAnBgNVBAUT IDY2Y0Ztak5ZV1MyODdtT1FHS1paTGluZkZJNlhhMHNSMQswCQYDVQQGEwJDQTEZ MBcGA1UECBMQQnJpdGlzaCBDb2x1bWJpYTESMBAGA1UEBxMJVmFuY291dmVyMSgw JgYDVQQKEx9MdWx1bGVtb24gQXRobGV0aWNhIENhbmFkYSBpbmMuMRowGAYDVQQL ExFJVCBJbmZyYXN0cnVjdHVyZTEaMBgGA1UEAxMRd3d3Lmx1bHVsZW1vbi5jb20w ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwHJA9mJ/frkv7PiPuUYhs E2t6ycbkQ8kOobEDn7yZJ9OaVnbOxiIGT/1SGF8nQepdo1R6UDARJ2YC771tI5yH ZGjy11RbdC63aS7ZBDjG/Ed7VF+B5rs5fULgtiaoNZqbIGW6HNxl5NNWoH+vxMTx uKP7JZX5rLvAZmctfspxpd4eqVlxrhtgmmWjqStGmDPGhe007QzQRXU+qeMdm4CN ineLzQCbDdHSc76MaSkDBI42RC3Xhw51iSf/YTWwZW1Fj+cp4sDX8OgOWdoLB+FW 8GywiPZM0IZqwnA0n4sIZLiFPZ6Ihj6Ux/UA8FeYlvtIakOjLIQwJ4ldGEILI2yZ AgMBAAGjggTvMIIE6zAfBgNVHSMEGDAWgBRCeVQbYc1VKz5j1TxIV/Wf+0XOSjAO BgNVHQ8BAf8EBAMCBLAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIID bAYDVR0RBIIDYzCCA1+CE3d3dy5sdWx1bGVtb24uY28udWuCE2Nkbi5sdWx1bGVt b24uY28udWuCFnN0YXRpYy5sdWx1bGVtb24uY28udWuCHXN0YXRpYy1nbG9iYWwu bHVsdWxlbW9uLmNvLnVrghZpbWFnZXMubHVsdWxlbW9uLmNvLnVrghR3d3cuZXUu bHVsdWxlbW9uLmNvbYIUY2RuLmV1Lmx1bHVsZW1vbi5jb22CF3N0YXRpYy5ldS5s dWx1bGVtb24uY29tgh5zdGF0aWMtZ2xvYmFsLmV1Lmx1bHVsZW1vbi5jb22CF2lt YWdlcy5ldS5sdWx1bGVtb24uY29tghJzaG9wLmx1bHVsZW1vbi5jb22CDWx1bHVs ZW1vbi5jb22CFnBuaW1hZ2VzLmx1bHVsZW1vbi5jb22CEWNkbi5sdWx1bGVtb24u Y29tghRzdGF0aWMubHVsdWxlbW9uLmNvbYIUaW1hZ2VzLmx1bHVsZW1vbi5jb22C D3Nob3AuaXZpdnZhLmNvbYIOd3d3Lml2aXZ2YS5jb22CDmNkbi5pdml2dmEuY29t ghFzdGF0aWMuaXZpdnZhLmNvbYIRaW1hZ2VzLml2aXZ2YS5jb22CFHd3dy5sdWx1 bGVtb24uY29tLmF1ghRjZG4ubHVsdWxlbW9uLmNvbS5hdYIXc3RhdGljLmx1bHVs ZW1vbi5jb20uYXWCHnN0YXRpYy1nbG9iYWwubHVsdWxlbW9uLmNvbS5hdYIXaW1h Z2VzLmx1bHVsZW1vbi5jb20uYXWCE3d3dy5sdWx1bGVtb24uY28ubnqCE2Nkbi5s dWx1bGVtb24uY28ubnqCFnN0YXRpYy5sdWx1bGVtb24uY28ubnqCHXN0YXRpYy1n bG9iYWwubHVsdWxlbW9uLmNvLm56ghZpbWFnZXMubHVsdWxlbW9uLmNvLm56ghR3 d3cubHVsdWxlbW9uLmNvbS5oa4IUY2RuLmx1bHVsZW1vbi5jb20uaGuCF3N0YXRp Yy5sdWx1bGVtb24uY29tLmhrgh5zdGF0aWMtZ2xvYmFsLmx1bHVsZW1vbi5jb20u aGuCF2ltYWdlcy5sdWx1bGVtb24uY29tLmhrghF3d3cubHVsdWxlbW9uLmNvbYIN bHVsdWxlbW9uLmNvbTA9BgNVHR8ENjA0MDKgMKAuhixodHRwOi8vZ3Rzc2wtY3Js Lmdlb3RydXN0LmNvbS9jcmxzL2d0c3NsLmNybDAdBgNVHQ4EFgQUsD7nFbs+2/pO Cb3OCHZzTBZpYlIwDAYDVR0TAQH/BAIwADBvBggrBgEFBQcBAQRjMGEwKgYIKwYB BQUHMAGGHmh0dHA6Ly9ndHNzbC1vY3NwLmdlb3RydXN0LmNvbTAzBggrBgEFBQcw AoYnaHR0cDovL2d0c3NsLWFpYS5nZW90cnVzdC5jb20vZ3Rzc2wuY3J0MEwGA1Ud IARFMEMwQQYKYIZIAYb4RQEHNjAzMDEGCCsGAQUFBwIBFiVodHRwOi8vd3d3Lmdl b3RydXN0LmNvbS9yZXNvdXJjZXMvY3BzMA0GCSqGSIb3DQEBBQUAA4IBAQAiHVsU bnv11epDN+NYyVXbkwRxYat9hCT5XwykvAdL7BIYyFoW4JqxUq8HIzbpp7uVTYd5 CUG6GCSf6tfbtEOsOaLAhV2Cu5J/OH3OM7jP6igDx9hElaIBTV76VmbJ7lhXYnyR Y6nLbkopSKtm/PP2tis2QGIUHafl+nAzZzNW9uaomuE/tSXUBV+X0HjZ5t8j2Izu 2aHgrWrKSV6Y9oYfssgfRp/u5sHsuTFl8Tf6+GmAwyiSzcv8NSLUpWgV2ZtFSWw8 /7WlAFuy6QPb3Kwugp0JRBp7g0azyeEARtrFeO2Eyjaca0B1doJQOw/GKFc8AMOK ZptgQwW906evJySn -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsByQPZif365L+z4j7lGI bBNresnG5EPJDqGxA5+8mSfTmlZ2zsYiBk/9UhhfJ0HqXaNUelAwESdmAu+9bSOc h2Ro8tdUW3Qut2ku2QQ4xvxHe1Rfgea7OX1C4LYmqDWamyBluhzcZeTTVqB/r8TE 8bij+yWV+ay7wGZnLX7KcaXeHqlZca4bYJplo6krRpgzxoXtNO0M0EV1PqnjHZuA jYp3i80Amw3R0nO+jGkpAwSONkQt14cOdYkn/2E1sGVtRY/nKeLA1/DoDlnaCwfh VvBssIj2TNCGasJwNJ+LCGS4hT2eiIY+lMf1APBXmJb7SGpDoyyEMCeJXRhCCyNs mQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 166190 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-09-25 01:22:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-08-30 22:34:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '66cFmjNYWS287mOQGKZZLinfFI6Xa0sR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'British Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Vancouver' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Lululemon Athletica Canada inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT Infrastructure' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.lululemon.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22232026831193750923770509994871601440948428535823768847137750280553046906215304260192786915928791881894244411331085915116272197436064312868442274693908446072017208248600084253514143528823193253015639625095406187430728575373541671809844507182617038426731714222244286417718949514448063347649377694641749624835790732760890867330120313675421472724580038917832895857336764685199368344059914586303583805171926703916470776245740183646987195317698620400155078075412055215849544427615648837612681976132779491036351338783011393253486940277115953354609605616023530973903451486559572320350075995665418300662197454685831474408601 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4279541b61cd552b3e63d53c4857f59ffb45ce4a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (867 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lululemon.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.lululemon.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.lululemon.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static-global.lululemon.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.lululemon.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.eu.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.eu.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.eu.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static-global.eu.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.eu.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pnimages.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.ivivva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ivivva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.ivivva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.ivivva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.ivivva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lululemon.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.lululemon.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.lululemon.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static-global.lululemon.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.lululemon.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lululemon.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.lululemon.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.lululemon.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static-global.lululemon.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.lululemon.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lululemon.com.hk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.lululemon.com.hk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.lululemon.com.hk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static-global.lululemon.com.hk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.lululemon.com.hk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lululemon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lululemon.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl-crl.geotrust.com/crls/gtssl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b03ee715bb3edbfa4e09bdce0876734c16696252 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl-aia.geotrust.com/gtssl.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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