caid.uhccommunityplan.com

- UnitedHealth Group Inc. -

Issued by COMODO RSA Organization Validation Secure Server CA

About this certificate

This digital certificate with serial number 57:24:2e:65:61:65:1e:7f:0d:91:43:fe:58:68:7a:f5 was issued on by COMODO CA Limited.

With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

UnitedHealth Group Inc.

Organization: UnitedHealth Group Inc.
Organization unit: Optum Tech ETP & Info Srvcs
Organization unit: Multi-Domain SSL
Address: 9900 Bren Road East
Postal code: 55343
State / Province: Minnesota
Locality: Minnetonka
Country: US

COMODO CA Limited

Organization: COMODO CA Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): 57:24:2e:65:61:65:1e:7f:0d:91:43:fe:58:68:7a:f5
Serial Number (int): 115830699343223408129956080650958699253
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 7c:a3:fe:84:e2:3d:21:91:c9:fe:08:56:7f:b2:2a:fa:6f:8c:a1:4b
AuthorityKeyId: 9a:f3:2b:da:cf:ad:4f:b6:2f:bb:2a:48:48:2a:12:b7:1b:42:c1:24

Fingerprint (sha1): 97:c1:89:db:b2:f0:6b:1b:ed:08:e5:31:60:fa:52:5b:89:5e:5c:a0
Fingerprint (sha256): 67:42:3b:87:c2:2b:5c:88:89:36:78:19:34:2c:ce:30:85:41:b7:64:ca:b5:a1:77:5d:07:c5:8d:b5:da:e1:04

Issuing Certificate URL: http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.comodoca.com
CRL Distribution Point: http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl

Check the revocation status for certificate caid.uhccommunityplan.com

9

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for caid.uhccommunityplan.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

caid.uhccommunityplan.com
dsnp.uhccommunityplan.com
info.aarpmedicareplans.com
info.uhcmedicaresolutions.com
ma.aarpmedicareplans.com
ma.uhcmedicaresolutions.com
myuhcplans.com
pdp.aarpmedicareplans.com
www.myuhcplans.com

Other certificates including the domain name uhccommunityplan.com

(limited to 100 certificates)
sps-stage.optum.com
www.uhccommunityplan.com
sps-stage.optum.com
caid.uhccommunityplan.com
sps.optum.com
uhccommunityplan.com
www.uhccommunityplan.com
sps-stage.optum.com
sps-stage.optum.com
sps.optum.com
sps-stage.optum.com
caid.uhccommunityplan.com
sps-stage.optum.com
cloud.news.uhccommunityplan.com
sps-stage.optum.com
microsites-prod-externalprodv2.aemprod.optum.com
sps-stage.optum.com
sps-stage.optum.com
www.uhccommunityplan.com
www.uhccommunityplan.com
info.uhccommunityplan.com
sps.optum.com
sps-stage.optum.com
caid.uhccommunityplan.com
uhccommunityplan.uhc.com
info.uhccommunityplan.com
sps-test.optum.com
caid.uhccommunityplan.com
sps-stage.optum.com
www.uhccommunityplan.com
sps-stage.optum.com
sps-stage.optum.com
sps-stage.optum.com
sps-stage.optum.com
sps.optum.com
sps-stage.optum.com
sps.optum.com
es.uhccommunityplan.com
microsites-prod-externalprodv5.aemprod.optum.com
uhccommunityplan.uhc.com
es.uhccommunityplan.com
sps.optum.com
caid.uhccommunityplan.com
www.uhccommunityplan.com
caid.uhccommunityplan.com
sps.optum.com
sps.optum.com
www.uhccommunityplan.com
sps-test.optum.com
sps-stage.optum.com
info.uhccommunityplan.com
www.uhccommunityplan.com
www.uhccommunityplan.com
sps-stage.optum.com
sps-stage.optum.com
sps-stage.optum.com
www.uhccommunityplan.com
click.news.uhccommunityplan.com
microsites-prod-externalprodv3.aemprod.optum.com
uhccommunityplan.com
sps-test.optum.com
www.uhccommunityplan.com
sps-stage.optum.com
akamai-san51.exacttarget.com
sps-stage.optum.com
akamai-san51.exacttarget.com
www.uhccommunityplan.com
sps.optum.com
sps-stage.optum.com
www.uhccommunityplan.com
www.uhccommunityplan.com
sps.optum.com
sps-stage.optum.com
sps-stage.optum.com
sps-test.optum.com
dsnp.uhccommunityplan.com
sps.optum.com
www.uhccommunityplan.com
sps-dev.optum.com
uhccommunityplan.uhc.com
www.uhccommunityplan.com
www.uhccommunityplan.com
sps-dev.optum.com
sps-dev.optum.com
akamai-san51.exacttarget.com
sps.optum.com
www.uhccommunityplan.com
sps.optum.com
www.uhccommunityplan.com
caid.uhccommunityplan.com
sps.optum.com
sps.optum.com
dsnp.uhccommunityplan.com
sps.optum.com
sps-stage.optum.com
sps-stage.optum.com
caid.uhccommunityplan.com
pages.news.uhccommunityplan.com
akamai-san51.exacttarget.com
www.uhccommunityplan.com

Certificate

The complete raw certificate details for caid.uhccommunityplan.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIHyjCCBrKgAwIBAgIQVyQuZWFlHn8NkUP+WGh69TANBgkqhkiG9w0BAQsFADCB
ljELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G
A1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxPDA6BgNV
BAMTM0NPTU9ETyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl
cnZlciBDQTAeFw0xODA5MjYwMDAwMDBaFw0xOTA5MjYyMzU5NTlaMIHrMQswCQYD
VQQGEwJVUzEOMAwGA1UEERMFNTUzNDMxEjAQBgNVBAgTCU1pbm5lc290YTETMBEG
A1UEBxMKTWlubmV0b25rYTEcMBoGA1UECRMTOTkwMCBCcmVuIFJvYWQgRWFzdDEg
MB4GA1UEChMXVW5pdGVkSGVhbHRoIEdyb3VwIEluYy4xJDAiBgNVBAsMG09wdHVt
IFRlY2ggRVRQICYgSW5mbyBTcnZjczEZMBcGA1UECxMQTXVsdGktRG9tYWluIFNT
TDEiMCAGA1UEAxMZY2FpZC51aGNjb21tdW5pdHlwbGFuLmNvbTCCASIwDQYJKoZI
hvcNAQEBBQADggEPADCCAQoCggEBAKGD4cr2qYM+xUZSrIT/Ksz8uCRKueGWKTZU
33euW2c5Fy2FG/+aDqgD6i0YkUhE7paZEaUt84rVZ4iuUKsB8DKepT1xJM+e87vW
Lz4k/27r22EpgcyHxmNjWGFpgvuBkC2kKxH53VzZadF2umNGEJFT90chnZK4BZHK
Q+IdY6Z3pRALVQlGhhMjbTocsv2x6oUXtie6hshhpnwVreOzZ28Q7xBu4nb8GoK+
lv/pJ1vnqNikG95Z9vVOPCJC2hHJzNCJZ7QG+9qQK7PqvTqbhB+9Fgnema14On5L
42H5qv0GXAulzuIywEyFS/uYUIJEWO42AQFrV2qE0c9HykJrSasCAwEAAaOCA7sw
ggO3MB8GA1UdIwQYMBaAFJrzK9rPrU+2L7sqSEgqErcbQsEkMB0GA1UdDgQWBBR8
o/6E4j0hkcn+CFZ/sir6b4yhSzAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIw
ADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwUAYDVR0gBEkwRzA7Bgwr
BgEEAbIxAQIBAwQwKzApBggrBgEFBQcCARYdaHR0cHM6Ly9zZWN1cmUuY29tb2Rv
LmNvbS9DUFMwCAYGZ4EMAQICMFoGA1UdHwRTMFEwT6BNoEuGSWh0dHA6Ly9jcmwu
Y29tb2RvY2EuY29tL0NPTU9ET1JTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1
cmVTZXJ2ZXJDQS5jcmwwgYsGCCsGAQUFBwEBBH8wfTBVBggrBgEFBQcwAoZJaHR0
cDovL2NydC5jb21vZG9jYS5jb20vQ09NT0RPUlNBT3JnYW5pemF0aW9uVmFsaWRh
dGlvblNlY3VyZVNlcnZlckNBLmNydDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3Au
Y29tb2RvY2EuY29tMIHyBgNVHREEgeowgeeCGWNhaWQudWhjY29tbXVuaXR5cGxh
bi5jb22CGWRzbnAudWhjY29tbXVuaXR5cGxhbi5jb22CGmluZm8uYWFycG1lZGlj
YXJlcGxhbnMuY29tgh1pbmZvLnVoY21lZGljYXJlc29sdXRpb25zLmNvbYIYbWEu
YWFycG1lZGljYXJlcGxhbnMuY29tghttYS51aGNtZWRpY2FyZXNvbHV0aW9ucy5j
b22CDm15dWhjcGxhbnMuY29tghlwZHAuYWFycG1lZGljYXJlcGxhbnMuY29tghJ3
d3cubXl1aGNwbGFucy5jb20wggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDuS723
dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAWYUOhk1AAAEAwBIMEYCIQCE
4vB8T5zMzBd/Y/byp1n5SjFb5PHX6H5tFslj0tU3wAIhAP/uncSOuMFYuo49eE0W
QzSTt/WeurEyzduSQsSn2vBYAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV5
5hB7zFYAAAFmFDakIAAABAMARzBFAiEA2xhUVI0yOmwVY6IY9wGukLJ2bi+lavwA
YxZlj8g4ciYCIERRjLX4X8IitOrIpc2DMdmQidLDYfrufUul435h7G3eMA0GCSqG
SIb3DQEBCwUAA4IBAQC1eLTzT4IGl/xmyXMUEjbmI7vkMy+gbsaph9ZXgZKE7fot
+Qfd7Dnj9pkcXIMySzMd6rXifXjuui6bp6A8jcLmsVZdIJNvM6Lxf6oZKd6IUV7X
nIG0knvOM2ZQJTzhJHPDHiQQhB8bn26Yzms7E+e9PxxzbJXYjPKuc2yOdx3lvTOP
jAbBwvLur8z8F91ihZKtWBe6+gwWtktWiHkBgW9Yo6nNhGuT5yfRXbfN4cVJRtOW
J2v8x2AagUGkObA1TGbgHfbW29wFvWDfYG8TS+X8hp6JfQCojkUQiRfHv/nWULz8
ochq5Lcu/hqJKMp/3y44GGO3PZP3GCML9TkTUztX
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYPhyvapgz7FRlKshP8q
zPy4JEq54ZYpNlTfd65bZzkXLYUb/5oOqAPqLRiRSETulpkRpS3zitVniK5QqwHw
Mp6lPXEkz57zu9YvPiT/buvbYSmBzIfGY2NYYWmC+4GQLaQrEfndXNlp0Xa6Y0YQ
kVP3RyGdkrgFkcpD4h1jpnelEAtVCUaGEyNtOhyy/bHqhRe2J7qGyGGmfBWt47Nn
bxDvEG7idvwagr6W/+knW+eo2KQb3ln29U48IkLaEcnM0IlntAb72pArs+q9OpuE
H70WCd6ZrXg6fkvjYfmq/QZcC6XO4jLATIVL+5hQgkRY7jYBAWtXaoTRz0fKQmtJ
qwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 115830699343223408129956080650958699253
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO RSA Organization Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-26 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-26 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '55343'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnetonka'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '9900 Bren Road East'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UnitedHealth Group Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Optum Tech ETP & Info Srvcs'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Multi-Domain SSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'caid.uhccommunityplan.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20389400539156456234893103752273178674695774072951348351423307991856698366648191783167347345849490225303350624201965596573115936257221440758109754761929277649488970710767139994413654207227015028229033692452115302554572326105617206763127389559495299838949218333682750354999484343554599091705960271274468827129051697584835385684513864073321406607277909870956839680489362441546926614211627970407920356452053232333413481460973434016025544742978859081111502739741425895823334199495070292042028233551439051306695100694948030257766147636596920071971912832375186654471838159568562369471675440196128793672728428006586956073387
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9af32bdacfad4fb62fbb2a48482a12b71b42c124
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7ca3fe84e23d2191c9fe08567fb22afa6f8ca14b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (127 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (234 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'caid.uhccommunityplan.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dsnp.uhccommunityplan.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info.aarpmedicareplans.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info.uhcmedicaresolutions.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ma.aarpmedicareplans.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ma.uhcmedicaresolutions.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myuhcplans.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pdp.aarpmedicareplans.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.myuhcplans.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb00000166143a1935000004030048304602210084e2f07c4f9ccccc177f63f6f2a759f94a315be4f1d7e87e6d16c963d2d537c0022100ffee9dc48eb8c158ba8e3d784d16433493b7f59ebab132cddb9242c4a7daf058007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001661436a4200000040300473045022100db1854548d323a6c1563a218f701ae90b2766e2fa56afc006316658fc8387226022044518cb5f85fc222b4eac8a5cd8331d99089d2c361faee7d4ba5e37e61ec6dde
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00b578b4f34f820697fc66c973141236e623bbe4332fa06ec6a987d657819284edfa2df907ddec39e3f6991c5c83324b331deab5e27d78eeba2e9ba7a03c8dc2e6b1565d20936f33a2f17faa1929de88515ed79c81b4927bce336650253ce12473c31e2410841f1b9f6e98ce6b3b13e7bd3f1c736c95d88cf2ae736c8e771de5bd338f8c06c1c2f2eeafccfc17dd628592ad5817bafa0c16b64b56887901816f58a3a9cd846b93e727d15db7cde1c54946d396276bfcc7601a8141a439b0354c66e01df6d6dbdc05bd60df606f134be5fc869e897d00a88e45108917c7bff9d650bcfca1c86ae4b72efe1a8928ca7fdf2e381863b73d93f718230bf53913533b57