ucw.mpsa.com
Issued by Gandi Standard SSL CA 2
About this certificate
This digital certificate with serial number 59:98:2a:c6:fa:26:be:3d:95:37:1e:ce:eb:86:79:ea was issued on by Gandi.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ucw.mpsa.com
Gandi
Organization:
Gandi
State / Province:
Paris
Locality: Paris
Country: FR
Locality: Paris
Country: FR
This certificate will expire on
Certificate Details
Serial Number (hex): 59:98:2a:c6:fa:26:be:3d:95:37:1e:ce:eb:86:79:eaSerial Number (int): 119091388373152427704588966441389554154
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 8a:82:f1:d1:5d:89:46:44:78:54:b7:12:33:71:5e:9e:3b:bd:2f:86
AuthorityKeyId: b3:90:a7:d8:c9:af:4e:cd:61:3c:9f:7c:ad:5d:7f:41:fd:69:30:ea
Fingerprint (sha1): 92:1b:64:16:e6:e2:6b:49:56:c1:1c:b2:c1:74:3b:11:3a:a9:ab:83
Fingerprint (sha256): 66:c8:e4:c1:f5:7b:b3:d6:c0:b1:14:a5:92:51:7e:e8:3d:55:d2:16:7d:b8:44:39:0a:bb:13:e4:b7:8c:7e:32
Issuing Certificate URL: http://crt.usertrust.com/GandiStandardSSLCA2.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/GandiStandardSSLCA2.crl
Check the revocation status for certificate ucw.mpsa.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ucw.mpsa.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ucw.mpsa.com
portal.ercs.ucw.mpsa.com
portal.ucw.mpsa.com
portal.ercs.ucw.mpsa.com
portal.ucw.mpsa.com
Other certificates including the domain name mpsa.com
(limited to 100 certificates)
ican.mpsa.com
*.servicesgp.mpsa.com
*.jerome.mpsa.com
internetpcr.mpsa.com
*.auth.mpsa.com
e-invoice-test.services.mpsa.com
wapdev.mpsa.com
hybridexchsmtp.mpsa.com
*.servicesgp.mpsa.com
sip-hr.mpsa.com
sip-be.mpsa.com
sip-hr.mpsa.com
sip-be.mpsa.com
guest.mpsa.com
*.servicesgp.mpsa.com
sip-hr.mpsa.com
*.servicesgp.mpsa.com
wapprod.mpsa.com
hybridexchsmtp.mpsa.com
e-invoice-prod.services.mpsa.com
*.servicesgp.mpsa.com
sip-hr.mpsa.com
*.auth.mpsa.com
sip-be.mpsa.com
*.servicesgp.mpsa.com
sip-be.mpsa.com
*.servicesgp.mpsa.com
sip-hr.mpsa.com
*.servicesgp.mpsa.com
aqt.mpsa.com
*.mpsa.com
vpn-fr-preprod.mpsa.com
internetpcr.mpsa.com
*.mpsa.com
*.mpsa.com
*.mpsa.com
eu-est2-vpn.mpsa.com
sip-be.mpsa.com
dev.ucw.mpsa.com
guest.mpsa.com
wapprod.mpsa.com
wappreprod.mpsa.com
*.mpsa.com
idfed-preprod.mpsa.com
*.servicesgp.mpsa.com
sip-be.mpsa.com
preprod.ucw.mpsa.com
idfed.mpsa.com
e-invoice-prod.services.mpsa.com
sip-be.mpsa.com
sip.mpsa.com
guest.mpsa.com
*.auth.mpsa.com
*.mpsa.com
internetpcr.mpsa.com
Wappreprod.mpsa.com
testjerome.mpsa.com
itdealersupport.pre.mpsa.com
internetpcr.mpsa.com
wapprod.mpsa.com
ican.mpsa.com
sip-hr.mpsa.com
*.github.mpsa.com
*.mpsa.com
testDavid.mpsa.com
sip.mpsa.com
*.mpsa.com
mail1.mpsa.com
*.servicesgp.mpsa.com
ucw.mpsa.com
*.mpsa.com
guest.mpsa.com
internetpcr.mpsa.com
sip.mpsa.com
*.mpsa.com
sip-be.mpsa.com
fcagroup.com.br
e-invoice-prod.services.mpsa.com
wapprod.mpsa.com
sip-hr.mpsa.com
*.mpsa.com
*.testDavid.mpsa.com
sip.mpsa.com
sip-be.mpsa.com
wapprod.mpsa.com
*.servicesgp.mpsa.com
*.mpsa.com
guest.mpsa.com
e-invoice-prod.services.mpsa.com
sip-be.mpsa.com
*.github.mpsa.com
*.mpsa.com
psabox.mpsa.com
*.auth.mpsa.com
sip-be.mpsa.com
sip.mpsa.com
sip-hr.mpsa.com
mzppan03.mpsa.com
*.github.mpsa.com
wapdev.mpsa.com
*.servicesgp.mpsa.com
*.jerome.mpsa.com
internetpcr.mpsa.com
*.auth.mpsa.com
e-invoice-test.services.mpsa.com
wapdev.mpsa.com
hybridexchsmtp.mpsa.com
*.servicesgp.mpsa.com
sip-hr.mpsa.com
sip-be.mpsa.com
sip-hr.mpsa.com
sip-be.mpsa.com
guest.mpsa.com
*.servicesgp.mpsa.com
sip-hr.mpsa.com
*.servicesgp.mpsa.com
wapprod.mpsa.com
hybridexchsmtp.mpsa.com
e-invoice-prod.services.mpsa.com
*.servicesgp.mpsa.com
sip-hr.mpsa.com
*.auth.mpsa.com
sip-be.mpsa.com
*.servicesgp.mpsa.com
sip-be.mpsa.com
*.servicesgp.mpsa.com
sip-hr.mpsa.com
*.servicesgp.mpsa.com
aqt.mpsa.com
*.mpsa.com
vpn-fr-preprod.mpsa.com
internetpcr.mpsa.com
*.mpsa.com
*.mpsa.com
*.mpsa.com
eu-est2-vpn.mpsa.com
sip-be.mpsa.com
dev.ucw.mpsa.com
guest.mpsa.com
wapprod.mpsa.com
wappreprod.mpsa.com
*.mpsa.com
idfed-preprod.mpsa.com
*.servicesgp.mpsa.com
sip-be.mpsa.com
preprod.ucw.mpsa.com
idfed.mpsa.com
e-invoice-prod.services.mpsa.com
sip-be.mpsa.com
sip.mpsa.com
guest.mpsa.com
*.auth.mpsa.com
*.mpsa.com
internetpcr.mpsa.com
Wappreprod.mpsa.com
testjerome.mpsa.com
itdealersupport.pre.mpsa.com
internetpcr.mpsa.com
wapprod.mpsa.com
ican.mpsa.com
sip-hr.mpsa.com
*.github.mpsa.com
*.mpsa.com
testDavid.mpsa.com
sip.mpsa.com
*.mpsa.com
mail1.mpsa.com
*.servicesgp.mpsa.com
ucw.mpsa.com
*.mpsa.com
guest.mpsa.com
internetpcr.mpsa.com
sip.mpsa.com
*.mpsa.com
sip-be.mpsa.com
fcagroup.com.br
e-invoice-prod.services.mpsa.com
wapprod.mpsa.com
sip-hr.mpsa.com
*.mpsa.com
*.testDavid.mpsa.com
sip.mpsa.com
sip-be.mpsa.com
wapprod.mpsa.com
*.servicesgp.mpsa.com
*.mpsa.com
guest.mpsa.com
e-invoice-prod.services.mpsa.com
sip-be.mpsa.com
*.github.mpsa.com
*.mpsa.com
psabox.mpsa.com
*.auth.mpsa.com
sip-be.mpsa.com
sip.mpsa.com
sip-hr.mpsa.com
mzppan03.mpsa.com
*.github.mpsa.com
wapdev.mpsa.com
Certificate
The complete raw certificate details for ucw.mpsa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgIQWZgqxvomvj2VNx7O64Z56jANBgkqhkiG9w0BAQsFADBf MQswCQYDVQQGEwJGUjEOMAwGA1UECBMFUGFyaXMxDjAMBgNVBAcTBVBhcmlzMQ4w DAYDVQQKEwVHYW5kaTEgMB4GA1UEAxMXR2FuZGkgU3RhbmRhcmQgU1NMIENBIDIw HhcNMjMwNjI2MDAwMDAwWhcNMjQwNzA1MjM1OTU5WjAXMRUwEwYDVQQDEwx1Y3cu bXBzYS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoJi75cbIT xA/kZgxbFCWNHaS4JmTeLtYNaGKHzGLYC9IXWcNR2rjXavoGWJOuZMU3+9M0P5yl y+s49UwfyRyGikV+IO5z3wOUvGywmC2AjUdQESF6YK2DHjTmdN05UeVHwUIFs7F7 ssCHOghWFL7ovaNopHGciyIbbW8mIwTyfmQE9qM/CY62SaojGCgCondD1pH7bYGJ 31YLvyMYF05i3hwWwlqW1ZyjXW0pchiFPz6d5dw7/ZmRHZKA9LH3bfFJlor0Ezi3 lpk43030zz/74UgJRRZ+8JY+mmgG+nRjKD4TzKGHuWXv1W3JndxerfQfWRT+ejbd CI+AkjFTINpZAgMBAAGjggNPMIIDSzAfBgNVHSMEGDAWgBSzkKfYya9OzWE8n3yt XX9B/Wkw6jAdBgNVHQ4EFgQUioLx0V2JRkR4VLcSM3Fenju9L4YwDgYDVR0PAQH/ BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMEsGA1UdIAREMEIwNgYLKwYBBAGyMQECAhowJzAlBggrBgEFBQcCARYZaHR0 cHM6Ly9jcHMudXNlcnRydXN0LmNvbTAIBgZngQwBAgEwQQYDVR0fBDowODA2oDSg MoYwaHR0cDovL2NybC51c2VydHJ1c3QuY29tL0dhbmRpU3RhbmRhcmRTU0xDQTIu Y3JsMHMGCCsGAQUFBwEBBGcwZTA8BggrBgEFBQcwAoYwaHR0cDovL2NydC51c2Vy dHJ1c3QuY29tL0dhbmRpU3RhbmRhcmRTU0xDQTIuY3J0MCUGCCsGAQUFBzABhhlo dHRwOi8vb2NzcC51c2VydHJ1c3QuY29tMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFp AWcAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYj4ys1tAAAE AwBHMEUCIQCPS0DiRJCmtkvRqDTOKdth/ya0EaMOp2Ihbfxn7qijeAIgPQrSsAAD EGoE/EjnGdze0lEbltMv1zle+Ll/Bgb+NlwAdgDatr9rP7W2Ip+bwrtca+hwkXFs u1GEhTS9pD0wSNf7qwAAAYj4ys3JAAAEAwBHMEUCIQCo/Ti9omejtxjoDC8nVToI k/MgQKixePXgBFj/H+TeAwIgSV3T3+IeVLKqvYceXr6IFH06uWf9mz4asXHOVaWt hSIAdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYj4ys2aAAAE AwBGMEQCICppFQr02fll8lPfnBzRqXLBC8R76dZhOaJwRQ+zO+VrAiBl+LnOlUZ/ tY9meTiY9G1g8xSo5z1QbNuykPSK4LlEqjBGBgNVHREEPzA9ggx1Y3cubXBzYS5j b22CGHBvcnRhbC5lcmNzLnVjdy5tcHNhLmNvbYITcG9ydGFsLnVjdy5tcHNhLmNv bTANBgkqhkiG9w0BAQsFAAOCAQEAgXLeSd404istDWU2eUPIRmxnAx2hjJBURJiR JZclH/PF7kdg5rFL9iGhc9UvUAder3m7R29ZRCIrFMopvT2p4SAlt6cryPsnm01B YMxzglrp5I67l09Hudp7sXe07qdr20yj7Y/F/T26mxH1tsMUUD2wrVjo2FkTqKeq Zc10ZEwt+mEIn4H+wsgxRYPdhKAnT4tEcg+GKUlywvDyH/2Iya431+SZ5trmEF6W wkXaUWaLhq4mr1SdydKAVy+IEPgrTqQuRVZVHN+OT/JxrN2NpdleU4V7QSgyq/+o WvwJ+m/i5Vz5oTGUPY2e4vnemtuXO+JyuHFS+Uf4UMJnB1Cb8Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCYu+XGyE8QP5GYMWxQl jR2kuCZk3i7WDWhih8xi2AvSF1nDUdq412r6BliTrmTFN/vTND+cpcvrOPVMH8kc hopFfiDuc98DlLxssJgtgI1HUBEhemCtgx405nTdOVHlR8FCBbOxe7LAhzoIVhS+ 6L2jaKRxnIsiG21vJiME8n5kBPajPwmOtkmqIxgoAqJ3Q9aR+22Bid9WC78jGBdO Yt4cFsJaltWco11tKXIYhT8+neXcO/2ZkR2SgPSx923xSZaK9BM4t5aZON9N9M8/ ++FICUUWfvCWPppoBvp0Yyg+E8yhh7ll79VtyZ3cXq30H1kU/no23QiPgJIxUyDa WQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 119091388373152427704588966441389554154 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi Standard SSL CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ucw.mpsa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21226864216814633640254921357291929404662732504514542044092946436265627433600931555726907724140862269088452407824216531013641022228081294258754748941028861606869253674769026360771726713085576073775947959856135054652020831393255065812957261764231743064391350013348617086825910342111823650489604708443037279830235438682760621748008080242178387495211270301413198157607027582709541305402038093164844113870568972305066309406425871475026722364820631610598344459182900032240116608621755305983916110434372123976070871088407518079190443851397317974914790860005398407538074711165466544144145263521730833396584735567018639546969 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b390a7d8c9af4ecd613c9f7cad5d7f41fd6930ea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8a82f1d15d8946447854b71233715e9e3bbd2f86 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.26 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/GandiStandardSSLCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/GandiStandardSSLCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ucw.mpsa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.ercs.ucw.mpsa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.ucw.mpsa.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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