*.allina.com
- Allina Health System -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 03:a4:59:5c:0c:cb:34:60:68:a9:60:31:9e:35:13:f5 was issued on by DigiCert Inc.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Allina Health System
Organization:
Allina Health System
State / Province:
Minnesota
Locality: Minneapolis
Country: US
Locality: Minneapolis
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a4:59:5c:0c:cb:34:60:68:a9:60:31:9e:35:13:f5Serial Number (int): 4841033099559615061501328152304358389
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 72:26:72:b2:e4:03:a2:35:40:c5:52:02:86:1a:81:09:6c:b1:26:a3
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 46:df:b0:d0:b3:66:53:f8:a5:3d:64:10:ae:9d:e6:17:97:58:b8:85
Fingerprint (sha256): 65:e8:87:70:77:54:a0:6e:ff:20:94:fc:a8:a8:52:52:0d:bc:61:66:77:40:27:9f:65:cb:4c:a7:96:c2:0a:db
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate *.allina.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.allina.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.allina.com
*.allinahealth.org
allina.com
allinahealth.org
*.allinahealth.org
allina.com
allinahealth.org
Other certificates including the domain name allina.com
(limited to 100 certificates)
donate.allina.com
securelink.allina.com
accwebsecure.allina.com
remoteapps.allina.com
donate.allina.com
vid-polycom-rpadext-01.Allina.com
donate.allina.com
akn.allina.com
epiccarelink.allina.com
*.allina.com
mail.allina.com
webmail.allina.com
devsoapproxy.allina.com
eft.allina.com
tstsecurelink.allina.com
adfs.allina.com
adfs.allina.com
devexcellianmobile.allina.com
*.rsasso.allina.com
remoteapps.allina.com
webmail.allina.com
webproxy.allina.com
adfs.allina.com
webproxy.allina.com
learn.allina.com
apps.allina.com
mainspring.allina.com
polyregistration.allina.com
learn.allina.com
epiccarelink.allina.com
remoteapps.allina.com
*.allina.com
sip.allina.com
websched01.allina.com
ww2.allina.com
excellianweb.allina.com
psservices.allina.com
eft.allina.com
www.allina.com
vip-afstoreint.allina.com
radev.allina.com
mychart.allina.com
accwebsecure.allina.com
webproxy.allina.com
remoteapps.allina.com
webmail.allina.com
learn.allina.com
*.allina.com
sip.allina.com
vpn.allina.com
ww2.allina.com
www.allina.com
webmail.allina.com
devwebproxy.allina.com
webproxy.allina.com
*.allina.com
devsoapproxy.allina.com
donate.allina.com
health.allina.com
vdiprod.allina.com
akn.allina.com
health.allina.com
handheld.excellian.net
excellianmobile.allina.com
identityiq.allina.com
epiccarelink.allina.com
adfs.allina.com
mychart.allina.com
donate.allina.com
accwebsecure.allina.com
adfs.allina.com
*.allina.com
remoteapps.allina.com
vdidev.allina.com
vdidev.allina.com
apps.allina.com
radev.allina.com
*.allina.com
fmpsrv02.allina.com
hybrid.allina.com
webcarf.allina.com
mdcisedev03.allina.com
eft.allina.com
apps.allina.com
webcarf.allina.com
psrecruit.allina.com
sip.allina.com
sip.allina.com
excellianweb.allina.com
remoteapps.allina.com
*.allina.com
eft.allina.com
securelink.allina.com
devsoapproxy.allina.com
websched01.allina.com
devsoapproxy.allina.com
learn.allina.com
remoteapps.allina.com
learn.allina.com
*.allina.com
securelink.allina.com
accwebsecure.allina.com
remoteapps.allina.com
donate.allina.com
vid-polycom-rpadext-01.Allina.com
donate.allina.com
akn.allina.com
epiccarelink.allina.com
*.allina.com
mail.allina.com
webmail.allina.com
devsoapproxy.allina.com
eft.allina.com
tstsecurelink.allina.com
adfs.allina.com
adfs.allina.com
devexcellianmobile.allina.com
*.rsasso.allina.com
remoteapps.allina.com
webmail.allina.com
webproxy.allina.com
adfs.allina.com
webproxy.allina.com
learn.allina.com
apps.allina.com
mainspring.allina.com
polyregistration.allina.com
learn.allina.com
epiccarelink.allina.com
remoteapps.allina.com
*.allina.com
sip.allina.com
websched01.allina.com
ww2.allina.com
excellianweb.allina.com
psservices.allina.com
eft.allina.com
www.allina.com
vip-afstoreint.allina.com
radev.allina.com
mychart.allina.com
accwebsecure.allina.com
webproxy.allina.com
remoteapps.allina.com
webmail.allina.com
learn.allina.com
*.allina.com
sip.allina.com
vpn.allina.com
ww2.allina.com
www.allina.com
webmail.allina.com
devwebproxy.allina.com
webproxy.allina.com
*.allina.com
devsoapproxy.allina.com
donate.allina.com
health.allina.com
vdiprod.allina.com
akn.allina.com
health.allina.com
handheld.excellian.net
excellianmobile.allina.com
identityiq.allina.com
epiccarelink.allina.com
adfs.allina.com
mychart.allina.com
donate.allina.com
accwebsecure.allina.com
adfs.allina.com
*.allina.com
remoteapps.allina.com
vdidev.allina.com
vdidev.allina.com
apps.allina.com
radev.allina.com
*.allina.com
fmpsrv02.allina.com
hybrid.allina.com
webcarf.allina.com
mdcisedev03.allina.com
eft.allina.com
apps.allina.com
webcarf.allina.com
psrecruit.allina.com
sip.allina.com
sip.allina.com
excellianweb.allina.com
remoteapps.allina.com
*.allina.com
eft.allina.com
securelink.allina.com
devsoapproxy.allina.com
websched01.allina.com
devsoapproxy.allina.com
learn.allina.com
remoteapps.allina.com
learn.allina.com
*.allina.com
Certificate
The complete raw certificate details for *.allina.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG5jCCBc6gAwIBAgIQA6RZXAzLNGBoqWAxnjUT9TANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMjEwMTcwMDAwMDBa Fw0yMzExMTcyMzU5NTlaMG0xCzAJBgNVBAYTAlVTMRIwEAYDVQQIEwlNaW5uZXNv dGExFDASBgNVBAcTC01pbm5lYXBvbGlzMR0wGwYDVQQKExRBbGxpbmEgSGVhbHRo IFN5c3RlbTEVMBMGA1UEAwwMKi5hbGxpbmEuY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEA2NC/i6cIv1aRcNHtIYFmh2wNzXsGWZkB5NhCbY3+8Cpx sBoWM5pCuTRbPMQM1w2CqiGy/xEb/TEotrG67GbgW8UnjMU4axCWEptY+IrS7Puu VAaS1Fd13ucCoX6CyRvimbumOGJC57YoUutxtD3pDzz6CjpOPcLjWXi57qNPuIsf YcR0d3rQ5IZpKrunMcfXW+vXpd+LuAhvILynOKwu1jobuwHT/3EHVcMMpeeI6PWb wIjzPArch4UVcJqEwtE84s509//SZ4KLp8DR6tT7DP8Y8sHCuZ+syFyMIlU6NbW4 6g0Lm3wpspVAY3j/9LPH/PbDZecr+Vc6umYrFILG6wIDAQABo4IDnjCCA5owHwYD VR0jBBgwFoAUt2ui6qiqhIx56rTaD5iyxZV2ufQwHQYDVR0OBBYEFHImcrLkA6I1 QMVSAoYagQlssSajMEkGA1UdEQRCMECCDCouYWxsaW5hLmNvbYISKi5hbGxpbmFo ZWFsdGgub3JnggphbGxpbmEuY29tghBhbGxpbmFoZWFsdGgub3JnMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgY8GA1UdHwSB hzCBhDBAoD6gPIY6aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExT UlNBU0hBMjU2MjAyMENBMS00LmNybDBAoD6gPIY6aHR0cDovL2NybDQuZGlnaWNl cnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS00LmNybDA+BgNVHSAE NzA1MDMGBmeBDAECAjApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0 LmNvbS9DUFMwfwYIKwYBBQUHAQEEczBxMCQGCCsGAQUFBzABhhhodHRwOi8vb2Nz cC5kaWdpY2VydC5jb20wSQYIKwYBBQUHMAKGPWh0dHA6Ly9jYWNlcnRzLmRpZ2lj ZXJ0LmNvbS9EaWdpQ2VydFRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcnQwCQYDVR0T BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYA6D7Q2j71BjUy51covIlr yQPTy9ERa+zraeF3fW0GvW4AAAGD5hvtggAABAMARzBFAiBwEYbN328H4iIronhV FbdAYzsHN7Fs3kuU3R129AY/DQIhAKcHRKXeTwrwD31NwrqcoMmCqcg09BZUFjYF a4M9XLTyAHYAs3N3B+GEUPhjhtYFqdwRCUp5LbFnDAuH3PADDnk2pZoAAAGD5hvt 4gAABAMARzBFAiEA6IVzjNuNfQK/rqsZHjgldFUFPYji3b6KlPYuV1WzXN8CIAqW khZYOBuEgG3/bAdwWMqnDvCstIeE3txG3QK+URTNAHYAtz77JN+cTbp18jnFulj0 bF38Qs96nzXEnh0JgSXttJkAAAGD5hvt1gAABAMARzBFAiBiSyORGCCLvsIdjzeK heFukHWafWc4QSF7v/BbtvXuGwIhAKMk0MV2VuyLzICaCqet0/REQlT/GGq98rur HuPZS2mzMA0GCSqGSIb3DQEBCwUAA4IBAQCgKj1wZabM13g6yZuofbEoADl32DwT qSOecY2DWrIsKz8sgoKdgzkGaaRZ0iRVgWqQm8E9Uokg1rGO9dr1yIfx28HT3Riw 7JH/L2O6dxwlDOsll+WHAWKYCq7MQ8Vb+g7RLxiZZcNxJaF5jXkqsJUdvQmhAytz kRFerPbIkXaQerXNJ++50gzocXgibIuWISHmb9OYqNQN5KlhOH1BZ7NckE3zAxSm /LzYebczhSxBhTUM1RQdBayMZ8ccA0qiLJne4iVWl/ftIXWSc2WlVSzTMCcB7F9p TP1o7+Ny7dUc11ONIGhtO/4eykMKjuNUJuX/upaSBO1cS3ad4V0Q6Hgc -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2NC/i6cIv1aRcNHtIYFm h2wNzXsGWZkB5NhCbY3+8CpxsBoWM5pCuTRbPMQM1w2CqiGy/xEb/TEotrG67Gbg W8UnjMU4axCWEptY+IrS7PuuVAaS1Fd13ucCoX6CyRvimbumOGJC57YoUutxtD3p Dzz6CjpOPcLjWXi57qNPuIsfYcR0d3rQ5IZpKrunMcfXW+vXpd+LuAhvILynOKwu 1jobuwHT/3EHVcMMpeeI6PWbwIjzPArch4UVcJqEwtE84s509//SZ4KLp8DR6tT7 DP8Y8sHCuZ+syFyMIlU6NbW46g0Lm3wpspVAY3j/9LPH/PbDZecr+Vc6umYrFILG 6wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4841033099559615061501328152304358389 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minneapolis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Allina Health System' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.allina.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27370411458793606984132458838205789309279983188019663731425755249141538623980665844372535782024629793629817423867250964064111861319445491907393775914937607919335196278325531781925118368461315780903519760898530016096330941113629097111618238575983617102678640000110429370391880406719143667582973237894727039772297057242506351606499103395300651973932791858556706830964263739954028328567466021147643583231482196275436608893227518479335995718798439486370618126802771381661334865261639505604369402241180359708448681381830810382113840044113516915367417041376736548842067521547547039142572582253430623544230035685422397572843 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 722672b2e403a23540c55202861a81096cb126a3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.allina.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.allinahealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allina.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allinahealth.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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