www.allinahealth.org
- Allina Health System -
Issued by DigiCert High Assurance CA-3
About this certificate
This digital certificate with serial number 0a:a6:66:06:14:00:97:1f:76:a3:f7:8c:62:99:22:11 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
Allina Health System
Organization:
Allina Health System
State / Province:
Minnesota
Locality: Minneapolis
Country: US
Locality: Minneapolis
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:a6:66:06:14:00:97:1f:76:a3:f7:8c:62:99:22:11Serial Number (int): 14156270523704901525507230850268865041
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c5:89:3e:8c:41:81:d6:5f:3e:9f:f1:a7:8b:62:9c:f7:c1:c2:4b:f8
AuthorityKeyId: 50:ea:73:89:db:29:fb:10:8f:9e:e5:01:20:d4:de:79:99:48:83:f7
Fingerprint (sha1): f0:92:d6:19:31:dd:b2:2b:77:2a:18:75:ce:f2:3e:be:f9:6b:ab:af
Fingerprint (sha256): 67:f3:42:9b:80:6f:7f:b1:c8:34:01:f9:76:03:b9:77:ae:87:e2:ba:f0:61:cc:13:b8:2e:38:27:c3:f5:fb:37
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertHighAssuranceCA-3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ca3-g20.crl
CRL Distribution Point: http://crl4.digicert.com/ca3-g20.crl
Check the revocation status for certificate www.allinahealth.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.allinahealth.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.allinahealth.org
allinahealth.org
allinahealth.org
Other certificates including the domain name allinahealth.org
(limited to 100 certificates)
tech37.co.uk
cavgw1.allinahealth.org
san-14-s12.tlsprovisioning.exacttarget.com
mallorar.com
vendorportal.allinahealth.org
*.allinahealth.org
thichallenge.com
possible.allinahealth.org
san-14-s12.tlsprovisioning.exacttarget.com
www.allinahealth.org
app.help-full.com
stfrancisgiftshop.allinahealth.org
*.allina.com
homestore.allinahealth.org
wellness.allinahealth.org
wellness.allinahealth.org
forms.allinahealth.org
go.allinahealth.org
homestore.allinahealth.org
www.yasirfayrooz.com
unitedgiftshop.allinahealth.org
unitedgiftshop.allinahealth.org
san-14-s12.tlsprovisioning.exacttarget.com
stfrancisgiftshop.allinahealth.org
san-14-s12.tlsprovisioning.exacttarget.com
credentialing.allinahealth.org
thichallenge.com
vendorportal.allinahealth.org
account.allinahealth.org
jobs.allinahealth.org
abbottnorthwesterngiftshop.allinahealth.org
redcap.allinahealth.org
san-14-s12.tlsprovisioning.exacttarget.com
isafewebmailauth.allinahealth.org
unitedgiftshop.allinahealth.org
innovation.allinahealth.org
www.beatspeak.ai
www.furusatolabs.com
*.allina.com
possible.allinahealth.org
homestore.allinahealth.org
everythingisvega.co
san-14-s12.tlsprovisioning.exacttarget.com
www.allinahealth.org
cubeacloud.com
*.allinahealth.org
www.agaration.com
innovation.allinahealth.org
thichallenge.com
innovation.allinahealth.org
credentialing.allinahealth.org
jobs.allinahealth.org
possible.allinahealth.org
allinahealth.bynder.com
*.allinahealth.org
onlinevisit.allinahealth.org
account.allinahealth.org
ww5.allinahealth.org
pay.allinahealth.org
innovation.allinahealth.org
thichallenge.com
possible.allinahealth.org
clashbot.app
www.allinahealth.org
possible.allinahealth.org
thichallenge.com
*.allinahealth.org
*.allina.com
jobs.allinahealth.org
homestore.allinahealth.org
credentialingtest.allinahealth.org
innovation.allinahealth.org
possible.allinahealth.org
talentacquisitionevents.allinahealth.org
*.allina.com
www.allinahealth.org
thichallenge.com
app.nanobebe.io
forms.allinahealth.org
homestore.allinahealth.org
innovation.allinahealth.org
possible.allinahealth.org
possible.allinahealth.org
telehealth.allinahealth.org
thichallenge.com
*.allina.com
possible.allinahealth.org
possible.allinahealth.org
bryceboesen.com
www.rxi-api.org
www.ilovehoney.com.au
unitedgiftshop.allinahealth.org
thichallenge.com
abbottnorthwesterngiftshop.allinahealth.org
jobs.allinahealth.org
isafewebmail.allinahealth.org
*.allina.com
possible.allinahealth.org
possible.allinahealth.org
medconnect.allinahealth.org
cavgw1.allinahealth.org
san-14-s12.tlsprovisioning.exacttarget.com
mallorar.com
vendorportal.allinahealth.org
*.allinahealth.org
thichallenge.com
possible.allinahealth.org
san-14-s12.tlsprovisioning.exacttarget.com
www.allinahealth.org
app.help-full.com
stfrancisgiftshop.allinahealth.org
*.allina.com
homestore.allinahealth.org
wellness.allinahealth.org
wellness.allinahealth.org
forms.allinahealth.org
go.allinahealth.org
homestore.allinahealth.org
www.yasirfayrooz.com
unitedgiftshop.allinahealth.org
unitedgiftshop.allinahealth.org
san-14-s12.tlsprovisioning.exacttarget.com
stfrancisgiftshop.allinahealth.org
san-14-s12.tlsprovisioning.exacttarget.com
credentialing.allinahealth.org
thichallenge.com
vendorportal.allinahealth.org
account.allinahealth.org
jobs.allinahealth.org
abbottnorthwesterngiftshop.allinahealth.org
redcap.allinahealth.org
san-14-s12.tlsprovisioning.exacttarget.com
isafewebmailauth.allinahealth.org
unitedgiftshop.allinahealth.org
innovation.allinahealth.org
www.beatspeak.ai
www.furusatolabs.com
*.allina.com
possible.allinahealth.org
homestore.allinahealth.org
everythingisvega.co
san-14-s12.tlsprovisioning.exacttarget.com
www.allinahealth.org
cubeacloud.com
*.allinahealth.org
www.agaration.com
innovation.allinahealth.org
thichallenge.com
innovation.allinahealth.org
credentialing.allinahealth.org
jobs.allinahealth.org
possible.allinahealth.org
allinahealth.bynder.com
*.allinahealth.org
onlinevisit.allinahealth.org
account.allinahealth.org
ww5.allinahealth.org
pay.allinahealth.org
innovation.allinahealth.org
thichallenge.com
possible.allinahealth.org
clashbot.app
www.allinahealth.org
possible.allinahealth.org
thichallenge.com
*.allinahealth.org
*.allina.com
jobs.allinahealth.org
homestore.allinahealth.org
credentialingtest.allinahealth.org
innovation.allinahealth.org
possible.allinahealth.org
talentacquisitionevents.allinahealth.org
*.allina.com
www.allinahealth.org
thichallenge.com
app.nanobebe.io
forms.allinahealth.org
homestore.allinahealth.org
innovation.allinahealth.org
possible.allinahealth.org
possible.allinahealth.org
telehealth.allinahealth.org
thichallenge.com
*.allina.com
possible.allinahealth.org
possible.allinahealth.org
bryceboesen.com
www.rxi-api.org
www.ilovehoney.com.au
unitedgiftshop.allinahealth.org
thichallenge.com
abbottnorthwesterngiftshop.allinahealth.org
jobs.allinahealth.org
isafewebmail.allinahealth.org
*.allina.com
possible.allinahealth.org
possible.allinahealth.org
medconnect.allinahealth.org
Certificate
The complete raw certificate details for www.allinahealth.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGwzCCBaugAwIBAgIQCqZmBhQAlx92o/eMYpkiETANBgkqhkiG9w0BAQUFADBm MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMSUwIwYDVQQDExxEaWdpQ2VydCBIaWdoIEFzc3VyYW5j ZSBDQS0zMB4XDTEzMDMwNDAwMDAwMFoXDTE1MDYxODEyMDAwMFowdTELMAkGA1UE BhMCVVMxEjAQBgNVBAgTCU1pbm5lc290YTEUMBIGA1UEBxMLTWlubmVhcG9saXMx HTAbBgNVBAoTFEFsbGluYSBIZWFsdGggU3lzdGVtMR0wGwYDVQQDExR3d3cuYWxs aW5haGVhbHRoLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKet Qfqh7OIiaMMznJ7tmZYeO/d+imQT+mPMl2giPD1vdQ9y20XRvV5ygLmkYKOEGQ0p HsF3FsgqoG+yeaq7+nPXmaFlN6rsBGtTbsyoipSglxLm/LfX2T+U77G6o2ug1TMP gL59LZt1v9ql8o/jtSGvYgNYkBS+28kUyCb23L0CMiTo1iuvtKZmkNafPozmjewq KgDDdQAInc39hkTe/cVvkAis44RJQxeM5n7m+IRWrfLM0X6TKWVv7yCT9nnxe+6D j4ZKeuLPDe3huHORcm8/zK+eX0aXVoNbO6DN0U5CoB14N46c5MQJQpklBa/TZqlQ O8tUnylII38uLHtF2FMCAwEAAaOCA1wwggNYMB8GA1UdIwQYMBaAFFDqc4nbKfsQ j57lASDU3nmZSIP3MB0GA1UdDgQWBBTFiT6MQYHWXz6f8aeLYpz3wcJL+DAxBgNV HREEKjAoghR3d3cuYWxsaW5haGVhbHRoLm9yZ4IQYWxsaW5haGVhbHRoLm9yZzAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGEG A1UdHwRaMFgwKqAooCaGJGh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9jYTMtZzIw LmNybDAqoCigJoYkaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL2NhMy1nMjAuY3Js MIIBxAYDVR0gBIIBuzCCAbcwggGzBglghkgBhv1sAQEwggGkMDoGCCsGAQUFBwIB Fi5odHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9zc2wtY3BzLXJlcG9zaXRvcnkuaHRt MIIBZAYIKwYBBQUHAgIwggFWHoIBUgBBAG4AeQAgAHUAcwBlACAAbwBmACAAdABo AGkAcwAgAEMAZQByAHQAaQBmAGkAYwBhAHQAZQAgAGMAbwBuAHMAdABpAHQAdQB0 AGUAcwAgAGEAYwBjAGUAcAB0AGEAbgBjAGUAIABvAGYAIAB0AGgAZQAgAEQAaQBn AGkAQwBlAHIAdAAgAEMAUAAvAEMAUABTACAAYQBuAGQAIAB0AGgAZQAgAFIAZQBs AHkAaQBuAGcAIABQAGEAcgB0AHkAIABBAGcAcgBlAGUAbQBlAG4AdAAgAHcAaABp AGMAaAAgAGwAaQBtAGkAdAAgAGwAaQBhAGIAaQBsAGkAdAB5ACAAYQBuAGQAIABh AHIAZQAgAGkAbgBjAG8AcgBwAG8AcgBhAHQAZQBkACAAaABlAHIAZQBpAG4AIABi AHkAIAByAGUAZgBlAHIAZQBuAGMAZQAuMHsGCCsGAQUFBwEBBG8wbTAkBggrBgEF BQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEUGCCsGAQUFBzAChjlodHRw Oi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRIaWdoQXNzdXJhbmNlQ0Et My5jcnQwDAYDVR0TAQH/BAIwADANBgkqhkiG9w0BAQUFAAOCAQEAHbNeGd3e5gtU aQOxU4XZ0x7cD2vJfGX039uJ43oFSlDnCmfJZRYG7UancrnT0/PjfcF5ZI4HHM/l TJA+UShlPijK0WcqYKMEv9OTo2q6NpNBk5A6lXSOgsNo0e3E0BwQM7QdGb2i3MHP WDHQM2W9V8IRJwJEqeVg0ndatWFdimGxaPFlXUzYNerAyPzegXX6xvo1Pu/8gn2d REJ2cxxrjetvaHNkFAGWvc4AFD4XTUfO7xhNLAxbqCFKraQVMPIQUmLZtEc8Cn6L cUiBDF4JMwtJ290zf43I0m7RDMEwBfgBoOtim6TzFR/RsknwUQC1sN8fzIepDBSu OBr62rTZzg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp61B+qHs4iJowzOcnu2Z lh47936KZBP6Y8yXaCI8PW91D3LbRdG9XnKAuaRgo4QZDSkewXcWyCqgb7J5qrv6 c9eZoWU3quwEa1NuzKiKlKCXEub8t9fZP5Tvsbqja6DVMw+Avn0tm3W/2qXyj+O1 Ia9iA1iQFL7byRTIJvbcvQIyJOjWK6+0pmaQ1p8+jOaN7CoqAMN1AAidzf2GRN79 xW+QCKzjhElDF4zmfub4hFat8szRfpMpZW/vIJP2efF77oOPhkp64s8N7eG4c5Fy bz/Mr55fRpdWg1s7oM3RTkKgHXg3jpzkxAlCmSUFr9NmqVA7y1SfKUgjfy4se0XY UwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14156270523704901525507230850268865041 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert High Assurance CA-3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-03-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-06-18 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minneapolis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Allina Health System' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.allinahealth.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21167233500554658637497808931820481870469598240796542162537770778438596674564119217474165351845469928997195071494187094569470654779211463597760711613581596436283381376273396788050070518264046395378819753228023494847276413871979666417635871666649857415109908573861865426202469580927397152905178628726514174921821835545846663173847496245873546546255320036443165070597385602299010326611393860904156237079733710143999140060820153451938770073002973868226039625366652176765907003402156056539354626247561358834238202568337251924753723060240387207227959325793808533661001362185513068479945377195856701085044816738705203386451 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 50ea7389db29fb108f9ee50120d4de79994883f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c5893e8c4181d65f3e9ff1a78b629cf7c1c24bf8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.allinahealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allinahealth.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ca3-g20.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ca3-g20.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (443 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/ssl-cps-repository.htm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [0 65 0 110 0 121 0 32 0 117 0 115 0 101 0 32 0 111 0 102 0 32 0 116 0 104 0 105 0 115 0 32 0 67 0 101 0 114 0 116 0 105 0 102 0 105 0 99 0 97 0 116 0 101 0 32 0 99 0 111 0 110 0 115 0 116 0 105 0 116 0 117 0 116 0 101 0 115 0 32 0 97 0 99 0 99 0 101 0 112 0 116 0 97 0 110 0 99 0 101 0 32 0 111 0 102 0 32 0 116 0 104 0 101 0 32 0 68 0 105 0 103 0 105 0 67 0 101 0 114 0 116 0 32 0 67 0 80 0 47 0 67 0 80 0 83 0 32 0 97 0 110 0 100 0 32 0 116 0 104 0 101 0 32 0 82 0 101 0 108 0 121 0 105 0 110 0 103 0 32 0 80 0 97 0 114 0 116 0 121 0 32 0 65 0 103 0 114 0 101 0 101 0 109 0 101 0 110 0 116 0 32 0 119 0 104 0 105 0 99 0 104 0 32 0 108 0 105 0 109 0 105 0 116 0 32 0 108 0 105 0 97 0 98 0 105 0 108 0 105 0 116 0 121 0 32 0 97 0 110 0 100 0 32 0 97 0 114 0 101 0 32 0 105 0 110 0 99 0 111 0 114 0 112 0 111 0 114 0 97 0 116 0 101 0 100 0 32 0 104 0 101 0 114 0 101 0 105 0 110 0 32 0 98 0 121 0 32 0 114 0 101 0 102 0 101 0 114 0 101 0 110 0 99 0 101 0 46] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (111 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertHighAssuranceCA-3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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