sts-ad2.my-dsm.com
- DSM Group Business Services BV -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 25:ed:16:fc:e0:34:fa:b5:00:00:00:00:50:e4:46:3a was issued on by Entrust, Inc..
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
DSM Group Business Services BV
Organization:
DSM Group Business Services BV
Locality:
Heerlen
Country: NL
Country: NL
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 25:ed:16:fc:e0:34:fa:b5:00:00:00:00:50:e4:46:3aSerial Number (int): 50412476447411565649847640138526770746
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 05:c4:f1:bb:57:8d:a6:5f:ec:d1:c7:5f:34:ea:6d:89:30:52:5d:b6
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 80:84:a9:a4:aa:51:ba:a2:b1:6d:24:b0:89:a0:7b:1c:ee:de:ea:28
Fingerprint (sha256): 78:43:55:1b:a9:10:66:0e:f3:60:d6:e1:5e:af:f1:da:95:07:0c:32:b6:6f:7b:c9:1e:e0:6e:b8:87:ff:df:a2
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate sts-ad2.my-dsm.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sts-ad2.my-dsm.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sts-ad2.my-dsm.com
enterpriseregistration.dsm.com
enterpriseregistration.corpad.dsm-group.com
my-dsm.com
enterpriseregistration.dsm.com
enterpriseregistration.corpad.dsm-group.com
my-dsm.com
Other certificates including the domain name my-dsm.com
(limited to 100 certificates)
virtualweb.dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
*.my-dsm.com
virtualweb.dsm.com
intranet.my-dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
a-sts-ad2.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
sts-ad1.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
intranet.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
a-sts-ad1.my-dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
intranet.my-dsm.com
virtualweb.dsm.com
*.my-dsm.com
a-sts-ad2.my-dsm.com
a-sts-ad2.my-dsm.com
a-sts-ad1.my-dsm.com
virtualweb.dsm.com
intranet.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
a-sts-ad2.my-dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
intranet.my-dsm.com
virtualweb.dsm.com
a-sts-ad2.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
*.my-dsm.com
virtualweb.dsm.com
intranet.my-dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
a-sts-ad2.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
sts-ad1.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
intranet.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
a-sts-ad1.my-dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
intranet.my-dsm.com
virtualweb.dsm.com
*.my-dsm.com
a-sts-ad2.my-dsm.com
a-sts-ad2.my-dsm.com
a-sts-ad1.my-dsm.com
virtualweb.dsm.com
intranet.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
a-sts-ad2.my-dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
virtualweb.dsm.com
sts-ad2.my-dsm.com
virtualweb.dsm.com
intranet.my-dsm.com
virtualweb.dsm.com
a-sts-ad2.my-dsm.com
Certificate
The complete raw certificate details for sts-ad2.my-dsm.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHEDCCBfigAwIBAgIQJe0W/OA0+rUAAAAAUORGOjANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x ODA2MjcxMDQyMjRaFw0xOTA2MjcxMTEyMjNaMGUxCzAJBgNVBAYTAk5MMRAwDgYD VQQHEwdIZWVybGVuMScwJQYDVQQKEx5EU00gR3JvdXAgQnVzaW5lc3MgU2Vydmlj ZXMgQlYxGzAZBgNVBAMTEnN0cy1hZDIubXktZHNtLmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAKlmp9xfWtXNciOJ1XpniIUj9F67lJBPhID5zZsq jrt6zjiJ9jrK0vw2/HhALZmZUYUWbaCNYruE5N1YtV1mvrnLxrTjheymGZDVwFuD LcOHJ3BKFc5yizxPWGy6lZOAKzcnT0ozYwRU8Q7zQno8XXfxmVIjkokLFQ+dQnAu mmSw2oUb4A/4x1GEgpENur/zhpro90aW2m+EgYVjJjl96jpaOYy8/EaYppB/wmND lOU8ycApzEvDq4v6uDIo3fylsL3JNg0CMVSm8xn27MWKe32vfaQM4hU+mt8B4WYZ Togeic+e8MrfmBQTIF4qt0dlJ0S9nBpffshcrUIZMdXvMFkCAwEAAaOCA2QwggNg MHYGA1UdEQRvMG2CEnN0cy1hZDIubXktZHNtLmNvbYIeZW50ZXJwcmlzZXJlZ2lz dHJhdGlvbi5kc20uY29tgitlbnRlcnByaXNlcmVnaXN0cmF0aW9uLmNvcnBhZC5k c20tZ3JvdXAuY29tggpteS1kc20uY29tMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFq AWgAdgBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAWRA8cflAAAE AwBHMEUCIH/rvnm7Fr5vT6K5K5MlJDfvV0ENqBk5hAiNsQYpY52eAiEAuPFqTsjZ J6LuYH2o8jJWYx3E8De0ELfRhTz4Tmf27kYAdgDd6x0reg1PpiCLga2BaHB+Lo6d AdVciI09EcTNtuy+zAAAAWRA8cfNAAAEAwBHMEUCIG59KexbnOH3eI2tJzRrhs+K dFvg41zmEQgFjuBjexaAAiEA6REZdC6rhZVxDwKuDQBEmrylk1/G1eRqbL/iZf2O /2IAdgC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAWRA8cgzAAAE AwBHMEUCIQCFAdb4vibH0EE0gu7zUG+rRALW4ZUrgJxsSWN8wGTAHwIgKI+/4VuS RtBfekfYVe+eTJC2RP0k1w4XpRiqfAsCVXUwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAzBgNVHR8ELDAqMCigJqAkhiJodHRw Oi8vY3JsLmVudHJ1c3QubmV0L2xldmVsMWsuY3JsMEsGA1UdIAREMEIwNgYKYIZI AYb6bAoBBTAoMCYGCCsGAQUFBwIBFhpodHRwOi8vd3d3LmVudHJ1c3QubmV0L3Jw YTAIBgZngQwBAgIwaAYIKwYBBQUHAQEEXDBaMCMGCCsGAQUFBzABhhdodHRwOi8v b2NzcC5lbnRydXN0Lm5ldDAzBggrBgEFBQcwAoYnaHR0cDovL2FpYS5lbnRydXN0 Lm5ldC9sMWstY2hhaW4yNTYuY2VyMB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU981/ p2DGCky/MB0GA1UdDgQWBBQFxPG7V42mX+zRx1806m2JMFJdtjAJBgNVHRMEAjAA MA0GCSqGSIb3DQEBCwUAA4IBAQA5jdzC4zuHuC16Vxo9VHQDnpwbWC7b78ynLiRy o6Va8e23IH38AekmQL2/RFr8uVOsr+EQiyY/5TxPqV6oA9/dRvAMfE8BCZ7+vY0v ytttHi9vbTgddsy/ofHn2Goma7GDJ+J4Fikn7MfSUZJrggsMFO0PyIheyhxCkB5s 59lYHPVi8h4oNchOKUuTs9rODv5Kk9T6iKWQcFHTZGwsLeA0G+pN3HTzA0fTHP84 fGwOjHjdiK2az4S/gN+ucGZn285yDmq3/nk5W9EdrXT6Pjh++HW1hcZYJCuSvhbh 286yBCImX0tRrL2nI0NeY6Px4Kx3wCtMfGdgAEO/2O+bIPu7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWan3F9a1c1yI4nVemeI hSP0XruUkE+EgPnNmyqOu3rOOIn2OsrS/Db8eEAtmZlRhRZtoI1iu4Tk3Vi1XWa+ ucvGtOOF7KYZkNXAW4Mtw4cncEoVznKLPE9YbLqVk4ArNydPSjNjBFTxDvNCejxd d/GZUiOSiQsVD51CcC6aZLDahRvgD/jHUYSCkQ26v/OGmuj3Rpbab4SBhWMmOX3q Olo5jLz8RpimkH/CY0OU5TzJwCnMS8Ori/q4Mijd/KWwvck2DQIxVKbzGfbsxYp7 fa99pAziFT6a3wHhZhlOiB6Jz57wyt+YFBMgXiq3R2UnRL2cGl9+yFytQhkx1e8w WQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 50412476447411565649847640138526770746 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-27 10:42:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-27 11:12:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Heerlen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DSM Group Business Services BV' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sts-ad2.my-dsm.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21384894954759558595680585050876841790329907530380396467790469236924139769636517111196097173795838338685314722248200071238098563628031164787175236623314663319790838403858270519615638225515877370087612574479801448177180180409287700949363668657512006081443562903519479346272458585883238258647913064789258435911864130600403142149000672112836161599904946398156781203139711786311105958180637221260952542348265500109165136041926794648598802815026592473718958865474058969710903113669769674007536673166466671935092349196010271441960940713664804947142226229931349464734018885920759675024912532157229783568063412545805699985497 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (111 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sts-ad2.my-dsm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.dsm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.corpad.dsm-group.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my-dsm.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 05c4f1bb578da65fecd1c75f34ea6d8930525db6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00398ddcc2e33b87b82d7a571a3d5474039e9c1b582edbefcca72e2472a3a55af1edb7207dfc01e92640bdbf445afcb953acafe1108b263fe53c4fa95ea803dfdd46f00c7c4f01099efebd8d2fcadb6d1e2f6f6d381d76ccbfa1f1e7d86a266bb18327e278162927ecc7d251926b820b0c14ed0fc8885eca1c42901e6ce7d9581cf562f21e2835c84e294b93b3dace0efe4a93d4fa88a5907051d3646c2c2de0341bea4ddc74f30347d31cff387c6c0e8c78dd88ad9acf84bf80dfae706667dbce720e6ab7fe79395bd11dad74fa3e387ef875b585c658242b92be16e1dbceb20422265f4b51acbda723435e63a3f1e0ac77c02b4c7c67600043bfd8ef9b20fbbb