*.coh.org
- City of Hope -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 06:43:9d:57:a2:ef:93:03:dd:4c:29:ce:82:a7:1a:14 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
City of Hope
Organization:
City of Hope
Organization unit: ITS
Organization unit: ITS
State / Province:
CA
Locality: Duarte
Country: US
Locality: Duarte
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:43:9d:57:a2:ef:93:03:dd:4c:29:ce:82:a7:1a:14Serial Number (int): 8326443145815439862893493885203847700
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: a8:98:9c:9a:3c:a9:98:9f:0a:75:6f:b9:0c:f4:dc:6a:3d:ba:18:d2
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): a3:58:ce:c2:bd:07:3f:b3:24:ba:41:67:13:57:a8:6a:0a:d5:7a:44
Fingerprint (sha256): 6f:ad:b8:a8:e6:fa:13:52:dc:8e:1e:6d:7c:40:f7:18:75:b0:5c:46:28:7b:c5:64:01:3a:37:8e:a8:20:35:54
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate *.coh.org
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.coh.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.coh.org
coh.org
www1.infosci.coh.org
coh.org
www1.infosci.coh.org
Other certificates including the domain name coh.org
(limited to 100 certificates)
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
email.coh.org
www.infosci.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
duo.coh.org
*.coh.org
infosci.coh.org
*.coh.org
*.coh.org
*.coh.org
san-13-s10.tlsprovisioning.exacttarget.com
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
share.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
email.coh.org
benefitexpress.coh.org
*.coh.org
*.coh.org
*.coh.org
san-10-s12.tlsprovisioning.exacttarget.com
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
securelink.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
email.coh.org
disreport.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
webext.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
libguides.library.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
email.coh.org
www.infosci.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
duo.coh.org
*.coh.org
infosci.coh.org
*.coh.org
*.coh.org
*.coh.org
san-13-s10.tlsprovisioning.exacttarget.com
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
share.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
email.coh.org
benefitexpress.coh.org
*.coh.org
*.coh.org
*.coh.org
san-10-s12.tlsprovisioning.exacttarget.com
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
securelink.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
email.coh.org
disreport.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
webext.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
libguides.library.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
*.coh.org
Certificate
The complete raw certificate details for *.coh.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHrDCCBpSgAwIBAgIQBkOdV6LvkwPdTCnOgqcaFDANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTkwNDE1MDAwMDAwWhcN MjEwNDI1MTIwMDAwWjBkMQswCQYDVQQGEwJVUzELMAkGA1UECBMCQ0ExDzANBgNV BAcTBkR1YXJ0ZTEVMBMGA1UEChMMQ2l0eSBvZiBIb3BlMQwwCgYDVQQLEwNJVFMx EjAQBgNVBAMMCSouY29oLm9yZzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoC ggIBAMwjAXIVAiPLtqZSNCiIo9/XUolcDuUHiyYBe7Il/g4048TSaL9k9/8wao9I G4MqEQpC/Zqq7AiDQ9Ixrkj7HmOgJxoQNksBWlSrF46YaLU5hetyUuc0DzHb+4ZW qXsR6KzwEs6wslWyMC5lVhlxi7CtbgfoqpCFzdfxivbqBvIQ8OBlz+8ZY/yQU5hh X0M/3s4aGUQm7uGTcwwrsfLBDWxGuLgRVBAvF7A0XF61ny8jY1fB80uBCTDe9m92 c3rT1OD01/0ssK0Lt7quA6LKs7eAPwwgr7/yv54s4Is0ZFhfvChuogCz3V3zahwq vhLfxPy9j5fnc6LqUJw/rOn6YEkgAsR8yBi3uG6d2PyhW+RRO45CLV02LjMOZEXj nbJY1HfyDx9V5Bxni0T7hHXtFoFhLylzKzWomFjD46isBydPN4o9G9z1lNxAUQ2q SV1BTz7Mkl46o6Irfge0QQqQRFB0ke8EAs/sY4Lv8zBSIhwLkY0P9nQ/YHmMyiYv uifIMDtQkwGx8oG24V9dcIIoTnObJJruFKvIb7rvjhtS7OBIDjM+xuK6SxmI0KBW hZ5Ew6TpArG2wOP7nhXhMCWUSsB5Ca7n77M9eEwwIV6o0cCXaOKkBtqs8BEdjelG BPfJBlEaprna3PL9htaXi2JR8J0M/bnmZlpEjrDTYB77KGXhAgMBAAGjggNvMIID azAfBgNVHSMEGDAWgBQPgGEcgjFh1S8o541GOLQs4cbZ4jAdBgNVHQ4EFgQUqJic mjypmJ8KdW+5DPTcaj26GNIwMwYDVR0RBCwwKoIJKi5jb2gub3Jnggdjb2gub3Jn ghR3d3cxLmluZm9zY2kuY29oLm9yZzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9j cmwzLmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMC+gLaArhilodHRwOi8v Y3JsNC5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc2LmNybDBMBgNVHSAERTBDMDcG CWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5j b20vQ1BTMAgGBmeBDAECAjB8BggrBgEFBQcBAQRwMG4wJAYIKwYBBQUHMAGGGGh0 dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBGBggrBgEFBQcwAoY6aHR0cDovL2NhY2Vy dHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMlNlY3VyZVNlcnZlckNBLmNydDAM BgNVHRMBAf8EAjAAMIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYAdQC72d+8H4px tZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAWoiInG/AAAEAwBGMEQCIHgaiWta O14ZFmPKTXbl1S8JnKxMruAKx6ATEvogjTmHAiBPB6U2wBLyL6a11yw9OEcimoYF jhXw5Ld6TKfH4dYS5gB1AId1v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMP AAABaiIictgAAAQDAEYwRAIgCLoM/C77QJI/YUylCAGEBpgx6NeFwcMC346eInL8 elcCIC1nery7R/XnPMVA9eNAK2Ylsg2RIlz6oYZzmDf3f8iXAHYARJRlLrDuzq/E QAfYqP4owNrmgr7YyzG1P9MzlrW2gagAAAFqIiJxWQAABAMARzBFAiA1IfBXM2xB I3v9BKv+hdhRKuKwSyJg97DZCxIePZa65QIhAOCmgHNMkrgFTD03wALuPd7fuXsi SAqMktrHzVY6OX94MA0GCSqGSIb3DQEBCwUAA4IBAQCGckVanijeSQ2YGT0Q7fPG EqO2KTmlGs9lqlndeppObxtPT2wC1aExGutmlFiETx/s7Ot89WwGI8VnddVQDdqM H72s5nG33uJVfSA0CAFBTl1Hi1+jukc3vNAdY6xK2mmCyX6KtCS9ccIsAxeXFK0p sb063/jiFN0U0lqu/38LiLQneVX6o/FWSvG/cwJ6zOcqw4Hc8xIWGbOUo+Kf3y5h IX7pIK3vvXNcQHd4V87LByhRzmvgKo4WrRYymUP4Yym1Txb6pUIiDex9isUY/S7g 2UGP8nbU9ut72PHUhucGLKPKIzui3+YcWpKHefnnM3b8IdZ+AmjGekD9Xz4tqzfi -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzCMBchUCI8u2plI0KIij 39dSiVwO5QeLJgF7siX+DjTjxNJov2T3/zBqj0gbgyoRCkL9mqrsCIND0jGuSPse Y6AnGhA2SwFaVKsXjphotTmF63JS5zQPMdv7hlapexHorPASzrCyVbIwLmVWGXGL sK1uB+iqkIXN1/GK9uoG8hDw4GXP7xlj/JBTmGFfQz/ezhoZRCbu4ZNzDCux8sEN bEa4uBFUEC8XsDRcXrWfLyNjV8HzS4EJMN72b3ZzetPU4PTX/SywrQu3uq4Dosqz t4A/DCCvv/K/nizgizRkWF+8KG6iALPdXfNqHCq+Et/E/L2Pl+dzoupQnD+s6fpg SSACxHzIGLe4bp3Y/KFb5FE7jkItXTYuMw5kReOdsljUd/IPH1XkHGeLRPuEde0W gWEvKXMrNaiYWMPjqKwHJ083ij0b3PWU3EBRDapJXUFPPsySXjqjoit+B7RBCpBE UHSR7wQCz+xjgu/zMFIiHAuRjQ/2dD9geYzKJi+6J8gwO1CTAbHygbbhX11wgihO c5skmu4Uq8hvuu+OG1Ls4EgOMz7G4rpLGYjQoFaFnkTDpOkCsbbA4/ueFeEwJZRK wHkJrufvsz14TDAhXqjRwJdo4qQG2qzwER2N6UYE98kGURqmudrc8v2G1peLYlHw nQz9ueZmWkSOsNNgHvsoZeECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8326443145815439862893493885203847700 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-25 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Duarte' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'City of Hope' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ITS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.coh.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 832805243704807788607114898022091052662435340941678037893235921730333156339661288405697218641702798827573050215881083060521659850395648581076853491784270343718589001340335463520301076045491309305198400026918975402542122140182116121672300380605729939343120011215280660478830918547285689870940019678825856050211264682657973602875426503305969683741678386248068805351895256239352246970906871809756563251201603557185769658700241113598428540830347486907166393704932407899035880530063000441286849350689037773885439049882141753231712572517689959057922394467701277621191476492387849297779859994180939017065573718441027700424181675599154456445803127009836434958662221737334646761078328040229003747424401167852209636174906801007082400249354872092316530738566628469546362075108793906663252730498089577787927792178494722974228331179189830119433913673386404922347200814443056932746302300289436149416368741386244874420712085159824651571835968628723134876392940182694316319189356539393974410514633968271033036863929816834129345860300943611014942350046201635417060382494687730154781107982260155844411555598891081505309592921288151901865799689207832083597403374419739183080577741190072980511103509141859838036056041704289069132951834042290884418495969 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a8989c9a3ca9989f0a756fb90cf4dc6a3dba18d2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.coh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www1.infosci.coh.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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