*.allina.com
- Allina Health System -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0f:75:36:a4:a2:fc:ff:27:d5:4c:1b:9a:80:53:b2:bf was issued on by DigiCert Inc.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Allina Health System
Organization:
Allina Health System
State / Province:
Minnesota
Locality: Minneapolis
Country: US
Locality: Minneapolis
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:75:36:a4:a2:fc:ff:27:d5:4c:1b:9a:80:53:b2:bfSerial Number (int): 20547026963201988291496060765844255423
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 4f:02:f9:37:67:1c:10:26:b4:e5:70:67:2e:c1:f0:0b:09:f7:49:dd
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 86:1d:fc:aa:07:46:bf:b3:f4:e8:e0:c0:9a:8d:dc:17:46:f9:df:31
Fingerprint (sha256): 80:72:13:ec:5d:95:e1:2e:bb:84:a9:65:3f:74:59:ce:1b:22:76:93:57:98:03:22:72:fd:c5:f2:c2:4f:63:07
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate *.allina.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.allina.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.allina.com
*.allinahealth.org
allina.com
allinahealth.org
*.allinahealth.org
allina.com
allinahealth.org
Other certificates including the domain name allina.com
(limited to 100 certificates)
donate.allina.com
securelink.allina.com
accwebsecure.allina.com
remoteapps.allina.com
donate.allina.com
vid-polycom-rpadext-01.Allina.com
donate.allina.com
akn.allina.com
epiccarelink.allina.com
*.allina.com
mail.allina.com
webmail.allina.com
devsoapproxy.allina.com
eft.allina.com
tstsecurelink.allina.com
adfs.allina.com
adfs.allina.com
devexcellianmobile.allina.com
*.rsasso.allina.com
remoteapps.allina.com
webmail.allina.com
webproxy.allina.com
adfs.allina.com
webproxy.allina.com
learn.allina.com
apps.allina.com
mainspring.allina.com
polyregistration.allina.com
learn.allina.com
epiccarelink.allina.com
remoteapps.allina.com
*.allina.com
sip.allina.com
websched01.allina.com
ww2.allina.com
excellianweb.allina.com
psservices.allina.com
eft.allina.com
www.allina.com
vip-afstoreint.allina.com
radev.allina.com
mychart.allina.com
accwebsecure.allina.com
webproxy.allina.com
remoteapps.allina.com
webmail.allina.com
learn.allina.com
*.allina.com
sip.allina.com
vpn.allina.com
ww2.allina.com
www.allina.com
webmail.allina.com
devwebproxy.allina.com
webproxy.allina.com
*.allina.com
devsoapproxy.allina.com
donate.allina.com
health.allina.com
vdiprod.allina.com
akn.allina.com
health.allina.com
handheld.excellian.net
excellianmobile.allina.com
identityiq.allina.com
epiccarelink.allina.com
adfs.allina.com
mychart.allina.com
donate.allina.com
accwebsecure.allina.com
adfs.allina.com
*.allina.com
remoteapps.allina.com
vdidev.allina.com
vdidev.allina.com
apps.allina.com
radev.allina.com
*.allina.com
fmpsrv02.allina.com
hybrid.allina.com
webcarf.allina.com
mdcisedev03.allina.com
eft.allina.com
apps.allina.com
webcarf.allina.com
psrecruit.allina.com
sip.allina.com
sip.allina.com
excellianweb.allina.com
remoteapps.allina.com
*.allina.com
eft.allina.com
securelink.allina.com
devsoapproxy.allina.com
websched01.allina.com
devsoapproxy.allina.com
learn.allina.com
remoteapps.allina.com
learn.allina.com
*.allina.com
securelink.allina.com
accwebsecure.allina.com
remoteapps.allina.com
donate.allina.com
vid-polycom-rpadext-01.Allina.com
donate.allina.com
akn.allina.com
epiccarelink.allina.com
*.allina.com
mail.allina.com
webmail.allina.com
devsoapproxy.allina.com
eft.allina.com
tstsecurelink.allina.com
adfs.allina.com
adfs.allina.com
devexcellianmobile.allina.com
*.rsasso.allina.com
remoteapps.allina.com
webmail.allina.com
webproxy.allina.com
adfs.allina.com
webproxy.allina.com
learn.allina.com
apps.allina.com
mainspring.allina.com
polyregistration.allina.com
learn.allina.com
epiccarelink.allina.com
remoteapps.allina.com
*.allina.com
sip.allina.com
websched01.allina.com
ww2.allina.com
excellianweb.allina.com
psservices.allina.com
eft.allina.com
www.allina.com
vip-afstoreint.allina.com
radev.allina.com
mychart.allina.com
accwebsecure.allina.com
webproxy.allina.com
remoteapps.allina.com
webmail.allina.com
learn.allina.com
*.allina.com
sip.allina.com
vpn.allina.com
ww2.allina.com
www.allina.com
webmail.allina.com
devwebproxy.allina.com
webproxy.allina.com
*.allina.com
devsoapproxy.allina.com
donate.allina.com
health.allina.com
vdiprod.allina.com
akn.allina.com
health.allina.com
handheld.excellian.net
excellianmobile.allina.com
identityiq.allina.com
epiccarelink.allina.com
adfs.allina.com
mychart.allina.com
donate.allina.com
accwebsecure.allina.com
adfs.allina.com
*.allina.com
remoteapps.allina.com
vdidev.allina.com
vdidev.allina.com
apps.allina.com
radev.allina.com
*.allina.com
fmpsrv02.allina.com
hybrid.allina.com
webcarf.allina.com
mdcisedev03.allina.com
eft.allina.com
apps.allina.com
webcarf.allina.com
psrecruit.allina.com
sip.allina.com
sip.allina.com
excellianweb.allina.com
remoteapps.allina.com
*.allina.com
eft.allina.com
securelink.allina.com
devsoapproxy.allina.com
websched01.allina.com
devsoapproxy.allina.com
learn.allina.com
remoteapps.allina.com
learn.allina.com
*.allina.com
Certificate
The complete raw certificate details for *.allina.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH6TCCBtGgAwIBAgIQD3U2pKL8/yfVTBuagFOyvzANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMTA5MjgwMDAwMDBa Fw0yMjEwMjkyMzU5NTlaMG0xCzAJBgNVBAYTAlVTMRIwEAYDVQQIEwlNaW5uZXNv dGExFDASBgNVBAcTC01pbm5lYXBvbGlzMR0wGwYDVQQKExRBbGxpbmEgSGVhbHRo IFN5c3RlbTEVMBMGA1UEAwwMKi5hbGxpbmEuY29tMIICIjANBgkqhkiG9w0BAQEF AAOCAg8AMIICCgKCAgEAzEr4ONXSE8XhKTivWmahnkBneziR/HwjgYD4KIdTnIqi 64F3OCqi/B9KzHkpBfU2AnrcwYkShcDUDukwDeLd9y4qnngmkIltvcLTLvKumsDa 93a2VEqVzJcUFu7CsNXmiDqOCZxmkSUDVeg49yc4mW0+NRS2OTzVeM+QvlaoRAs9 M1Z2zINau4wLEoi9jqsUFH/uOZs9D8zq1kp+t4Jc1u2PA+LsyLHVU16aensgn9Bi 4m6KejQN2xL/zQAxKVv84B1ahp1V8it8M84udzkU+U2lUvZO1jCxsEB4ryF8A9oR ovd69VzZeaQV4bDzYO4rPhyvqQ9GV+E2M1xJ6js1YW9CpGWI2AVy1Mvq32Hc0Cv6 anQqK3qkq2jEei7ieK8hNSs73Z3fsatzRjYYnAwaFYnTrTI4lEZcivXFv3AzN7EL as1dXGLiY+JqYh1ChI9k9J34+xZTE/AYplPpx8JdxmLQHGkru4HTjl4MFivU05y8 QFDKT4C5UgEqjRa2oI8rhJtLo0wAiY6JCx1sOxvelvPHE+8UOmuDHyoDD/8+J/93 9k08tN5/V3KHaMtg7S2A5x/JGOXlw8/GBHHzqWA1r+UbwTVMX3epilSZFM/gcU2C 1ZVVSAhlvI3WqKIXKrrQE5DDplSH2BOmPX75ojH9tXpbwvP2HU4WSnTDw9u8yMcC AwEAAaOCA6EwggOdMB8GA1UdIwQYMBaAFLdrouqoqoSMeeq02g+YssWVdrn0MB0G A1UdDgQWBBRPAvk3ZxwQJrTlcGcuwfALCfdJ3TBJBgNVHREEQjBAggwqLmFsbGlu YS5jb22CEiouYWxsaW5haGVhbHRoLm9yZ4IKYWxsaW5hLmNvbYIQYWxsaW5haGVh bHRoLm9yZzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMIGPBgNVHR8EgYcwgYQwQKA+oDyGOmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0 LmNvbS9EaWdpQ2VydFRMU1JTQVNIQTI1NjIwMjBDQTEtNC5jcmwwQKA+oDyGOmh0 dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFRMU1JTQVNIQTI1NjIwMjBD QTEtNC5jcmwwPgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0 cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMH8GCCsGAQUFBwEBBHMwcTAkBggrBgEF BQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEkGCCsGAQUFBzAChj1odHRw Oi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRUTFNSU0FTSEEyNTYyMDIw Q0ExLTEuY3J0MAwGA1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoB aAB2ACl5vvCeOTkh8FZzn2Old+W+V32cYAr4+U1dJlwlXceEAAABfCyczA0AAAQD AEcwRQIgS5sKykNkPsvYAH0M1Nj62rtUfd2gqMIyD1rf5XqV528CIQDch4dkR2fR voCTmOi6on0SYaNfcnzQGiOd7ZuNLwbH6wB2AFGjsPX9AXmcVm24N3iPDKR6zBsn y/eeiEKaDf7UiwXlAAABfCyczEwAAAQDAEcwRQIgIY+CAuiVS3WihAO7nmKZmIWt kp6/RYqrpL9WL0MzfT4CIQD9VHl7nZ+nnao65fMj/qN92I8XORelP1AFZNZqGci+ 6wB2AEHIyrHfIkZKEMahOglCh15OMYsbA+vrS8do8JBilgb2AAABfCycy7MAAAQD AEcwRQIhAOWIP1c589gy900ruDZfiuonf91DCQchECbggfUPnomhAiBELh0OiDuh kZ3h4L5gDoSHvu//vOJpzG9d/lRfX1GMYjANBgkqhkiG9w0BAQsFAAOCAQEAQ1Nw hk/lzSTPoAZFCSYmfAuCNMH5MxHgepXVttmkY5+o2MgGtgrpNrclYItC5ddzRU5l sGW1dtQ9R83+75nMiMjkE/YKA+R/+J4SUPuX4wBOaXTHjBmXRnzUdwYePqgC7vpi d4gtMv66FBW9FXG7EmyXXmM3UXu7k2iidgFMi5Ii4zCXgKambf+DFCJdJOLplrwJ 4EV3iUFcOtNai1+D5153HmxaZK/E0BfCKYOGfYkkK+ebuoK9DD5YQBcj3smjGyLK P373jSMJNOze4faM58p2OopPdg8k0yPiBEDCMV2t+Vgz+m8YYioCVtiny5JUWj++ GTCPwViIaSRbrTTWVg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzEr4ONXSE8XhKTivWmah nkBneziR/HwjgYD4KIdTnIqi64F3OCqi/B9KzHkpBfU2AnrcwYkShcDUDukwDeLd 9y4qnngmkIltvcLTLvKumsDa93a2VEqVzJcUFu7CsNXmiDqOCZxmkSUDVeg49yc4 mW0+NRS2OTzVeM+QvlaoRAs9M1Z2zINau4wLEoi9jqsUFH/uOZs9D8zq1kp+t4Jc 1u2PA+LsyLHVU16aensgn9Bi4m6KejQN2xL/zQAxKVv84B1ahp1V8it8M84udzkU +U2lUvZO1jCxsEB4ryF8A9oRovd69VzZeaQV4bDzYO4rPhyvqQ9GV+E2M1xJ6js1 YW9CpGWI2AVy1Mvq32Hc0Cv6anQqK3qkq2jEei7ieK8hNSs73Z3fsatzRjYYnAwa FYnTrTI4lEZcivXFv3AzN7ELas1dXGLiY+JqYh1ChI9k9J34+xZTE/AYplPpx8Jd xmLQHGkru4HTjl4MFivU05y8QFDKT4C5UgEqjRa2oI8rhJtLo0wAiY6JCx1sOxve lvPHE+8UOmuDHyoDD/8+J/939k08tN5/V3KHaMtg7S2A5x/JGOXlw8/GBHHzqWA1 r+UbwTVMX3epilSZFM/gcU2C1ZVVSAhlvI3WqKIXKrrQE5DDplSH2BOmPX75ojH9 tXpbwvP2HU4WSnTDw9u8yMcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20547026963201988291496060765844255423 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minneapolis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Allina Health System' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.allina.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 833442113916114554999914241830620602425820580672361916740532770753408324665527297206692944891562774610987304486930377127341823243235597121667089556031952006741103824444287241803416176480025673500375868203189902163365431396706798371634431131675072124704004129342602209802971488097503492354319351944100999247401703880495266740056313234639565781039369265509819149764918628770019662333971446059104942355493753866137882727296027593657997406001405188037046552331284170489044992013088529288569377788419167949955332562706644765278725429399083729605787669615582811529402285158789398947951993855698918056836302841714896160802365643894315564619954115663340444905926233213274863784287506907031253069748321360555630155198216251692330105874657112568208114266490769442871657582206621886475661706811187697219046547839186094693430934985287087417222415810083003303242512150016082670571441808841786530346207552555230637773208995103914962987055904706496889759525510937017528624445343508981089639456303239609521225416063784448713198441698288730271598701983929720328689708908946196298192550139928934031302688498661648073094450239855026654752918951218033715030541052942591308172513029415750150854399524049497205410633496332251963593690500420460786145347783 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4f02f937671c1026b4e570672ec1f00b09f749dd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.allina.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.allinahealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allina.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allinahealth.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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