zeusdemo.knightpoint.com
- Knight Point Systems, LLC -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 0d:33:62:80:bb:e8:d3:67:79:33:69:2b:77:f1:e0:4a was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Knight Point Systems, LLC
Company registration number:
S1728692
Organization: Knight Point Systems, LLC
Organization unit: Zeus
Organization: Knight Point Systems, LLC
Organization unit: Zeus
State / Province:
Virginia
Locality: Reston
Country: US
Locality: Reston
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:33:62:80:bb:e8:d3:67:79:33:69:2b:77:f1:e0:4aSerial Number (int): 17546768960490308201159392545794547786
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 86:e6:61:1d:33:1a:c9:8d:9f:f7:a6:b0:ba:a7:00:b6:52:05:f3:4d
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 8e:a2:4a:f5:26:70:25:5d:7d:b1:19:87:21:3b:4d:c2:88:72:a2:fa
Fingerprint (sha256): 77:24:06:3b:8b:0c:a0:d3:1a:65:5b:a0:00:72:5e:7d:35:2a:a5:3a:2e:76:48:c2:6d:e1:8d:9b:7d:2d:84:e3
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate zeusdemo.knightpoint.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for zeusdemo.knightpoint.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
zeusdemo.knightpoint.com
Other certificates including the domain name knightpoint.com
(limited to 100 certificates)
sharepoint.knightpoint.com
blog.knightpoint.com
disazeus.knightpoint.com
blog.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
www.comportal.knightpoint.com
disazeus.knightpoint.com
time.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
www.fedportal.knightpoint.com
*.knightpoint.com
www.fedportal.knightpoint.com
flint.knightpoint.com
www.comportal.knightpoint.com
zeusdemo.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
development.cloudseed.knightpoint.com
sharepoint.knightpoint.com
www.fedportal.knightpoint.com
sharepoint.knightpoint.com
zeusdemo.knightpoint.com
zeusdemo.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
zeusdemo.knightpoint.com
blog.knightpoint.com
blog.knightpoint.com
sharepoint.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
SSO.FEDPORTAL.KNIGHTPOINT.COM
development.cloudseed.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
flint.knightpoint.com
www.comportal.knightpoint.com
blog.knightpoint.com
disazeus.knightpoint.com
blog.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
www.comportal.knightpoint.com
disazeus.knightpoint.com
time.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
www.fedportal.knightpoint.com
*.knightpoint.com
www.fedportal.knightpoint.com
flint.knightpoint.com
www.comportal.knightpoint.com
zeusdemo.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
development.cloudseed.knightpoint.com
sharepoint.knightpoint.com
www.fedportal.knightpoint.com
sharepoint.knightpoint.com
zeusdemo.knightpoint.com
zeusdemo.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
zeusdemo.knightpoint.com
blog.knightpoint.com
blog.knightpoint.com
sharepoint.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
SSO.FEDPORTAL.KNIGHTPOINT.COM
development.cloudseed.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
flint.knightpoint.com
www.comportal.knightpoint.com
Certificate
The complete raw certificate details for zeusdemo.knightpoint.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH2jCCBsKgAwIBAgIQDTNigLvo02d5M2krd/HgSjANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE3MDgwMjAwMDAwMFoXDTE4MDgwNzEy MDAwMFowgekxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlVTMRkwFwYLKwYBBAGCNzwCAQITCFZpcmdpbmlhMREwDwYDVQQF EwhTMTcyODY5MjELMAkGA1UEBhMCVVMxETAPBgNVBAgTCFZpcmdpbmlhMQ8wDQYD VQQHEwZSZXN0b24xIjAgBgNVBAoTGUtuaWdodCBQb2ludCBTeXN0ZW1zLCBMTEMx DTALBgNVBAsTBFpldXMxITAfBgNVBAMTGHpldXNkZW1vLmtuaWdodHBvaW50LmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANocXuLSysQzksgEuCnX xr4wx/8CfoYNJLRduaHRzqqk4wJZSBFyXONTw8Vu7Wid89DFyh2Y32eQIvSM0+la U6p/hXwzADZv9GXXz9jR8TiMowu7zWTD6V/uyuCwYmcdQbJeE/7LXaxp5tNzJxkJ DFhCLe1JwMRylZcf9IE3R7xHVcKb06cFxLvC+maJij2PA9/LUZ8/MPIIgeklUIQU 4FDiTv/t7piUQJVTS3JxCbKUnmQkkUm2O2vizW+m5MIxLAns575IgXlHEzfjp/7S PUVfV+OUMErAfMzS/lf7FjW4PFUl2GAXb7enzlqUpxuJNFUnBP5JxqXSGPg+Tk7y xoECAwEAAaOCA+8wggPrMB8GA1UdIwQYMBaAFD3TUKXWoK3u80pgCmXTIdT4+NYP MB0GA1UdDgQWBBSG5mEdMxrJjZ/3prC6pwC2UgXzTTAjBgNVHREEHDAaghh6ZXVz ZGVtby5rbmlnaHRwb2ludC5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjB1BgNVHR8EbjBsMDSgMqAwhi5odHRwOi8vY3Js My5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXItZzIuY3JsMDSgMqAwhi5odHRw Oi8vY3JsNC5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXItZzIuY3JsMEsGA1Ud IAREMEIwNwYJYIZIAYb9bAIBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRp Z2ljZXJ0LmNvbS9DUFMwBwYFZ4EMAQEwgYgGCCsGAQUFBwEBBHwwejAkBggrBgEF BQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMFIGCCsGAQUFBzAChkZodHRw Oi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEyRXh0ZW5kZWRWYWxp ZGF0aW9uU2VydmVyQ0EuY3J0MAwGA1UdEwEB/wQCMAAwggH2BgorBgEEAdZ5AgQC BIIB5gSCAeIB4AB1AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAAB XaR4IBkAAAQDAEYwRAIgb1krCdMpQ95uMZVLGiLgnccKG/wID5vR8YyicC+ioJkC IG38/DmPzO0bsQfB1zi52pBN3SuxEqAB8d0BpZdCaB2PAHcAVhQGmi/XwuzT9eG9 RLI+x0Z2ubyZEVzA75SYVdaJ0N0AAAFdpHgg1AAABAMASDBGAiEA4aPFFMC//yww TagHxvInI85PbaC9NHEEjTj8kt2j8EgCIQDlZugLFOF5l0AJIZmzAE5GVc61PdIX sJsHZcLS5wbeRAB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAAB XaR4Iv8AAAQDAEcwRQIgev81nv+5Bl3JJXaKunNcS1r4YJ6E1uDOK/3ePTB+QiAC IQC1Pj6+ReAbYu6KTEmlN3RiwpFW2rpbBVcLCkVYytcHTgB2ALvZ37wfinG1k5Qj l6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABXaR4IMQAAAQDAEcwRQIgV073CZj6ZjL9 a/L+7ABkQhKMhTsjkr2hyJudguuvHEgCIQCFhgGMR2MdNW3VetOyKVn7PGkEabZe AnZ96NDM8t7esDANBgkqhkiG9w0BAQsFAAOCAQEAeIx6mCT1Dak/AZdQWirJCGdn pqf7r5ewXG4Zzvv4qEV6ZYsDOj7lfRWTx3I74zLuofPrWkRGRujD2ZsFuRKIhxDa FsV7fehrAykrkj9dO+JwKcpuDNPJWAJgkErmX9ZE6cRiOtAT+je2KW1KPc/hlB2m RKzoDVAXvTSDpxDH/tU3aPYxsJ2ZzexhO4IsNVpHBGKV1GbmXDOsWbRb0STMn6nV eUtxX7OfVOW0k05Pbhq9tV2m6orcCTe949eI1414m8tLApCVcH/i2R3Iz9XFpEol bEy34rOIXIe6phrbnhK6LXhDlOWEawJKY2MsC2/tPs1MDjnje18vJxRlpUmigQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2hxe4tLKxDOSyAS4KdfG vjDH/wJ+hg0ktF25odHOqqTjAllIEXJc41PDxW7taJ3z0MXKHZjfZ5Ai9IzT6VpT qn+FfDMANm/0ZdfP2NHxOIyjC7vNZMPpX+7K4LBiZx1Bsl4T/stdrGnm03MnGQkM WEIt7UnAxHKVlx/0gTdHvEdVwpvTpwXEu8L6ZomKPY8D38tRnz8w8giB6SVQhBTg UOJO/+3umJRAlVNLcnEJspSeZCSRSbY7a+LNb6bkwjEsCeznvkiBeUcTN+On/tI9 RV9X45QwSsB8zNL+V/sWNbg8VSXYYBdvt6fOWpSnG4k0VScE/knGpdIY+D5OTvLG gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17546768960490308201159392545794547786 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-07 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Virginia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'S1728692' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Virginia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Reston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Knight Point Systems, LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zeus' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'zeusdemo.knightpoint.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27533940570818766472092311384473088811175290889700069813312828812967835506352509081634951694405664642722631355620116329055698767648813134375663823237479213866056989599414189197082032051602802881718430153834390034954444343181761368383327378464157162689127170488971297317053613571574443462614858237624824082334388215572215846961580495604034926737070460190331608969787374369662164840695110102578811209880416447751884506190071863326470806287664046257092516064589713218462283125901930721716830376386702606868917606987125733712642892234196349233313396771560667456631024566381511144947042478803068052272760773932713161967233 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 86e6611d331ac98d9ff7a6b0baa700b65205f34d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zeusdemo.knightpoint.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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