imperva.com
Issued by GlobalSign Atlas R3 DV TLS CA 2023 Q3
About this certificate
This digital certificate with serial number 01:6f:58:6a:b9:5c:ad:49:43:ff:54:6e:05:6c:47:65 was issued on by GlobalSign nv-sa.
With 56 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=imperva.com
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 01:6f:58:6a:b9:5c:ad:49:43:ff:54:6e:05:6c:47:65Serial Number (int): 1907366254679395911954749605288888165
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 67:8c:cc:4b:d2:5d:84:58:95:24:09:16:3e:67:8c:e8:41:4b:dc:78
AuthorityKeyId: ed:a0:e6:01:05:3e:34:82:1a:a4:4f:5f:c5:bd:11:41:aa:df:f3:61
Fingerprint (sha1): 24:1b:84:a2:ce:64:3e:f1:fe:f8:a9:a8:b4:64:16:a7:f2:af:a3:a7
Fingerprint (sha256): 7a:b2:11:1f:5a:3d:2f:7d:67:66:eb:e8:33:c9:dd:53:ff:03:b8:b5:3a:89:94:90:81:ca:9f:cf:b8:c2:07:c5
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2023q3.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2023q3CRL Distribution Point: http://crl.globalsign.com/ca/gsatlasr3dvtlsca2023q3.crl
Check the revocation status for certificate imperva.com
56
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for imperva.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.lghealthjobs.org
penncancer.org
*.pennmedicine.org
chestercountyhospital.org
princetonrheumatology.com
*.ocwish.org
ocwish.org
*.lancasterneuroscience.com
mypennmedicine.org
knowledgelink.upenn.edu
*.jlgh.org
lghblooddonors.org
lghealthhub.org
*.mypennmedicine.org
*.princetonrheumatology.com
*.princetonhcs.org
*.cceb.med.upenn.edu
*.eliancehealthsolutions.org
*.pmacs.upenn.edu
*.pennproton.org
*.pennprotontherapy.org
pennmedicine.com
*.rockmedical.com
*.cchosp.com
cchosp.com
*.lghealth.org
*.lghealthexpress.org
pennproton.org
*.mylghealth.org
pennprotontherapy.org
*.lghealthhub.org
rockmedical.com
lancastergeneralhealth.org
lghealthjobs.org
lghealthexpress.org
*.checkyourlungs.org
checkyourlungs.org
eliancehealthsolutions.org
lancasterneuroscience.com
ourcarewishes.org
pennmedicine.org
imperva.com
lancasterfamilymed.org
*.chestercountyhospital.org
mylghealth.org
*.lghblooddonors.org
jlgh.org
*.penncancer.org
*.pennmedicine.com
redcap-test-web.pmacs.upenn.edu
*.lancastergeneralhealth.org
*.uphs.upenn.edu
princetonhcs.org
*.med.upenn.edu
*.lancasterfamilymed.org
*.ourcarewishes.org
penncancer.org
*.pennmedicine.org
chestercountyhospital.org
princetonrheumatology.com
*.ocwish.org
ocwish.org
*.lancasterneuroscience.com
mypennmedicine.org
knowledgelink.upenn.edu
*.jlgh.org
lghblooddonors.org
lghealthhub.org
*.mypennmedicine.org
*.princetonrheumatology.com
*.princetonhcs.org
*.cceb.med.upenn.edu
*.eliancehealthsolutions.org
*.pmacs.upenn.edu
*.pennproton.org
*.pennprotontherapy.org
pennmedicine.com
*.rockmedical.com
*.cchosp.com
cchosp.com
*.lghealth.org
*.lghealthexpress.org
pennproton.org
*.mylghealth.org
pennprotontherapy.org
*.lghealthhub.org
rockmedical.com
lancastergeneralhealth.org
lghealthjobs.org
lghealthexpress.org
*.checkyourlungs.org
checkyourlungs.org
eliancehealthsolutions.org
lancasterneuroscience.com
ourcarewishes.org
pennmedicine.org
imperva.com
lancasterfamilymed.org
*.chestercountyhospital.org
mylghealth.org
*.lghblooddonors.org
jlgh.org
*.penncancer.org
*.pennmedicine.com
redcap-test-web.pmacs.upenn.edu
*.lancastergeneralhealth.org
*.uphs.upenn.edu
princetonhcs.org
*.med.upenn.edu
*.lancasterfamilymed.org
*.ourcarewishes.org
Other certificates including the domain name imperva.com
(limited to 100 certificates)
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
Certificate
The complete raw certificate details for imperva.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIK1jCCCb6gAwIBAgIQAW9YarlcrUlD/1RuBWxHZTANBgkqhkiG9w0BAQsFADBY MQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEuMCwGA1UE AxMlR2xvYmFsU2lnbiBBdGxhcyBSMyBEViBUTFMgQ0EgMjAyMyBRMzAeFw0yMzA5 MjUxNTU1MzdaFw0yNDAzMjMxNTU1MzdaMBYxFDASBgNVBAMMC2ltcGVydmEuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0FENpty9NBv6ysehxpX QYd3CMF6brXjs7auk6I+wxOB1QLHeMkglyt5bgr3njctarMlIypcVJ23CLollO0c Db6WOgz2sutrV6G24XL9kdiJ5AZL2qYS/YxBbGhsHsxs1uHK1NaCQyilZsTVgkpv BBNBc22jHE7ZGBlY4GqQQ/DPiXgpf6BdOrBLO/jOE1QTRDJZcnMmt7FA16fd7hLP v9xpjmjxHaI4dhHBRP6LOLOQFYNGdSSOPafmeRU7hOwMz6zF6R6IQuV4FbeZCfx4 4RRk2j5maCBXn/xlXuGVRds9KVZ5QQ6vZC2P5nTgfgAYy+HcmEQKLrEYsT3Db+a+ zQIDAQABo4IH3DCCB9gwggSQBgNVHREEggSHMIIEg4ISKi5sZ2hlYWx0aGpvYnMu b3Jngg5wZW5uY2FuY2VyLm9yZ4ISKi5wZW5ubWVkaWNpbmUub3JnghljaGVzdGVy Y291bnR5aG9zcGl0YWwub3JnghlwcmluY2V0b25yaGV1bWF0b2xvZ3kuY29tggwq Lm9jd2lzaC5vcmeCCm9jd2lzaC5vcmeCGyoubGFuY2FzdGVybmV1cm9zY2llbmNl LmNvbYISbXlwZW5ubWVkaWNpbmUub3Jnghdrbm93bGVkZ2VsaW5rLnVwZW5uLmVk dYIKKi5qbGdoLm9yZ4ISbGdoYmxvb2Rkb25vcnMub3Jngg9sZ2hlYWx0aGh1Yi5v cmeCFCoubXlwZW5ubWVkaWNpbmUub3JnghsqLnByaW5jZXRvbnJoZXVtYXRvbG9n eS5jb22CEioucHJpbmNldG9uaGNzLm9yZ4IUKi5jY2ViLm1lZC51cGVubi5lZHWC HCouZWxpYW5jZWhlYWx0aHNvbHV0aW9ucy5vcmeCESoucG1hY3MudXBlbm4uZWR1 ghAqLnBlbm5wcm90b24ub3JnghcqLnBlbm5wcm90b250aGVyYXB5Lm9yZ4IQcGVu bm1lZGljaW5lLmNvbYIRKi5yb2NrbWVkaWNhbC5jb22CDCouY2Nob3NwLmNvbYIK Y2Nob3NwLmNvbYIOKi5sZ2hlYWx0aC5vcmeCFSoubGdoZWFsdGhleHByZXNzLm9y Z4IOcGVubnByb3Rvbi5vcmeCECoubXlsZ2hlYWx0aC5vcmeCFXBlbm5wcm90b250 aGVyYXB5Lm9yZ4IRKi5sZ2hlYWx0aGh1Yi5vcmeCD3JvY2ttZWRpY2FsLmNvbYIa bGFuY2FzdGVyZ2VuZXJhbGhlYWx0aC5vcmeCEGxnaGVhbHRoam9icy5vcmeCE2xn aGVhbHRoZXhwcmVzcy5vcmeCFCouY2hlY2t5b3VybHVuZ3Mub3JnghJjaGVja3lv dXJsdW5ncy5vcmeCGmVsaWFuY2VoZWFsdGhzb2x1dGlvbnMub3JnghlsYW5jYXN0 ZXJuZXVyb3NjaWVuY2UuY29tghFvdXJjYXJld2lzaGVzLm9yZ4IQcGVubm1lZGlj aW5lLm9yZ4ILaW1wZXJ2YS5jb22CFmxhbmNhc3RlcmZhbWlseW1lZC5vcmeCGyou Y2hlc3RlcmNvdW50eWhvc3BpdGFsLm9yZ4IObXlsZ2hlYWx0aC5vcmeCFCoubGdo Ymxvb2Rkb25vcnMub3JngghqbGdoLm9yZ4IQKi5wZW5uY2FuY2VyLm9yZ4ISKi5w ZW5ubWVkaWNpbmUuY29tgh9yZWRjYXAtdGVzdC13ZWIucG1hY3MudXBlbm4uZWR1 ghwqLmxhbmNhc3RlcmdlbmVyYWxoZWFsdGgub3JnghAqLnVwaHMudXBlbm4uZWR1 ghBwcmluY2V0b25oY3Mub3Jngg8qLm1lZC51cGVubi5lZHWCGCoubGFuY2FzdGVy ZmFtaWx5bWVkLm9yZ4ITKi5vdXJjYXJld2lzaGVzLm9yZzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQWBBRnjMxL 0l2EWJUkCRY+Z4zoQUvceDBXBgNVHSAEUDBOMAgGBmeBDAECATBCBgorBgEEAaAy CgEDMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3Lmdsb2JhbHNpZ24uY29tL3Jl cG9zaXRvcnkvMAwGA1UdEwEB/wQCMAAwgZ4GCCsGAQUFBwEBBIGRMIGOMEAGCCsG AQUFBzABhjRodHRwOi8vb2NzcC5nbG9iYWxzaWduLmNvbS9jYS9nc2F0bGFzcjNk dnRsc2NhMjAyM3EzMEoGCCsGAQUFBzAChj5odHRwOi8vc2VjdXJlLmdsb2JhbHNp Z24uY29tL2NhY2VydC9nc2F0bGFzcjNkdnRsc2NhMjAyM3EzLmNydDAfBgNVHSME GDAWgBTtoOYBBT40ghqkT1/FvRFBqt/zYTBIBgNVHR8EQTA/MD2gO6A5hjdodHRw Oi8vY3JsLmdsb2JhbHNpZ24uY29tL2NhL2dzYXRsYXNyM2R2dGxzY2EyMDIzcTMu Y3JsMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgB2/4g/Crb7lVHCYcz1h7o0 tKTNuyncaEIKn+ZnTFo6dAAAAYrNDb+KAAAEAwBHMEUCIQDnmps4lgk7Q4cE4NX4 vI2s0Ga/xwldq7//FRzJkyXOogIgMhdeOkjmLZYAsFvG1etqcX8Hye1orAo1rNCr 6Tx2F8YAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYrNDcAw AAAEAwBHMEUCIHEthEpTZWGjPC4xA30T0SbdwtJODmEkiyDTSH1sUoxmAiEA0nFm 88SvImN4P9xzJe+E2IBp3u7D7wXPJ8eyyj5BEZ8AdwBIsONr2qZHNA/lagL6nTDr HFIBy1bdLIHZu7+rOdiEcwAAAYrNDcLLAAAEAwBIMEYCIQCUCZrPQStiG12CPNiS pNaDz9Xr6NYZNfXUiN7IqFQfewIhAO7MqEIFujbT3yMnSiz3F8kF2ooYxr9YEzqO HeaESDSTMA0GCSqGSIb3DQEBCwUAA4IBAQBiWE3EPWyLBiWW2JTq64nvkPYphStJ V8kSLCoucSSttvIDlr0yIfCWOJLlC12raNx3J6srxjF93rp81zN0mMQXvZEuQWjG hP50rV6KdXn0KTzc8XM5D+b50+dg6fv6KRl5sbeFSZeQWqTMPUD0PY024d/lsfHY 3WIfLNO/TL3W8J/d8WP8bPq9shDsXnIC2mVoA1oj3J+ViwwOvum2xJtEpzb0gpQu h0PwChGx6gwnDqJIdCbSB7pcgngqRg9uzmr6f1pPCrwXFRrzY/8mu9FG2QhPc2Aw Sb5HPoaHZm/cO/AP2PYmn2VnIbb+sg5bRK4ukAa18D3rVdcJBO492Zap -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0FENpty9NBv6ysehxpX QYd3CMF6brXjs7auk6I+wxOB1QLHeMkglyt5bgr3njctarMlIypcVJ23CLollO0c Db6WOgz2sutrV6G24XL9kdiJ5AZL2qYS/YxBbGhsHsxs1uHK1NaCQyilZsTVgkpv BBNBc22jHE7ZGBlY4GqQQ/DPiXgpf6BdOrBLO/jOE1QTRDJZcnMmt7FA16fd7hLP v9xpjmjxHaI4dhHBRP6LOLOQFYNGdSSOPafmeRU7hOwMz6zF6R6IQuV4FbeZCfx4 4RRk2j5maCBXn/xlXuGVRds9KVZ5QQ6vZC2P5nTgfgAYy+HcmEQKLrEYsT3Db+a+ zQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1907366254679395911954749605288888165 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Atlas R3 DV TLS CA 2023 Q3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-25 15:55:37 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-23 15:55:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'imperva.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17579308480357803183341891218920204672273267868313891211645344152513683921393755916220382382402251605397172844624372142746053244227814040832253315566420937365803315451583274305257071161459319125095854653292303418133781150511267215326027413202682662008347490691203869617295967135648752722135922570907262208641979879146291741015317472561274872901083204644122104281536011810285910077282400024699810835245029656499291538119024003600157697886027529083669470982223559769241909852362820175380765584431676343405096872964779315866149821583921973509581289061206117239623954063918644102831414438027411661205718449356000211680973 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1159 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthjobs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'penncancer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chestercountyhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'princetonrheumatology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ocwish.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ocwish.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancasterneuroscience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mypennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knowledgelink.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.jlgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghblooddonors.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthhub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mypennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.princetonrheumatology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.princetonhcs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cceb.med.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eliancehealthsolutions.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pmacs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennproton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennprotontherapy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennmedicine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rockmedical.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cchosp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cchosp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthexpress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennproton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mylghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennprotontherapy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthhub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rockmedical.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancastergeneralhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthjobs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthexpress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.checkyourlungs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'checkyourlungs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eliancehealthsolutions.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancasterneuroscience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ourcarewishes.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imperva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancasterfamilymed.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chestercountyhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mylghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghblooddonors.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jlgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.penncancer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennmedicine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redcap-test-web.pmacs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancastergeneralhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.uphs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'princetonhcs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.med.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancasterfamilymed.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ourcarewishes.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 678ccc4bd25d8458952409163e678ce8414bdc78 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.10.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (145 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2023q3' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2023q3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName eda0e601053e34821aa44f5fc5bd1141aadff361 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/ca/gsatlasr3dvtlsca2023q3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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