sharepoint.knightpoint.com
- Knight Point Systems, LLC -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 03:bc:48:55:45:35:30:5a:bf:52:dc:13:d7:7c:39:c8 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Knight Point Systems, LLC
Company registration number:
S1728692
Organization: Knight Point Systems, LLC
Organization unit: IT
Organization: Knight Point Systems, LLC
Organization unit: IT
State / Province:
Virginia
Locality: Reston
Country: US
Locality: Reston
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:bc:48:55:45:35:30:5a:bf:52:dc:13:d7:7c:39:c8Serial Number (int): 4965302886063338939311226996274248136
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 49:ae:bf:98:8a:7f:39:9c:f7:ef:a4:ff:fa:a8:83:19:6e:43:1c:8f
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): e7:cd:fd:9d:f6:23:f9:d0:06:94:ab:d5:4f:6e:59:b6:e1:94:16:8f
Fingerprint (sha256): 77:fe:0a:a3:24:90:7d:db:1c:ee:c9:5e:87:79:8f:b1:67:1a:06:1e:96:91:b0:e0:40:58:14:96:1c:3e:4c:7c
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate sharepoint.knightpoint.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sharepoint.knightpoint.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sharepoint.knightpoint.com
Other certificates including the domain name knightpoint.com
(limited to 100 certificates)
sharepoint.knightpoint.com
blog.knightpoint.com
disazeus.knightpoint.com
blog.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
www.comportal.knightpoint.com
disazeus.knightpoint.com
time.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
www.fedportal.knightpoint.com
*.knightpoint.com
www.fedportal.knightpoint.com
flint.knightpoint.com
www.comportal.knightpoint.com
zeusdemo.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
development.cloudseed.knightpoint.com
sharepoint.knightpoint.com
www.fedportal.knightpoint.com
sharepoint.knightpoint.com
zeusdemo.knightpoint.com
zeusdemo.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
zeusdemo.knightpoint.com
blog.knightpoint.com
blog.knightpoint.com
sharepoint.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
SSO.FEDPORTAL.KNIGHTPOINT.COM
development.cloudseed.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
flint.knightpoint.com
www.comportal.knightpoint.com
blog.knightpoint.com
disazeus.knightpoint.com
blog.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
www.comportal.knightpoint.com
disazeus.knightpoint.com
time.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
flint.knightpoint.com
time.knightpoint.com
disazeus.knightpoint.com
www.fedportal.knightpoint.com
*.knightpoint.com
www.fedportal.knightpoint.com
flint.knightpoint.com
www.comportal.knightpoint.com
zeusdemo.knightpoint.com
sharepoint.knightpoint.com
blog.knightpoint.com
flint.knightpoint.com
flint.knightpoint.com
development.cloudseed.knightpoint.com
sharepoint.knightpoint.com
www.fedportal.knightpoint.com
sharepoint.knightpoint.com
zeusdemo.knightpoint.com
zeusdemo.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
zeusdemo.knightpoint.com
blog.knightpoint.com
blog.knightpoint.com
sharepoint.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
SSO.FEDPORTAL.KNIGHTPOINT.COM
development.cloudseed.knightpoint.com
SSO.FEDPORTAL.KNIGHTPOINT.COM
flint.knightpoint.com
www.comportal.knightpoint.com
Certificate
The complete raw certificate details for sharepoint.knightpoint.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH3jCCBsagAwIBAgIQA7xIVUU1MFq/UtwT13w5yDANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE3MDgwMjAwMDAwMFoXDTE5MDgwNzEy MDAwMFowgekxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlVTMRkwFwYLKwYBBAGCNzwCAQITCFZpcmdpbmlhMREwDwYDVQQF EwhTMTcyODY5MjELMAkGA1UEBhMCVVMxETAPBgNVBAgTCFZpcmdpbmlhMQ8wDQYD VQQHEwZSZXN0b24xIjAgBgNVBAoTGUtuaWdodCBQb2ludCBTeXN0ZW1zLCBMTEMx CzAJBgNVBAsTAklUMSMwIQYDVQQDExpzaGFyZXBvaW50LmtuaWdodHBvaW50LmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALynN28Zw7X/zVXJmP3S 7wvGX39GFfpxbtQYms89lSI5vZ8SZwybzATcimpI638khF45aQEByj0S1I421pzI qmdTxhievuTbqrYz3Xx2kCw+DysVmtqlfV3oHkwBcSyBub9ORf5sGvmVGto3gAfB TjOV+gtBBJI8l6qmoDm+UQ1IgUZQfa9ZCI2/NZm86/pwmPGRd80tvg5DqyC1FbgL cMkJbyfKU7jH82+vrqnyyhfeOALSOlrMtcttxXzR0s2+KjB5klTEbYY1sc/Q3jDm wAe99nFoAf2lNAL8HX2xC07OE4HYkEJdoi9QYyy0IeVEOlqC1KjzWXawwRqsjbv4 kKUCAwEAAaOCA/MwggPvMB8GA1UdIwQYMBaAFD3TUKXWoK3u80pgCmXTIdT4+NYP MB0GA1UdDgQWBBRJrr+Yin85nPfvpP/6qIMZbkMcjzAlBgNVHREEHjAcghpzaGFy ZXBvaW50LmtuaWdodHBvaW50LmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMHUGA1UdHwRuMGwwNKAyoDCGLmh0dHA6Ly9j cmwzLmRpZ2ljZXJ0LmNvbS9zaGEyLWV2LXNlcnZlci1nMi5jcmwwNKAyoDCGLmh0 dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zaGEyLWV2LXNlcnZlci1nMi5jcmwwSwYD VR0gBEQwQjA3BglghkgBhv1sAgEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cu ZGlnaWNlcnQuY29tL0NQUzAHBgVngQwBATCBiAYIKwYBBQUHAQEEfDB6MCQGCCsG AQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wUgYIKwYBBQUHMAKGRmh0 dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJFeHRlbmRlZFZh bGlkYXRpb25TZXJ2ZXJDQS5jcnQwDAYDVR0TAQH/BAIwADCCAfgGCisGAQQB1nkC BAIEggHoBIIB5AHiAHYApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAA AAFdpHgaxQAABAMARzBFAiAYXWuzyAoN+DTJxz0B+Zrsf+k8Wu21PfvYcz1otolI WwIhANhScVZMVWOY2QwrVhR9hMrMsS/e1L1XBMjiEj2Ld7lpAHYAVhQGmi/XwuzT 9eG9RLI+x0Z2ubyZEVzA75SYVdaJ0N0AAAFdpHgblAAABAMARzBFAiABBZ4nFTFw XLs1wdykZD+wCAV/shMoR4itl+Lo/lSU7QIhALOL3nPu67OymsFU5NdapsREWn4t hqiMVCbgZAYSf/RYAHcA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo/csA AAFdpHgdxQAABAMASDBGAiEA3HDsalbasT2idiLdiGyVmFPmR6I29coUSPVP4c6W u10CIQCkty4HAsJ7TKCmU6EKsDY6qWpSugPihK25s4zYJ7RJrwB3ALvZ37wfinG1 k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABXaR4G4sAAAQDAEgwRgIhAPiRIWEn 0AUCnFJLjiHfrh9aBpkGgryaEACSt49aNOXDAiEAgvwVT/qqm1OyXBPfuEBSrymo /Z6NmumL1qj1D7U3NPEwDQYJKoZIhvcNAQELBQADggEBAD7I885TN+qIXywz2kEQ NiOPGodLp3am4BrwxuMwLuTBcf3cmdL7hpUxBKP7COMkQ80DP07ce46qQBlFDV5p 5GQk+4hQz6IhWYL9vQ+KJYDF8JBN+2aacr0mJBDtqGQdlDn87JlFFHHL2Tx4Xu8/ Pba+LsoWqFHS9g7nagjPlquw81y1O4OXrx/qn4QZ+yuWdfSs5gLHAbNSRDnZRMjb xPo/Utu7uvNh6AIALwsuHGvc+/dnK+1pjJTdUTaqfaWVGYZviUMgKtLt2cx6W1GD ORc0GaIphJGfhwQK+q9CCWwJu4bZ94z53d2qpvSlIwr7KfyuvQnpvXl6XSHkjQU5 ocw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKc3bxnDtf/NVcmY/dLv C8Zff0YV+nFu1Biazz2VIjm9nxJnDJvMBNyKakjrfySEXjlpAQHKPRLUjjbWnMiq Z1PGGJ6+5NuqtjPdfHaQLD4PKxWa2qV9XegeTAFxLIG5v05F/mwa+ZUa2jeAB8FO M5X6C0EEkjyXqqagOb5RDUiBRlB9r1kIjb81mbzr+nCY8ZF3zS2+DkOrILUVuAtw yQlvJ8pTuMfzb6+uqfLKF944AtI6Wsy1y23FfNHSzb4qMHmSVMRthjWxz9DeMObA B732cWgB/aU0AvwdfbELTs4TgdiQQl2iL1BjLLQh5UQ6WoLUqPNZdrDBGqyNu/iQ pQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4965302886063338939311226996274248136 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-07 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Virginia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'S1728692' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Virginia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Reston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Knight Point Systems, LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sharepoint.knightpoint.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23815258882240401788825168943386215815174350342022780560893071387197850887615599959138514330270032190026700016028083297055899350965117658883793255070662133853871268805710955193180320455724321777868561984314217105405215738444646026496976694327410968954996832712122275742789548066685276480489364159249105832396698289823308277056183432178576122448907100984075470252256464311766351706638676088930843407092144076946854833291166612069222459155414251984853409013608328931735222411351578136636662702986156452221092867194722591695210897463624429558058979723652593496064292558505778028375832044587644058134814441275067964362917 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 49aebf988a7f399cf7efa4fffaa883196e431c8f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sharepoint.knightpoint.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (488 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (484 bytes) 01e2007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015da4781ac500000403004730450220185d6bb3c80a0df834c9c73d01f99aec7fe93c5aedb53dfbd8733d68b689485b022100d85271564c556398d90c2b56147d84caccb12fded4bd5704c8e2123d8b77b9690076005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd0000015da4781b940000040300473045022001059e271531705cbb35c1dca4643fb008057fb213284788ad97e2e8fe5494ed022100b38bde73eeebb3b29ac154e4d75aa6c4445a7e2d86a88c5426e06406127ff458007700ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000015da4781dc50000040300483046022100dc70ec6a56dab13da27622dd886c959853e647a236f5ca1448f54fe1ce96bb5d022100a4b72e0702c27b4ca0a653a10ab0363aa96a52ba03e284adb9b38cd827b449af007700bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000015da4781b8b0000040300483046022100f891216127d005029c524b8e21dfae1f5a06990682bc9a100092b78f5a34e5c302210082fc154ffaaa9b53b25c13dfb84052af29a8fd9e8d9ae98bd6a8f50fb53734f1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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