gfsnp.private.geico.com
- GEICO -
Issued by Trustwave OV SHA256 Pre-Certificate CA
About this certificate
This digital certificate with serial number 07:57:45:3a:1a:57:14:e5:e4:6a:10:c8:1a:77:cd:b6:dd:16:35 was issued on by Trustwave Holdings, Inc..
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
GEICO
Organization:
GEICO
State / Province:
Maryland
Locality: Chevy Chase
Country: US
Locality: Chevy Chase
Country: US
Trustwave Holdings, Inc.
Organization:
Trustwave Holdings, Inc.
State / Province:
Illinois
Locality: Chicago
Country: US
Locality: Chicago
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:57:45:3a:1a:57:14:e5:e4:6a:10:c8:1a:77:cd:b6:dd:16:35Serial Number (int): 163707541981084747396982623763623780667954741
Serial Number lenght: 147 bits, 19 octets
SubjectKeyId: d1:3b:fe:84:84:d0:9f:d9:0c:73:df:9b:c4:61:22:a0:82:7c:ae:74
AuthorityKeyId: c0:ce:4c:b0:06:48:21:0b:4d:f4:a5:ac:f7:6b:f7:ba:dd:4e:04:4f
Fingerprint (sha1): 82:63:0d:0b:b0:b0:0c:51:40:ee:82:e7:ea:35:b7:f9:e7:b1:d6:c2
Fingerprint (sha256): 7e:b6:a4:72:de:f1:2a:20:f6:c7:86:78:84:50:bf:a5:a2:f7:c6:61:11:d3:b7:2c:c4:76:d6:d2:b7:26:65:08
Issuing Certificate URL: http://certs.securetrust.com/issuers/OVCA2_L1.crt
Revocation information
OCSP Server: http://ocsp.securetrust.com/CRL Distribution Point: http://crl.securetrust.com/OVCA2_L1.crl
Check the revocation status for certificate gfsnp.private.geico.com
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gfsnp.private.geico.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gfsnp.private.geico.com
adfsnpapp01.geico.net
adfsnpapp02.geico.net
adfsnpapp03.geico.net
adfsnpapp04.geico.net
adfsnpapp05.geico.net
adfsnpapp06.geico.net
adfsnpapp07.geico.net
adfsnpapp08.geico.net
adfsnpapp01.geico.net
adfsnpapp02.geico.net
adfsnpapp03.geico.net
adfsnpapp04.geico.net
adfsnpapp05.geico.net
adfsnpapp06.geico.net
adfsnpapp07.geico.net
adfsnpapp08.geico.net
Other certificates including the domain name geico.com
(limited to 100 certificates)
copart.geico.com
sattest.geico.com
Arbitration.geico.com
Ivanticsa6.private.geico.com
umbapp-umbuicustomer-ed1.geico.com
tierb2b-test.geico.com
partnersgateway-tt.geico.com
imperva.com
imperva.com
hive.geico.com
comcbs-ut1.geico.com
docusigneo-ut1.geico.com
imperva.com
docusigneo-EU1.geico.com
claims.geico.com
partnersgateway001-tr.geico.com
mstage2.service-ft.geico.com
umbrella-user.geico.com
service-ft.geico.com
mts-ut1.geico.com
psfthr-dr.oci.geico.com
awpocseg365.private.geico.com
partnersgateway001.geico.com
imperva.com
isotest1.geico.com
imperva.com
billingreportsapi-eu1.geico.com
Plazamail2016.geico.net
gragwns.private.geico.com
homeowners.geico.com
partnersgateway009-tr.geico.com
Ivanticsa12.private.geico.com
partnersgateway005-in.geico.com
tier2-int2.geico.com
ecams.geico.com
sales.geico.com
sales-in2.geico.com
boat-user.geico.com
dmvtest.geico.com
partnersgateway-tr.geico.com
egressgateway14-lt.geico.com
partners.geico.com
umbrella-user.geico.com
awprodsegv2.private.geico.com
ingressgateway07-ut.geico.com
sig-ft.geico.com
crm-cs-eapi-gateway-tr1.geico.com
*.geico.com
partnersgateway007.geico.com
edgein-tr.geico.com
claimsdr.geico.com
anbcui-prod.geico.com
tier.geico.com
ecams.geico.com
claimiq.geico.com
mts.geico.com
docusigneo-FT1.geico.com
imperva.com
atlastest.geico.com
vdipd1external.private.geico.com
propertysales.geico.com
polcomexpressvue-eu1.geico.com
edgeex-in.geico.com
imperva.com
commercial-in1.geico.com
nocpaa.np.geico.com
auto-buy-tr1.geico.com
imperva.com
optout.geico.com
portfolioex-lt.geico.com
ingressgateway08.geico.com
capsales-test.geico.com
partnersgateway002-dv.geico.com
adestimatetest.geico.com
polcomexpressvue-eu1.geico.com
bilpyh-ut1.geico.com
blaster.geico.com
umbrella-c-load.geico.com
edsinbound-trng.geico.com
umbapp-umbuicustomer-ed1.geico.com
FRWS7845.geico.net
claimsportal-tr1.geico.com
FredMail2016.geico.net
partnersgateway005.geico.com
salesb2b2-int.geico.com
telpdchvg01.anc.geico.net
cvshealth.geico.com
propertysales-ut1-api.geico.com
imperva.com
rewards-ut1.geico.com
*.geico.com
ivrpl.private.geico.com
edsinbound-load.geico.com
billingwdayinterface.geico.com
CHWS7104.geico.net
auto-buy-GZ-ftrack1.geico.com
PartnersTest.geico.com
auto-kate-fn1.geico.com
propertysales-It-api.geico.com
imperva.com
sattest.geico.com
Arbitration.geico.com
Ivanticsa6.private.geico.com
umbapp-umbuicustomer-ed1.geico.com
tierb2b-test.geico.com
partnersgateway-tt.geico.com
imperva.com
imperva.com
hive.geico.com
comcbs-ut1.geico.com
docusigneo-ut1.geico.com
imperva.com
docusigneo-EU1.geico.com
claims.geico.com
partnersgateway001-tr.geico.com
mstage2.service-ft.geico.com
umbrella-user.geico.com
service-ft.geico.com
mts-ut1.geico.com
psfthr-dr.oci.geico.com
awpocseg365.private.geico.com
partnersgateway001.geico.com
imperva.com
isotest1.geico.com
imperva.com
billingreportsapi-eu1.geico.com
Plazamail2016.geico.net
gragwns.private.geico.com
homeowners.geico.com
partnersgateway009-tr.geico.com
Ivanticsa12.private.geico.com
partnersgateway005-in.geico.com
tier2-int2.geico.com
ecams.geico.com
sales.geico.com
sales-in2.geico.com
boat-user.geico.com
dmvtest.geico.com
partnersgateway-tr.geico.com
egressgateway14-lt.geico.com
partners.geico.com
umbrella-user.geico.com
awprodsegv2.private.geico.com
ingressgateway07-ut.geico.com
sig-ft.geico.com
crm-cs-eapi-gateway-tr1.geico.com
*.geico.com
partnersgateway007.geico.com
edgein-tr.geico.com
claimsdr.geico.com
anbcui-prod.geico.com
tier.geico.com
ecams.geico.com
claimiq.geico.com
mts.geico.com
docusigneo-FT1.geico.com
imperva.com
atlastest.geico.com
vdipd1external.private.geico.com
propertysales.geico.com
polcomexpressvue-eu1.geico.com
edgeex-in.geico.com
imperva.com
commercial-in1.geico.com
nocpaa.np.geico.com
auto-buy-tr1.geico.com
imperva.com
optout.geico.com
portfolioex-lt.geico.com
ingressgateway08.geico.com
capsales-test.geico.com
partnersgateway002-dv.geico.com
adestimatetest.geico.com
polcomexpressvue-eu1.geico.com
bilpyh-ut1.geico.com
blaster.geico.com
umbrella-c-load.geico.com
edsinbound-trng.geico.com
umbapp-umbuicustomer-ed1.geico.com
FRWS7845.geico.net
claimsportal-tr1.geico.com
FredMail2016.geico.net
partnersgateway005.geico.com
salesb2b2-int.geico.com
telpdchvg01.anc.geico.net
cvshealth.geico.com
propertysales-ut1-api.geico.com
imperva.com
rewards-ut1.geico.com
*.geico.com
ivrpl.private.geico.com
edsinbound-load.geico.com
billingwdayinterface.geico.com
CHWS7104.geico.net
auto-buy-GZ-ftrack1.geico.com
PartnersTest.geico.com
auto-kate-fn1.geico.com
propertysales-It-api.geico.com
imperva.com
Certificate
The complete raw certificate details for gfsnp.private.geico.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6zCCBNOgAwIBAgITB1dFOhpXFOXkahDIGnfNtt0WNTANBgkqhkiG9w0BAQsF ADCBhjEvMC0GA1UEAxMmVHJ1c3R3YXZlIE9WIFNIQTI1NiBQcmUtQ2VydGlmaWNh dGUgQ0ExITAfBgNVBAoTGFRydXN0d2F2ZSBIb2xkaW5ncywgSW5jLjEQMA4GA1UE BxMHQ2hpY2FnbzERMA8GA1UECBMISWxsaW5vaXMxCzAJBgNVBAYTAlVTMB4XDTIx MTExNjA5MTAxOVoXDTIyMTExNjA5MDkxOVowaDEgMB4GA1UEAxMXZ2ZzbnAucHJp dmF0ZS5nZWljby5jb20xDjAMBgNVBAoTBUdFSUNPMRQwEgYDVQQHEwtDaGV2eSBD aGFzZTERMA8GA1UECBMITWFyeWxhbmQxCzAJBgNVBAYTAlVTMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2hFZgzUo3xoo3O8eAoMOu94Si2sRhsOw4rpQ qb9IxE8zE3t2jCIs/mstEKuNzkmsNtZvdbiDYaLKA5/JWaNQnOwq5HC0ZgOoIrO1 BEJREsAgOj/jblbu+xecazJHh+xtiYwpNWyc5FalqJvOa9JqTLdHJMi/iRe4BInW dqCSXVOMhIzgjvBN9y415/eBxCmFKPpa3vWi9QnBvAw6DkZtXJ7V9CVmeDu/WcwU hju8+wbgLqnwQUr6vI1m/I9I5VsmaiGkbaQ6B3pTbi36+ajF+BrHXA5vNlF4dO+x /3EaxYAGda3wM/t3rP5Q3nCnPbh1AVhnPhsFerqjAs7gPToYZwIDAQABo4ICbTCC AmkwDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwIGCCsGAQUFBwMBMB0GA1UdDgQWBBTRO/6EhNCf2Qxz35vEYSKggnyudDAf BgNVHSMEGDAWgBTAzkywBkghC030paz3a/e63U4ETzBDBgNVHSAEPDA6MDgGBmeB DAECAjAuMCwGCCsGAQUFBwIBFiBodHRwczovL2NlcnRzLnNlY3VyZXRydXN0LmNv bS9DQTCB3AYDVR0RBIHUMIHRghdnZnNucC5wcml2YXRlLmdlaWNvLmNvbYIVYWRm c25wYXBwMDEuZ2VpY28ubmV0ghVhZGZzbnBhcHAwMi5nZWljby5uZXSCFWFkZnNu cGFwcDAzLmdlaWNvLm5ldIIVYWRmc25wYXBwMDQuZ2VpY28ubmV0ghVhZGZzbnBh cHAwNS5nZWljby5uZXSCFWFkZnNucGFwcDA2LmdlaWNvLm5ldIIVYWRmc25wYXBw MDcuZ2VpY28ubmV0ghVhZGZzbnBhcHAwOC5nZWljby5uZXQwOAYDVR0fBDEwLzAt oCugKYYnaHR0cDovL2NybC5zZWN1cmV0cnVzdC5jb20vT1ZDQTJfTDEuY3JsMHcG CCsGAQUFBwEBBGswaTAoBggrBgEFBQcwAYYcaHR0cDovL29jc3Auc2VjdXJldHJ1 c3QuY29tLzA9BggrBgEFBQcwAoYxaHR0cDovL2NlcnRzLnNlY3VyZXRydXN0LmNv bS9pc3N1ZXJzL09WQ0EyX0wxLmNydDATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkq hkiG9w0BAQsFAAOCAQEACHE3DWJxtcd3539B7a6B8f5qdev56V0QdejCe0EM3Qn4 NGGCbaS1CADfyFGpknUJN29sWmzu3gKO8dChMjrwnSmaFI6LBbJV+edGcKLAhNAr djiprcQ6/Y4zSImvihQZ6LkTaUzaheAvU0Myt/wJe3gqLZpuXr62qicM5N7MXTxz qI4IuzO7CS5nlz+yiv5J9hNRtrRMJad7qfwlXq9rba6WS9fxXw3F/+9wMR7ItCoL oxb0ScEhrBIXHwraEIX/2Jm5JMJjoagOD4TQPFCksvrsUBkEZp8MZHJj05qUs01u MEi8FQeBncXvwtXnL5cVLgNGi/yoKZyIKMSld85/BQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2hFZgzUo3xoo3O8eAoMO u94Si2sRhsOw4rpQqb9IxE8zE3t2jCIs/mstEKuNzkmsNtZvdbiDYaLKA5/JWaNQ nOwq5HC0ZgOoIrO1BEJREsAgOj/jblbu+xecazJHh+xtiYwpNWyc5FalqJvOa9Jq TLdHJMi/iRe4BInWdqCSXVOMhIzgjvBN9y415/eBxCmFKPpa3vWi9QnBvAw6DkZt XJ7V9CVmeDu/WcwUhju8+wbgLqnwQUr6vI1m/I9I5VsmaiGkbaQ6B3pTbi36+ajF +BrHXA5vNlF4dO+x/3EaxYAGda3wM/t3rP5Q3nCnPbh1AVhnPhsFerqjAs7gPToY ZwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 163707541981084747396982623763623780667954741 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave OV SHA256 Pre-Certificate CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Holdings, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-16 09:10:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-11-16 09:09:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gfsnp.private.geico.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEICO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chevy Chase' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27528505917983780342262995869261005950031187293797586576449015654312897590398785259971717661520523719859744333644647858156163381864629114305455043443581783605756520154273440694032214080795538568419017452884585214692753517875959799546887695194577743685124613491220985615065249617180897153642372532324794238807406923422283467906102210369319712654466565933671748457985631705006761171225183852223108130796215066378179826409903736471010467628640034433023846791632997596334905577940627003016547918211686012970723810432361877095081705417750905746654278398281370515903172097927511878682626618580910810848579573412623040518247 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d13bfe8484d09fd90c73df9bc46122a0827cae74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c0ce4cb00648210b4df4a5acf76bf7badd4e044f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certs.securetrust.com/CA' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (212 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gfsnp.private.geico.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfsnpapp01.geico.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfsnpapp02.geico.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfsnpapp03.geico.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfsnpapp04.geico.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfsnpapp05.geico.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfsnpapp06.geico.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfsnpapp07.geico.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfsnpapp08.geico.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.securetrust.com/OVCA2_L1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.securetrust.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certs.securetrust.com/issuers/OVCA2_L1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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