bomgar.ijm.org
- International Justice Mission -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0c:a2:1f:fd:cb:f6:76:96:db:c4:eb:47:2e:5d:a8:30 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
International Justice Mission
Organization:
International Justice Mission
Organization unit: IT
Organization unit: IT
State / Province:
District of Columbia
Locality: Washington
Country: US
Locality: Washington
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:a2:1f:fd:cb:f6:76:96:db:c4:eb:47:2e:5d:a8:30Serial Number (int): 16792536903047874628779056943477925936
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 63:27:7a:28:40:61:9e:91:6b:68:34:db:c2:dd:28:62:f2:1e:2b:7a
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): ad:7d:2d:27:f6:98:50:b9:90:a4:8d:78:f5:00:06:33:df:b0:d3:c5
Fingerprint (sha256): 79:93:cd:9b:f8:d6:dc:28:66:57:a9:21:9c:89:22:69:cb:52:16:7d:e8:d9:59:83:f9:51:ee:ae:12:00:74:59
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate bomgar.ijm.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bomgar.ijm.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bomgar.ijm.org
Other certificates including the domain name ijm.org
(limited to 100 certificates)
stage.ijm.org
stage.freedomcommons.ijm.org
gifts.ijm.org
sentry.ijm.org
image.mktmarathonkids.org
ssl964611.cloudflaressl.com
freedomcommons.ijm.org
stage.gifts.ijm.org
sni.cloudflaressl.com
gifts.ijm.org
netcommunity.ijm.org
www.ijm.org
mask12.classy.org
sharepoint.ijm.org
stage.ijm.org
gifts.ijm.org
image.mktmarathonkids.org
gifts.ijm.org
mask12.classy.org
fundraising.ijm.org
*.ijm.org
freedomcommons.ijm.org
mask12.classy.org
mask12.classy.org
mask12.classy.org
freedomcommons.ijm.org
mask12.classy.org
gifts.ijm.org
mask12.classy.org
dev.ijm.org
mobile.ijm.org
image.mktmarathonkids.org
support.quickhelp.com
mobile.ijm.org
support.quickhelp.com
san-3-s7.tlsprovisioning.exacttarget.com
tableau.ijm.org
support.quickhelp.com
*.ijm.org
stage.ijm.org
dev.ijm.org
stage.ijm.org
webmail.ijm.org
stage.gifts.ijm.org
www.ijm.org
stage.ijm.org
stage.ijm.org
webmail.ijm.org
ssl964612.cloudflaressl.com
stage.freedomcommons.ijm.org
image.mktmarathonkids.org
support.quickhelp.com
gifts.ijm.org
tableau.ijm.org
gifts.ijm.org
ijm.org
stage.freedomcommons.ijm.org
stage.gifts.ijm.org
image.mktmarathonkids.org
image.mktmarathonkids.org
mask12.classy.org
sharepoint.ijm.org
image.mktmarathonkids.org
support.quickhelp.com
mobile.ijm.org
image.mktmarathonkids.org
mask12.classy.org
webmail.ijm.org
mask12.classy.org
gifts.ijm.org
stage.gifts.ijm.org
mask12.classy.org
dev.ijm.org
image.mktmarathonkids.org
webmail.ijm.org
mask12.classy.org
my.ijm.org
mask12.classy.org
sni.cloudflaressl.com
www.ijm.org
image.mktmarathonkids.org
image.mktmarathonkids.org
mask12.classy.org
gifts.ijm.org
san-3-s7.tlsprovisioning.exacttarget.com
mask12.classy.org
mask12.classy.org
image.mktmarathonkids.org
stage.freedomcommons.ijm.org
tableau.ijm.org
www.ijm.org
image.mktmarathonkids.org
mask12.classy.org
stage.gifts.ijm.org
sni.cloudflaressl.com
webmail.ijm.org
bomgar.ijm.org
image.mktmarathonkids.org
sni.cloudflaressl.com
dev.ijm.org
stage.freedomcommons.ijm.org
gifts.ijm.org
sentry.ijm.org
image.mktmarathonkids.org
ssl964611.cloudflaressl.com
freedomcommons.ijm.org
stage.gifts.ijm.org
sni.cloudflaressl.com
gifts.ijm.org
netcommunity.ijm.org
www.ijm.org
mask12.classy.org
sharepoint.ijm.org
stage.ijm.org
gifts.ijm.org
image.mktmarathonkids.org
gifts.ijm.org
mask12.classy.org
fundraising.ijm.org
*.ijm.org
freedomcommons.ijm.org
mask12.classy.org
mask12.classy.org
mask12.classy.org
freedomcommons.ijm.org
mask12.classy.org
gifts.ijm.org
mask12.classy.org
dev.ijm.org
mobile.ijm.org
image.mktmarathonkids.org
support.quickhelp.com
mobile.ijm.org
support.quickhelp.com
san-3-s7.tlsprovisioning.exacttarget.com
tableau.ijm.org
support.quickhelp.com
*.ijm.org
stage.ijm.org
dev.ijm.org
stage.ijm.org
webmail.ijm.org
stage.gifts.ijm.org
www.ijm.org
stage.ijm.org
stage.ijm.org
webmail.ijm.org
ssl964612.cloudflaressl.com
stage.freedomcommons.ijm.org
image.mktmarathonkids.org
support.quickhelp.com
gifts.ijm.org
tableau.ijm.org
gifts.ijm.org
ijm.org
stage.freedomcommons.ijm.org
stage.gifts.ijm.org
image.mktmarathonkids.org
image.mktmarathonkids.org
mask12.classy.org
sharepoint.ijm.org
image.mktmarathonkids.org
support.quickhelp.com
mobile.ijm.org
image.mktmarathonkids.org
mask12.classy.org
webmail.ijm.org
mask12.classy.org
gifts.ijm.org
stage.gifts.ijm.org
mask12.classy.org
dev.ijm.org
image.mktmarathonkids.org
webmail.ijm.org
mask12.classy.org
my.ijm.org
mask12.classy.org
sni.cloudflaressl.com
www.ijm.org
image.mktmarathonkids.org
image.mktmarathonkids.org
mask12.classy.org
gifts.ijm.org
san-3-s7.tlsprovisioning.exacttarget.com
mask12.classy.org
mask12.classy.org
image.mktmarathonkids.org
stage.freedomcommons.ijm.org
tableau.ijm.org
www.ijm.org
image.mktmarathonkids.org
mask12.classy.org
stage.gifts.ijm.org
sni.cloudflaressl.com
webmail.ijm.org
bomgar.ijm.org
image.mktmarathonkids.org
sni.cloudflaressl.com
dev.ijm.org
Certificate
The complete raw certificate details for bomgar.ijm.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRzCCBS+gAwIBAgIQDKIf/cv2dpbbxOtHLl2oMDANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwNTI0MDAwMDAwWhcN MTkwNzEwMTIwMDAwWjCBjzELMAkGA1UEBhMCVVMxHTAbBgNVBAgTFERpc3RyaWN0 IG9mIENvbHVtYmlhMRMwEQYDVQQHEwpXYXNoaW5ndG9uMSYwJAYDVQQKEx1JbnRl cm5hdGlvbmFsIEp1c3RpY2UgTWlzc2lvbjELMAkGA1UECxMCSVQxFzAVBgNVBAMT DmJvbWdhci5pam0ub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA oP8JlCJbhYvUSiI4w6jk765bCMfsPxwSWo4eE9p8d66lY8j3+iM8OL4xd8O1yazd GO8a33WeKhg4W7aSSUmuUtdEt5kGUYgYCVYDtzMs84tjh2La0fRpAh2aXHpIlaOC sBMZyuv6bTfLNSHBkUgHdBcDxvsudgcQMLBcm6m66xfpg+NWwxdSRWvN8mrzupAR yX1sG9qOQLARsC0FITRzxYPbEXLFQD/8eIVoX2g2v4yniapSSQHO3ZhgjvbSu4mz LbDrog5IzBC3KJIBoB8Y7AhTxPnxlULdZ+1tjeHMRQPsAcKzHulrFLwxu+WdLMXc lGsnv44Ua1L7M7Pbh1SdPQIDAQABo4IC3jCCAtowHwYDVR0jBBgwFoAUD4BhHIIx YdUvKOeNRji0LOHG2eIwHQYDVR0OBBYEFGMneihAYZ6Ra2g028LdKGLyHit6MBkG A1UdEQQSMBCCDmJvbWdhci5pam0ub3JnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDov L2NybDMuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwL6AtoCuGKWh0dHA6 Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMEwGA1UdIARFMEMw NwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0 LmNvbS9DUFMwCAYGZ4EMAQICMHwGCCsGAQUFBwEBBHAwbjAkBggrBgEFBQcwAYYY aHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEYGCCsGAQUFBzAChjpodHRwOi8vY2Fj ZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0EuY3J0 MAwGA1UdEwEB/wQCMAAwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgCkuQmQtBhY FIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAWOSipiZAAAEAwBHMEUCIQDkzUYq 1RxtbKi+41cpOsckLeHz2Tyq5EODejVu+sjkmgIgLJVKeea+755hhhKwuFL2LCLm ztBQ8rGUFyznDOFDyoQAdwCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCD DwAAAWOSipk6AAAEAwBIMEYCIQCRkpVqS/ndJDxzcEWcd9beMVwuAt5ynLFVvZQn q8O/ogIhAMtmp7TijBEuPSBYTH7J9ayHbhRZ6iQOeko722S3YXpHMA0GCSqGSIb3 DQEBCwUAA4IBAQCeTIhl32uIkYF+0kx6RI0y1qeKVCrY8QEHuWgk0UY1RpLZteAd zPA/S4pG7H9wp3AKG7lyz1ia1tbxDuhmWrxhugJDo3ZM4NGYYlszx4byzsUzzi/5 +RQEPgSQRxnrkbTVflHY7ogkpk9BISJ5Ms3YxYXZxSzBKcWomXqiT1iBiGqbzLfj P6TkoynkDyqX4HyutiywsQaqo7XZKmCxGoCUAqixqYcK/OwlZwSayDHyPLqjG7WU bZ/lK+fDyJlpkmZWemgyoQBZYdrmUwfREDkbR5ttD2+/fU/lzRTJritxvl3vkIcs z6IRsFtdyl/qlH6AT/nbtFX8lu9JrUVkJGXP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoP8JlCJbhYvUSiI4w6jk 765bCMfsPxwSWo4eE9p8d66lY8j3+iM8OL4xd8O1yazdGO8a33WeKhg4W7aSSUmu UtdEt5kGUYgYCVYDtzMs84tjh2La0fRpAh2aXHpIlaOCsBMZyuv6bTfLNSHBkUgH dBcDxvsudgcQMLBcm6m66xfpg+NWwxdSRWvN8mrzupARyX1sG9qOQLARsC0FITRz xYPbEXLFQD/8eIVoX2g2v4yniapSSQHO3ZhgjvbSu4mzLbDrog5IzBC3KJIBoB8Y 7AhTxPnxlULdZ+1tjeHMRQPsAcKzHulrFLwxu+WdLMXclGsnv44Ua1L7M7Pbh1Sd PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16792536903047874628779056943477925936 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-10 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'International Justice Mission' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bomgar.ijm.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20323892431969129154178375435013417054262723170481219669690510285727054295770173478713191481894757960614614565279963818100054880493405148294341831427309310136204387647082210616954065191653513848031493082411617515023440632762840603568403984649440657664734604703476863224432073399407208817659875785016427335682827176910319492692401464921156593322183412968039914868348458931690620603975445380973242582091158685642547552875660383319281818754379147966569019669153523250281057177465047550387504409714417446737910100413746421010045932227332070430189397745493053017296028244154952003833365407226084735399876434467024178289981 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 63277a2840619e916b6834dbc2dd2862f21e2b7a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bomgar.ijm.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000163928a98990000040300473045022100e4cd462ad51c6d6ca8bee357293ac7242de1f3d93caae443837a356efac8e49a02202c954a79e6beef9e618612b0b852f62c22e6ced050f2b194172ce70ce143ca840077008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000163928a993a00000403004830460221009192956a4bf9dd243c7370459c77d6de315c2e02de729cb155bd9427abc3bfa2022100cb66a7b4e28c112e3d20584c7ec9f5ac876e1459ea240e7a4a3bdb64b7617a47 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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