cert02.uk.aviva.com
- Aviva PLC -
Issued by Sectigo RSA Extended Validation Secure Server CA
About this certificate
This digital certificate with serial number 3f:1d:86:e5:44:dc:74:78:b5:b4:1c:bf:88:87:08:b7 was issued on by Sectigo Limited.
With 35 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Aviva PLC
Company registration number:
02468686
Organization: Aviva PLC
Organization: Aviva PLC
State / Province:
London, City of
Country: GB
Country: GB
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 3f:1d:86:e5:44:dc:74:78:b5:b4:1c:bf:88:87:08:b7Serial Number (int): 83894676350794809453918453485785254071
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: a5:11:48:3b:68:0c:df:3d:3d:1a:c9:42:7a:ba:3b:3c:93:8c:07:29
AuthorityKeyId: 2c:69:ff:80:c9:87:90:ae:34:e1:b4:e7:4c:93:85:99:40:e9:a7:b2
Fingerprint (sha1): 0f:d3:8e:6f:ec:8f:08:4d:ef:ae:d2:4c:28:ca:b1:ee:06:d3:20:39
Fingerprint (sha256): 6a:90:18:8e:da:b1:f4:3d:b0:3f:de:6a:42:7c:8d:11:bc:cf:ae:c1:62:2f:5a:8f:bd:d8:a7:08:e1:5d:fd:35
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl
Check the revocation status for certificate cert02.uk.aviva.com
35
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cert02.uk.aviva.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cert02.uk.aviva.com
cdn.aviva.com
help.generalaccident.com
insurance.av.qs.online-insure.com
insuranceportal.av.qs.online-insure.com
isup.aviva.co.uk
library.aviva.com
member.avivaservices.co.uk
mybusiness.aviva.co.uk
retirementtools.aviva.co.uk
runtime.generalaccident.com
runtime.quotemehappy.com
servlets.generalaccident.com
servlets.quotemehappy.com
ssoinsurance-tsb.qs.online-insure.com
workplacebenefits.friendslife.co.uk
wps1.sc-lifecustomer.qs.aviva.co.uk
wps2.sc-lifecustomer.qs.aviva.co.uk
wps3.sc-lifecustomer.qs.aviva.co.uk
wps4.sc-lifecustomer.qs.aviva.co.uk
wps5.sc-lifecustomer.qs.aviva.co.uk
wps6.sc-lifecustomer.qs.aviva.co.uk
wps7.sc-lifecustomer.qs.aviva.co.uk
www.avivaeserve.co.uk
www.avivatransfers.co.uk
www.erfunding.co.uk
www.exceed.aviva.co.uk
www.insurance.av.qs.online-insure.com
www.insurance.hsbc.qs.online-insure.com
www.insuranceportal.av.qs.online-insure.com
www.isup.qs.aviva.co.uk
www.mybusiness.aviva.co.uk
www.retirementtools.aviva.co.uk
www.ssoinsurance-tsb.qs.online-insure.com
www17.friendsprovident.co.uk
cdn.aviva.com
help.generalaccident.com
insurance.av.qs.online-insure.com
insuranceportal.av.qs.online-insure.com
isup.aviva.co.uk
library.aviva.com
member.avivaservices.co.uk
mybusiness.aviva.co.uk
retirementtools.aviva.co.uk
runtime.generalaccident.com
runtime.quotemehappy.com
servlets.generalaccident.com
servlets.quotemehappy.com
ssoinsurance-tsb.qs.online-insure.com
workplacebenefits.friendslife.co.uk
wps1.sc-lifecustomer.qs.aviva.co.uk
wps2.sc-lifecustomer.qs.aviva.co.uk
wps3.sc-lifecustomer.qs.aviva.co.uk
wps4.sc-lifecustomer.qs.aviva.co.uk
wps5.sc-lifecustomer.qs.aviva.co.uk
wps6.sc-lifecustomer.qs.aviva.co.uk
wps7.sc-lifecustomer.qs.aviva.co.uk
www.avivaeserve.co.uk
www.avivatransfers.co.uk
www.erfunding.co.uk
www.exceed.aviva.co.uk
www.insurance.av.qs.online-insure.com
www.insurance.hsbc.qs.online-insure.com
www.insuranceportal.av.qs.online-insure.com
www.isup.qs.aviva.co.uk
www.mybusiness.aviva.co.uk
www.retirementtools.aviva.co.uk
www.ssoinsurance-tsb.qs.online-insure.com
www17.friendsprovident.co.uk
Other certificates including the domain name aviva.com
(limited to 100 certificates)
aviva-swi-amp-fs-01.globalapps.aviva.com
incapsula.com
at.aviva.com
community-fund-italia.aviva.com
avivaprivacy.uk
cert02.uk.aviva.com
cert03.uk.aviva.com
cert06.uk.aviva.com
cert01.as.aviva.com
avivaprivacy.uk
np-cert02.uk.aviva.com
in.aviva.com
avivaprivacy.uk
cert11.uk.aviva.com
cert03.uk.aviva.com
avivaprivacy.uk
cert06.uk.aviva.com
idmadmin.globalapps.aviva.com
mpower.non.prod.ana.corp.aviva.com
cert01.ca.aviva.com
cert08.uk.aviva.com
cert01.uk.aviva.com
digital.aviva.com
cert01.ca.aviva.com
redirects.aviva.com
agility-europe.globalapps.aviva.com
icare-uat.globalapps.aviva.com
cert06.uk.aviva.com
incapsula.com
cert04.uk.aviva.com
cms.aviva.com
sv.nonprod.ana.corp.aviva.com
avivaprivacy.uk
cert10.uk.aviva.com
cert06.uk.aviva.com
intquote.aviva.co.uk
cert10.uk.aviva.com
boson-services-gateway.globalapps.aviva.com
cert01.tmp.aviva.com
lafabrique-france.aviva.com
cert08.uk.aviva.com
cert01.uk.aviva.com
np-cert02.uk.aviva.com
incapsula.com
cert10.uk.aviva.com
camppe.external.globalapps.aviva.com
proinvest.com.sg
cert01.uk.aviva.com
avivaprivacy.uk
suretyngweb.qa.ana.corp.aviva.com
avivaprivacy.uk
cert01.uk.aviva.com
mpower.non.prod.ana.corp.aviva.com
vaultqa.ana.corp.aviva.com
bigd-kafkadev2.globalapps.aviva.com
cert08.uk.aviva.com
yyzbac1sis1.ana.corp.aviva.com
cyberark-uat.globalapps.aviva.com
www.aviva.co.uk
uat.aviva.co.uk
www.avivatransfer.co.uk
rewards.aviva.com
workbench.prod-globalapps.aviva.com
cx2.globalapps.aviva.com
redirects.aviva.com
yyzsql3047.ana.corp.aviva.com
cert01.ca.aviva.com
mail.aviva.com
cert03.uk.aviva.com
empower.preprod.ana.corp.aviva.com
cert01.as.aviva.com
uat.aviva.co.uk
e-learningportal.at.aviva.com
cert07.uk.aviva.com
cert01.tmp.aviva.com
cert05.uk.aviva.com
yyzbsm1011.ana.corp.aviva.com
iaccess.ana.corp.aviva.com
www.aviva.co.uk
cert03.uk.aviva.com
cert01.as.aviva.com
yyzcpm1201.ana.corp.aviva.com
shareplans.aviva.com
incapsula.com
ci-master.ana.corp.aviva.com
cert04.uk.aviva.com
community-fund-italia.aviva.com
incapsula.com
cert05.uk.aviva.com
arc.globalapps.aviva.com
cert10.uk.aviva.com
avivaprivacy.uk
incapsula.com
nonprod.ratabasecat.ana.corp.aviva.com
redirects.aviva.com
yyzetl1003.ana.corp.aviva.com
cert04.uk.aviva.com
cert08.uk.aviva.com
nationalhomewarranty.com
incapsula.com
at.aviva.com
community-fund-italia.aviva.com
avivaprivacy.uk
cert02.uk.aviva.com
cert03.uk.aviva.com
cert06.uk.aviva.com
cert01.as.aviva.com
avivaprivacy.uk
np-cert02.uk.aviva.com
in.aviva.com
avivaprivacy.uk
cert11.uk.aviva.com
cert03.uk.aviva.com
avivaprivacy.uk
cert06.uk.aviva.com
idmadmin.globalapps.aviva.com
mpower.non.prod.ana.corp.aviva.com
cert01.ca.aviva.com
cert08.uk.aviva.com
cert01.uk.aviva.com
digital.aviva.com
cert01.ca.aviva.com
redirects.aviva.com
agility-europe.globalapps.aviva.com
icare-uat.globalapps.aviva.com
cert06.uk.aviva.com
incapsula.com
cert04.uk.aviva.com
cms.aviva.com
sv.nonprod.ana.corp.aviva.com
avivaprivacy.uk
cert10.uk.aviva.com
cert06.uk.aviva.com
intquote.aviva.co.uk
cert10.uk.aviva.com
boson-services-gateway.globalapps.aviva.com
cert01.tmp.aviva.com
lafabrique-france.aviva.com
cert08.uk.aviva.com
cert01.uk.aviva.com
np-cert02.uk.aviva.com
incapsula.com
cert10.uk.aviva.com
camppe.external.globalapps.aviva.com
proinvest.com.sg
cert01.uk.aviva.com
avivaprivacy.uk
suretyngweb.qa.ana.corp.aviva.com
avivaprivacy.uk
cert01.uk.aviva.com
mpower.non.prod.ana.corp.aviva.com
vaultqa.ana.corp.aviva.com
bigd-kafkadev2.globalapps.aviva.com
cert08.uk.aviva.com
yyzbac1sis1.ana.corp.aviva.com
cyberark-uat.globalapps.aviva.com
www.aviva.co.uk
uat.aviva.co.uk
www.avivatransfer.co.uk
rewards.aviva.com
workbench.prod-globalapps.aviva.com
cx2.globalapps.aviva.com
redirects.aviva.com
yyzsql3047.ana.corp.aviva.com
cert01.ca.aviva.com
mail.aviva.com
cert03.uk.aviva.com
empower.preprod.ana.corp.aviva.com
cert01.as.aviva.com
uat.aviva.co.uk
e-learningportal.at.aviva.com
cert07.uk.aviva.com
cert01.tmp.aviva.com
cert05.uk.aviva.com
yyzbsm1011.ana.corp.aviva.com
iaccess.ana.corp.aviva.com
www.aviva.co.uk
cert03.uk.aviva.com
cert01.as.aviva.com
yyzcpm1201.ana.corp.aviva.com
shareplans.aviva.com
incapsula.com
ci-master.ana.corp.aviva.com
cert04.uk.aviva.com
community-fund-italia.aviva.com
incapsula.com
cert05.uk.aviva.com
arc.globalapps.aviva.com
cert10.uk.aviva.com
avivaprivacy.uk
incapsula.com
nonprod.ratabasecat.ana.corp.aviva.com
redirects.aviva.com
yyzetl1003.ana.corp.aviva.com
cert04.uk.aviva.com
cert08.uk.aviva.com
nationalhomewarranty.com
Certificate
The complete raw certificate details for cert02.uk.aviva.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILNzCCCh+gAwIBAgIQPx2G5UTcdHi1tBy/iIcItzANBgkqhkiG9w0BAQsFADCB kTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTkwNwYDVQQD EzBTZWN0aWdvIFJTQSBFeHRlbmRlZCBWYWxpZGF0aW9uIFNlY3VyZSBTZXJ2ZXIg Q0EwHhcNMjMxMTI4MDAwMDAwWhcNMjQxMTI3MjM1OTU5WjCBoDERMA8GA1UEBRMI MDI0Njg2ODYxEzARBgsrBgEEAYI3PAIBAxMCR0IxHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMQswCQYDVQQGEwJHQjEYMBYGA1UECBMPTG9uZG9uLCBDaXR5 IG9mMRIwEAYDVQQKEwlBdml2YSBQTEMxHDAaBgNVBAMTE2NlcnQwMi51ay5hdml2 YS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmmsQBJtfq+Izk SWdH9Yfm51l27bBJMy+e2aCqDjKXAPt2sBmpU5V+w/TDzuL4tHUk8jeMEIt5LDK/ vJ/1iyreiatBJvLWS3wIDaoEykZPz6H7BJgMvYy3E0ikZj/jGwIVfsx/H1GLxv69 8ZMC0+m1O9jWZucO87LozQOaLNdb1+nR09Uhetz+7tIeOZrPgnyxPNQD7Sdq//Dv KtC6Sjhft0wlSIahqhxt1bs4K9Au3oQMEt20fWNK3axassvw5Zifz3alXs+DGDFH IRnd2+K7AO5urPzPMDdPE4641B8+ktBfCUH1/kLNmKcSsMv6kGwNZrL+YmNSe98+ GEQb1hCNAgMBAAGjggd4MIIHdDAfBgNVHSMEGDAWgBQsaf+AyYeQrjThtOdMk4WZ QOmnsjAdBgNVHQ4EFgQUpRFIO2gM3z09GslCero7PJOMBykwDgYDVR0PAQH/BAQD AgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MEkGA1UdIARCMEAwNQYMKwYBBAGyMQECAQUBMCUwIwYIKwYBBQUHAgEWF2h0dHBz Oi8vc2VjdGlnby5jb20vQ1BTMAcGBWeBDAEBMFYGA1UdHwRPME0wS6BJoEeGRWh0 dHA6Ly9jcmwuc2VjdGlnby5jb20vU2VjdGlnb1JTQUV4dGVuZGVkVmFsaWRhdGlv blNlY3VyZVNlcnZlckNBLmNybDCBhgYIKwYBBQUHAQEEejB4MFEGCCsGAQUFBzAC hkVodHRwOi8vY3J0LnNlY3RpZ28uY29tL1NlY3RpZ29SU0FFeHRlbmRlZFZhbGlk YXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3Nw LnNlY3RpZ28uY29tMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdgB2/4g/Crb7 lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYwWzl/fAAAEAwBHMEUCIQCJBh5s FeIYM3yl+IPrTFMvpmP/OfjmrCw1knmaBJfHngIgQd9NDEUQi18CdTRFyikQJnkG JLxtzJaaaYze0DpLQH8AdgA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7Phk bgAAAYwWzmBQAAAEAwBHMEUCIGgE6KqB/t7Lby8ubNt9IWXYp75PMdL+jHc1zuxc 9BRvAiEA9Wqk2LNVHfhohc3cffj7MX3/Cx8lY5BtV3g02N64bwwAdQDuzdBk1dsa zsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYwWzmANAAAEAwBGMEQCICgW9wEm yIw1TdQhZsnNurlZ71Biih23Wxgyr23D37kfAiAgHFn19qkfx5OpvHUHa/3k+jq9 ucjlaK7vlKMgS+mEETCCBEYGA1UdEQSCBD0wggQ5ghNjZXJ0MDIudWsuYXZpdmEu Y29tgg1jZG4uYXZpdmEuY29tghhoZWxwLmdlbmVyYWxhY2NpZGVudC5jb22CIWlu c3VyYW5jZS5hdi5xcy5vbmxpbmUtaW5zdXJlLmNvbYInaW5zdXJhbmNlcG9ydGFs LmF2LnFzLm9ubGluZS1pbnN1cmUuY29tghBpc3VwLmF2aXZhLmNvLnVrghFsaWJy YXJ5LmF2aXZhLmNvbYIabWVtYmVyLmF2aXZhc2VydmljZXMuY28udWuCFm15YnVz aW5lc3MuYXZpdmEuY28udWuCG3JldGlyZW1lbnR0b29scy5hdml2YS5jby51a4Ib cnVudGltZS5nZW5lcmFsYWNjaWRlbnQuY29tghhydW50aW1lLnF1b3RlbWVoYXBw eS5jb22CHHNlcnZsZXRzLmdlbmVyYWxhY2NpZGVudC5jb22CGXNlcnZsZXRzLnF1 b3RlbWVoYXBweS5jb22CJXNzb2luc3VyYW5jZS10c2IucXMub25saW5lLWluc3Vy ZS5jb22CI3dvcmtwbGFjZWJlbmVmaXRzLmZyaWVuZHNsaWZlLmNvLnVrgiN3cHMx LnNjLWxpZmVjdXN0b21lci5xcy5hdml2YS5jby51a4Ijd3BzMi5zYy1saWZlY3Vz dG9tZXIucXMuYXZpdmEuY28udWuCI3dwczMuc2MtbGlmZWN1c3RvbWVyLnFzLmF2 aXZhLmNvLnVrgiN3cHM0LnNjLWxpZmVjdXN0b21lci5xcy5hdml2YS5jby51a4Ij d3BzNS5zYy1saWZlY3VzdG9tZXIucXMuYXZpdmEuY28udWuCI3dwczYuc2MtbGlm ZWN1c3RvbWVyLnFzLmF2aXZhLmNvLnVrgiN3cHM3LnNjLWxpZmVjdXN0b21lci5x cy5hdml2YS5jby51a4IVd3d3LmF2aXZhZXNlcnZlLmNvLnVrghh3d3cuYXZpdmF0 cmFuc2ZlcnMuY28udWuCE3d3dy5lcmZ1bmRpbmcuY28udWuCFnd3dy5leGNlZWQu YXZpdmEuY28udWuCJXd3dy5pbnN1cmFuY2UuYXYucXMub25saW5lLWluc3VyZS5j b22CJ3d3dy5pbnN1cmFuY2UuaHNiYy5xcy5vbmxpbmUtaW5zdXJlLmNvbYIrd3d3 Lmluc3VyYW5jZXBvcnRhbC5hdi5xcy5vbmxpbmUtaW5zdXJlLmNvbYIXd3d3Lmlz dXAucXMuYXZpdmEuY28udWuCGnd3dy5teWJ1c2luZXNzLmF2aXZhLmNvLnVrgh93 d3cucmV0aXJlbWVudHRvb2xzLmF2aXZhLmNvLnVrgil3d3cuc3NvaW5zdXJhbmNl LXRzYi5xcy5vbmxpbmUtaW5zdXJlLmNvbYIcd3d3MTcuZnJpZW5kc3Byb3ZpZGVu dC5jby51azANBgkqhkiG9w0BAQsFAAOCAQEAlQadseHXMSFofNkhj08yvhWET+Cm aX+ggWJ+mJwdAquMg52O6E+oQyA/3SaiIuJfqdQq/HEcIH06Hx0AllsRozB7C5EK DYt4bpmv218jRdX8Q75hbUdb1SOyKydBD8E9GCx4JSUaEQ5O6ls39UsOQcSix+SK TSTbWIwgjGoePguhJlkGCYFuc5wuVuIAgO3kqeG6IjpjZOcNohieVXJDPVu+xsyb Q1eyHZMS7qAZPTBxrOXxTKDs3W4CDyWwQQyMRQI5tfrIhA4exbHwxJblKWNMNgf1 7peJfpzJuXjwI5d084XZ1kc8D8pAMZoPl0Fh2LtHNJ4Xxac0i7iJZ/OkWA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApprEASbX6viM5ElnR/WH 5udZdu2wSTMvntmgqg4ylwD7drAZqVOVfsP0w87i+LR1JPI3jBCLeSwyv7yf9Ysq 3omrQSby1kt8CA2qBMpGT8+h+wSYDL2MtxNIpGY/4xsCFX7Mfx9Ri8b+vfGTAtPp tTvY1mbnDvOy6M0DmizXW9fp0dPVIXrc/u7SHjmaz4J8sTzUA+0nav/w7yrQuko4 X7dMJUiGoaocbdW7OCvQLt6EDBLdtH1jSt2sWrLL8OWYn892pV7PgxgxRyEZ3dvi uwDubqz8zzA3TxOOuNQfPpLQXwlB9f5CzZinErDL+pBsDWay/mJjUnvfPhhEG9YQ jQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 83894676350794809453918453485785254071 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Extended Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '02468686' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London, City of' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aviva PLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cert02.uk.aviva.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21031876407121705581543905237903721721576546590102216882809531942891012356989416483196412825478061668552213395732827939944456066400880416102111708702031807963446838009581070859641891103804820585059411822951870830568987037574244876400148979969622057030547712646619372526457555322855328514758035909085124873723321494677009657478674568985831387781395375265963755801017893994993775084590175284189280694210486217698854360769746862164889736261639067990449827275950037592902473146321928536495157854330832578523253860893440260645895961432285732969787505819102353192952087578179864563463728261973583617644789081240545655132301 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2c69ff80c98790ae34e1b4e74c93859940e9a7b2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a511483b680cdf3d3d1ac9427aba3b3c938c0729 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.5.1 (Comodo EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (122 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1085 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cert02.uk.aviva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.aviva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'help.generalaccident.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insurance.av.qs.online-insure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insuranceportal.av.qs.online-insure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isup.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'library.aviva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'member.avivaservices.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mybusiness.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retirementtools.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'runtime.generalaccident.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'runtime.quotemehappy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'servlets.generalaccident.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'servlets.quotemehappy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ssoinsurance-tsb.qs.online-insure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'workplacebenefits.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps1.sc-lifecustomer.qs.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps2.sc-lifecustomer.qs.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps3.sc-lifecustomer.qs.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps4.sc-lifecustomer.qs.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps5.sc-lifecustomer.qs.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps6.sc-lifecustomer.qs.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps7.sc-lifecustomer.qs.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avivaeserve.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avivatransfers.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.erfunding.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.exceed.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.insurance.av.qs.online-insure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.insurance.hsbc.qs.online-insure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.insuranceportal.av.qs.online-insure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.isup.qs.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mybusiness.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.retirementtools.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ssoinsurance-tsb.qs.online-insure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www17.friendsprovident.co.uk' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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