hqexcas.moen.com
- Moen Incorporated -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 08:66:5f:a9:d7:95:4c:31:a5:22:05:43:7d:30:4d:de was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Moen Incorporated
Organization:
Moen Incorporated
Organization unit: Information Technology
Organization unit: Information Technology
State / Province:
Ohio
Locality: North Olmsted
Country: US
Locality: North Olmsted
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:66:5f:a9:d7:95:4c:31:a5:22:05:43:7d:30:4d:deSerial Number (int): 11165378531041458095057901586173939166
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ca:6d:05:d9:9f:52:81:ae:5a:4e:ba:41:66:aa:99:8c:38:23:db:bc
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 83:a4:0e:ac:6b:2d:38:05:81:9d:b1:9e:1b:c4:d0:9d:d2:28:6d:d7
Fingerprint (sha256): 67:53:9f:53:11:11:e5:1a:af:b3:bc:30:0a:48:a8:46:c3:03:36:d4:70:49:35:6b:9d:a9:e1:0f:e1:0d:26:06
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate hqexcas.moen.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hqexcas.moen.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
autodiscover.moen.com
hqexcas.moen.com
hqexcas.moen.com
Other certificates including the domain name moen.com
(limited to 100 certificates)
extranet.moen.com
extranetqa.moen.com
wiki.moen.com
mdm2.moen.com
plumberpartnerrewards.moen.com
customernet.moen.com
cnshcas.moen.com
mdm.moen.com
moenesourcingqa.moen.com
customernet.moen.com
intellisite.moen.com
customernet.moen.com
h353.moen.com
vpn.moen.com
webmail.moen.com
www.moen.com
accessfbhs.moen.com
hqexcas.moen.com
extranet.moen.com
mdm.moen.com
www.moen.com
vtc.moen.com
www.moen.com
etc.moen.com
extranetqa.moen.com
password.moen.com
www.moen.com
register.moen.com
secureftp.moen.com
mdmap.moen.com
vpn.fbgpg.com
secureftp.moen.com
supplynet.moen.com
hqcas.moen.com
www.moen.com
password.fbgpg.com
www.moen.com
vpn.moen.com
www.moen.com
extranetqa.moen.com
etc.moen.com
extranet.moen.com
solutions.moen.com
mpdap.moen.com
secureftp.moen.com
extranetqa.moen.com
vtc.moen.com
salesnet.moen.com
h353.moen.com
solutions.moen.com
customernet.moen.com
salesnet.moen.com
hqexcas.moen.com
moenesourcing.moen.com
smetrics.moen.com
mdm.moen.com
www.moen.com
supplynet.moen.com
www.moen.com
extranet.moen.com
evm.moen.com
register.moen.com
mdm2.moen.com
moenesourcing.moen.com
password.fbgpg.com
launchpad.moen.com
www.moen.com
hqexcas.moen.com
accessfbhs.moen.com
cngzcas.moen.com
hqexcas.moen.com
mdmap.moen.com
salesnet.moen.com
hqexcas.moen.com
moenesourcingqa.moen.com
www.moen.com
vtc.moen.com
wiki.moen.com
solutions.moen.com
moenesourcing.moen.com
customernet.moen.com
mdm.moen.com
git.moen.com
mdm2.moen.com
cnshcas.moen.com
secureftp.moen.com
submission.moen.com
extranet.moen.com
extranet.moen.com
extranet.moen.com
cngzcas.moen.com
customernet.moen.com
www.moen.com
supplynet.moen.com
moenesourcingqa.moen.com
test-plus.moen.com
moenesourcing.moen.com
www.moen.com
supplynet.moen.com
accessfbhs.moen.com
extranetqa.moen.com
wiki.moen.com
mdm2.moen.com
plumberpartnerrewards.moen.com
customernet.moen.com
cnshcas.moen.com
mdm.moen.com
moenesourcingqa.moen.com
customernet.moen.com
intellisite.moen.com
customernet.moen.com
h353.moen.com
vpn.moen.com
webmail.moen.com
www.moen.com
accessfbhs.moen.com
hqexcas.moen.com
extranet.moen.com
mdm.moen.com
www.moen.com
vtc.moen.com
www.moen.com
etc.moen.com
extranetqa.moen.com
password.moen.com
www.moen.com
register.moen.com
secureftp.moen.com
mdmap.moen.com
vpn.fbgpg.com
secureftp.moen.com
supplynet.moen.com
hqcas.moen.com
www.moen.com
password.fbgpg.com
www.moen.com
vpn.moen.com
www.moen.com
extranetqa.moen.com
etc.moen.com
extranet.moen.com
solutions.moen.com
mpdap.moen.com
secureftp.moen.com
extranetqa.moen.com
vtc.moen.com
salesnet.moen.com
h353.moen.com
solutions.moen.com
customernet.moen.com
salesnet.moen.com
hqexcas.moen.com
moenesourcing.moen.com
smetrics.moen.com
mdm.moen.com
www.moen.com
supplynet.moen.com
www.moen.com
extranet.moen.com
evm.moen.com
register.moen.com
mdm2.moen.com
moenesourcing.moen.com
password.fbgpg.com
launchpad.moen.com
www.moen.com
hqexcas.moen.com
accessfbhs.moen.com
cngzcas.moen.com
hqexcas.moen.com
mdmap.moen.com
salesnet.moen.com
hqexcas.moen.com
moenesourcingqa.moen.com
www.moen.com
vtc.moen.com
wiki.moen.com
solutions.moen.com
moenesourcing.moen.com
customernet.moen.com
mdm.moen.com
git.moen.com
mdm2.moen.com
cnshcas.moen.com
secureftp.moen.com
submission.moen.com
extranet.moen.com
extranet.moen.com
extranet.moen.com
cngzcas.moen.com
customernet.moen.com
www.moen.com
supplynet.moen.com
moenesourcingqa.moen.com
test-plus.moen.com
moenesourcing.moen.com
www.moen.com
supplynet.moen.com
accessfbhs.moen.com
Certificate
The complete raw certificate details for hqexcas.moen.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIQCGZfqdeVTDGlIgVDfTBN3jANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwMzE0MDAwMDAwWhcN MTkwNDI1MTIwMDAwWjCBjDELMAkGA1UEBhMCVVMxDTALBgNVBAgTBE9oaW8xFjAU BgNVBAcTDU5vcnRoIE9sbXN0ZWQxGjAYBgNVBAoTEU1vZW4gSW5jb3Jwb3JhdGVk MR8wHQYDVQQLExZJbmZvcm1hdGlvbiBUZWNobm9sb2d5MRkwFwYDVQQDExBocWV4 Y2FzLm1vZW4uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRsV 9nnunrlQ5VbCBq/LGSMyScwsikwUCOs46xdBPcoSvx5iXxKtJRZP0sAFg4QcviZK ywoOOyhpVAQa/DlZVBtY9luC9Bv5R0IIdZ/VZ2RC36bHgeojrjXhR+wd7/sIn+bg zja7e2rKSiDjUeI5cXea27lAgVbEVJJvqyxmwQuOwZNuD3Dnn9Q86fG5XOAA4dB2 erQ3jeA8PEeQ2xfmR7lyZIC1zTdjNz94oXAosCtcJOql+/QjkQvo+VjVT4+oUZjG odfU+eOHuGo9pU8gdwp/usqjRfEcQU/JILDmEJpPTy/9o+ZKadIxKZ0y035OKjcz xpNuH6rSlK+xMaAR/QIDAQABo4ICADCCAfwwHwYDVR0jBBgwFoAUD4BhHIIxYdUv KOeNRji0LOHG2eIwHQYDVR0OBBYEFMptBdmfUoGuWk66QWaqmYw4I9u8MDIGA1Ud EQQrMCmCFWF1dG9kaXNjb3Zlci5tb2VuLmNvbYIQaHFleGNhcy5tb2VuLmNvbTAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGsG A1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zc2NhLXNo YTItZzYuY3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc3NjYS1z aGEyLWc2LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIB FhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB8BggrBgEF BQcBAQRwMG4wJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBG BggrBgEFBQcwAoY6aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0 U0hBMlNlY3VyZVNlcnZlckNBLmNydDAJBgNVHRMEAjAAMBMGCisGAQQB1nkCBAMB Af8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAA4I6LmXuxavgB2l63OELCZ9whAWBW lEPOZFV5EEy5BGRnIXEF/VHysb3SeYCQJzbmViqZowZFREg1COr0puseBAffJ8DF JnSpAWWkjnA7LK8Lq6uEx01RX4uE8ZeCYQG0K+LclRWGwZtDWJXnZxO6A/Zwjj4U AC6c2zaavlf8fp4nRPXyNrjbkjnohSajSegxyniKS+gbpFakZuOrTMV35NSppgZ/ k/WTIeVzld2NSlZubasf+hsA441LKQF4TMd5PyncyPrdZ/G8rPwNDTZtFzVOqTLe o3RbSTqCnSMnIp3kjcgRDLELu1s09i/2OH3d8bF0txuIlHbppQNcUxPc -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRsV9nnunrlQ5VbCBq/L GSMyScwsikwUCOs46xdBPcoSvx5iXxKtJRZP0sAFg4QcviZKywoOOyhpVAQa/DlZ VBtY9luC9Bv5R0IIdZ/VZ2RC36bHgeojrjXhR+wd7/sIn+bgzja7e2rKSiDjUeI5 cXea27lAgVbEVJJvqyxmwQuOwZNuD3Dnn9Q86fG5XOAA4dB2erQ3jeA8PEeQ2xfm R7lyZIC1zTdjNz94oXAosCtcJOql+/QjkQvo+VjVT4+oUZjGodfU+eOHuGo9pU8g dwp/usqjRfEcQU/JILDmEJpPTy/9o+ZKadIxKZ0y035OKjczxpNuH6rSlK+xMaAR /QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11165378531041458095057901586173939166 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-25 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ohio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'North Olmsted' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Moen Incorporated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hqexcas.moen.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20842676821327190624154040351521370072330208163446415668735587255326429626444844675474742064259188489242117975282891754554179106648563964130822587545039651857768371266992860917905000206081079594379545660859323103720668449899836018151105669279562533733918165255845687382686419828863052558163178762084610615295244774711466241423781095999878005549686002707065729374441418440987385053913016572400765549440109776614261448168550178288129459951969829581396160213143659699000686604917073667837848251109440341377303748238462513491705716981223972530397512350089373669775504461300460147379617156096760161105544580131481209278973 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ca6d05d99f5281ae5a4eba4166aa998c3823dbbc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.moen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hqexcas.moen.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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