*.knightpoint.com
- Knight Point Systems, LLC -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0d:96:6b:3a:34:02:13:be:0e:45:f3:2d:32:dc:2b:1c was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Knight Point Systems, LLC
Organization:
Knight Point Systems, LLC
Organization unit: IT
Organization unit: IT
State / Province:
Virginia
Locality: Reston
Country: US
Locality: Reston
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:96:6b:3a:34:02:13:be:0e:45:f3:2d:32:dc:2b:1cSerial Number (int): 18060983303140878641318225839952505628
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 24:2c:d1:b8:2d:5a:a1:81:85:7c:1a:3f:d7:db:79:7f:71:88:a4:8a
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 3c:38:a1:c5:2c:51:74:6e:d0:0b:86:0f:aa:c0:a1:9c:72:3e:61:3f
Fingerprint (sha256): 71:84:47:8b:0d:3c:5b:9b:0b:c6:58:e3:5d:8e:ef:b2:af:28:47:fd:0c:00:b1:24:73:a2:2b:b1:dc:b1:72:b2
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g1.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g1.crl
Check the revocation status for certificate *.knightpoint.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.knightpoint.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.knightpoint.com
knightpoint.com
knightpoint.com
Other certificates including the domain name knightpoint.com
(limited to 100 certificates)
sharepoint.knightpoint.com
blog.knightpoint.com
disazeus.knightpoint.com
blog.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
www.comportal.knightpoint.com
disazeus.knightpoint.com
time.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
www.fedportal.knightpoint.com
*.knightpoint.com
www.fedportal.knightpoint.com
flint.knightpoint.com
www.comportal.knightpoint.com
zeusdemo.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
development.cloudseed.knightpoint.com
sharepoint.knightpoint.com
www.fedportal.knightpoint.com
sharepoint.knightpoint.com
zeusdemo.knightpoint.com
zeusdemo.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
zeusdemo.knightpoint.com
blog.knightpoint.com
blog.knightpoint.com
sharepoint.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
SSO.FEDPORTAL.KNIGHTPOINT.COM
development.cloudseed.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
flint.knightpoint.com
www.comportal.knightpoint.com
blog.knightpoint.com
disazeus.knightpoint.com
blog.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
www.comportal.knightpoint.com
disazeus.knightpoint.com
time.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
www.fedportal.knightpoint.com
*.knightpoint.com
www.fedportal.knightpoint.com
flint.knightpoint.com
www.comportal.knightpoint.com
zeusdemo.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
development.cloudseed.knightpoint.com
sharepoint.knightpoint.com
www.fedportal.knightpoint.com
sharepoint.knightpoint.com
zeusdemo.knightpoint.com
zeusdemo.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
zeusdemo.knightpoint.com
blog.knightpoint.com
blog.knightpoint.com
sharepoint.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
SSO.FEDPORTAL.KNIGHTPOINT.COM
development.cloudseed.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
flint.knightpoint.com
www.comportal.knightpoint.com
Certificate
The complete raw certificate details for *.knightpoint.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIQDZZrOjQCE74ORfMtMtwrHDANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTcxMDIwMDAwMDAwWhcN MjAxMDI4MTIwMDAwWjB+MQswCQYDVQQGEwJVUzERMA8GA1UECBMIVmlyZ2luaWEx DzANBgNVBAcTBlJlc3RvbjEiMCAGA1UEChMZS25pZ2h0IFBvaW50IFN5c3RlbXMs IExMQzELMAkGA1UECxMCSVQxGjAYBgNVBAMMESoua25pZ2h0cG9pbnQuY29tMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOGogZQI1hOHD+O2cXdm5ote XY1W/b3//zhOvzjA6g1prEq8121NpY3HtoB8JClZN7iNX1xFtG3VOKWbKbQCcFT7 tJnhewNG7j2t9XpfK0Oq/oGeM98UVRUGuuht49jBoNoClXeZB2HOvyA4sJQvlBM+ XG5HjDnzNwhTKOYArTW+K12zzdpBi5elFSPcgqcaFtzY4OUoanhn73Vw7XUiMqK8 Njg1U45ayaKVBBhmTAcv27yZhCmOTEddsqL1hVzG7mcm/S2FfGlykUBFBE0DCRaQ HzEOCO5Eo79B2ictb1VpnQ+90oq2qb8uoxJdaOKz8gtMGLz01aV2wjyirGG8tQID AQABo4IB6TCCAeUwHwYDVR0jBBgwFoAUD4BhHIIxYdUvKOeNRji0LOHG2eIwHQYD VR0OBBYEFCQs0bgtWqGBhXwaP9fbeX9xiKSKMC0GA1UdEQQmMCSCESoua25pZ2h0 cG9pbnQuY29tgg9rbmlnaHRwb2ludC5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8EZDBiMC+gLaArhilodHRw Oi8vY3JsMy5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWcxLmNybDAvoC2gK4YpaHR0 cDovL2NybDQuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nMS5jcmwwTAYDVR0gBEUw QzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNl cnQuY29tL0NQUzAIBgZngQwBAgIwfAYIKwYBBQUHAQEEcDBuMCQGCCsGAQUFBzAB hhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wRgYIKwYBBQUHMAKGOmh0dHA6Ly9j YWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJTZWN1cmVTZXJ2ZXJDQS5j cnQwDAYDVR0TAQH/BAIwADANBgkqhkiG9w0BAQsFAAOCAQEA3F2zRikVWwTH2BHT 98485qHzRLIQPmq/1E/L0lK8EX26KeRcLgTD66aX4oSXgtSE6ccUyvuPbLlk8P4y L7CkCYzPb6+kuSXJtfRt9v6vaiOBrxB2+9jcmxrbYctkhahdILoeW4uuJ3Gyq18e 4OcFkDaROVCk/1P1VJU3WuzN8UsKYEJsM3p2lOkp6fkM75p8ufAemFGJbb8jcmSW RSePB7k2iWZ06Nop0DAL8nMLGSoz5+jat+p44hJRpmQFj39n1jkRaaQt4RLQy39H sH42RSuOGbBV1ch5xe8SgDSxorNw1M+YnOyzJ8aupQG0ITQUAGY9f6KaMrPONC9Q C1Nliw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOGogZQI1hOHD+O2cXdm 5oteXY1W/b3//zhOvzjA6g1prEq8121NpY3HtoB8JClZN7iNX1xFtG3VOKWbKbQC cFT7tJnhewNG7j2t9XpfK0Oq/oGeM98UVRUGuuht49jBoNoClXeZB2HOvyA4sJQv lBM+XG5HjDnzNwhTKOYArTW+K12zzdpBi5elFSPcgqcaFtzY4OUoanhn73Vw7XUi MqK8Njg1U45ayaKVBBhmTAcv27yZhCmOTEddsqL1hVzG7mcm/S2FfGlykUBFBE0D CRaQHzEOCO5Eo79B2ictb1VpnQ+90oq2qb8uoxJdaOKz8gtMGLz01aV2wjyirGG8 tQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18060983303140878641318225839952505628 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-10-28 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Virginia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Reston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Knight Point Systems, LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.knightpoint.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25863890432233379082810344365664910572102473998940707431796345242488451144346646554617865077225779313658366143292974457403090950855426773368383220988566958276967197110958583259445456227677367514872891343437508910789397470955408212105129418038778547757823776970380124118715305350823234071977090755617226246049447059903605136940057766799570008303697317924126526108758216082488194027937333399137797226786908635058044736862995277854129848138745168599230886834193986309245133788878084862012385019862147501125394701600056376659678568708343433157665015165282326840003720925378155503907894069780351680384835234257923049897141 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 242cd1b82d5aa181857c1a3fd7db797f7188a48a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.knightpoint.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knightpoint.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00dc5db34629155b04c7d811d3f7ce3ce6a1f344b2103e6abfd44fcbd252bc117dba29e45c2e04c3eba697e2849782d484e9c714cafb8f6cb964f0fe322fb0a4098ccf6fafa4b925c9b5f46df6feaf6a2381af1076fbd8dc9b1adb61cb6485a85d20ba1e5b8bae2771b2ab5f1ee0e7059036913950a4ff53f55495375aeccdf14b0a60426c337a7694e929e9f90cef9a7cb9f01e9851896dbf2372649645278f07b936896674e8da29d0300bf2730b192a33e7e8dab7ea78e21251a664058f7f67d6391169a42de112d0cb7f47b07e36452b8e19b055d5c879c5ef128034b1a2b370d4cf989cecb327c6aea501b421341400663d7fa29a32b3ce342f500b53658b