sts.iggroup.net
- IG Group Limited -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 3a:96:0d:1e:cd:1c:d5:52:3c:ae:f3:d6:5f:6b:24:df was issued on by Sectigo Limited.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
IG Group Limited
Organization:
IG Group Limited
State / Province:
London, City of
Country: GB
Country: GB
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 3a:96:0d:1e:cd:1c:d5:52:3c:ae:f3:d6:5f:6b:24:dfSerial Number (int): 77874334395954351989737537440586605791
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: f1:c0:e2:ae:9d:3b:89:cd:79:bb:58:50:aa:59:d5:a8:01:18:12:1f
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 7e:90:13:63:cd:14:d7:25:4f:b5:8d:29:07:58:02:a9:9f:70:59:df
Fingerprint (sha256): 82:74:32:08:3e:fc:72:f2:3b:87:1b:2a:a2:1f:41:8a:20:3e:39:2a:2e:4a:da:9d:5a:ea:6c:71:b2:6d:9d:c7
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate sts.iggroup.net
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sts.iggroup.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sts.iggroup.net
enterpriseregistration.brightpool-markets.com
enterpriseregistration.dailyfx.com
enterpriseregistration.ig.com
enterpriseregistration.igbank.ch
enterpriseregistration.iggroup.com
enterpriseregistration.iggroup.net
enterpriseregistration.spectrum-markets.com
enterpriseregistration.brightpool-markets.com
enterpriseregistration.dailyfx.com
enterpriseregistration.ig.com
enterpriseregistration.igbank.ch
enterpriseregistration.iggroup.com
enterpriseregistration.iggroup.net
enterpriseregistration.spectrum-markets.com
Other certificates including the domain name iggroup.net
(limited to 100 certificates)
edge.dtu.iggroup.net
autodiscover.ig.com
autodiscover.ig.com
sts.iggroup.net
autodiscover.ig.com
artifacts.aws.iggroup.net
*.istio.aws.iggroup.net
autodiscover.ig.com
edge.dtu.iggroup.net
edge.dtu.iggroup.net
sts.iggroup.net
sts.iggroup.net
*.aws.iggroup.net
autodiscover.ig.com
sts.iggroup.net
*.igdgsuat.aws.iggroup.net
sts.iggroup.net
*.artifacts.aws.iggroup.net
rds.iggroup.net
*.breakit.aws.iggroup.net
*.igdgsuat.aws.iggroup.net
*.dtu.play.aws.iggroup.net
*.igcatest.aws.iggroup.net
autodiscover.ig.com
jamf.iggroup.net
remotesupport.iggroup.net
edge.dtu.iggroup.net
remotesupport.iggroup.net
autodiscover.ig.com
nadexdtu.aws.iggroup.net
sts.iggroup.net
sts.iggroup.net
*.igwtpprd.aws.iggroup.net
*.igdgsuat.aws.iggroup.net
rds.iggroup.net
*.istio.aws.iggroup.net
artifacts.aws.iggroup.net
autodiscover.ig.com
*.istio.igcobdtu.aws.iggroup.net
sts.iggroup.net
*.aws.iggroup.net
*.igcobdtu.aws.iggroup.net
*.igcaaprd.aws.iggroup.net
*.aws.iggroup.net
sts.iggroup.net
remotesupport.iggroup.net
autodiscover.ig.com
sts.iggroup.net
autodiscover.ig.com
external.igmwptest.aws.iggroup.net
*.igdgsdtu.aws.iggroup.net
autodiscover.ig.com
autodiscover.ig.com
autodiscover.ig.com
sts.iggroup.net
sts.iggroup.net
edge.dtu.iggroup.net
*.igdgsdtu.aws.iggroup.net
sts.iggroup.net
*.istio.breakit.aws.iggroup.net
iggroup.net
autodiscover.ig.com
gateway.iggroup.net
*.dtu.play.aws.iggroup.net
igmwptest.aws.iggroup.net
sts.iggroup.net
sts.iggroup.net
edge.dtu.iggroup.net
sts.iggroup.net
remotesupport.iggroup.net
edge.dtu.iggroup.net
autodiscover.ig.com
wm.iggroup.com
jamf.iggroup.net
wm.iggroup.com
edge.dtu.iggroup.net
sts.iggroup.net
sts.iggroup.net
sts.iggroup.net
iggroup.net
incapsula.com
sts.iggroup.net
autodiscover.ig.com
sts.iggroup.net
autodiscover.ig.com
autodiscover.ig.com
sts.iggroup.net
autodiscover.ig.com
artifacts.aws.iggroup.net
*.istio.aws.iggroup.net
autodiscover.ig.com
edge.dtu.iggroup.net
edge.dtu.iggroup.net
sts.iggroup.net
sts.iggroup.net
*.aws.iggroup.net
autodiscover.ig.com
sts.iggroup.net
*.igdgsuat.aws.iggroup.net
sts.iggroup.net
*.artifacts.aws.iggroup.net
rds.iggroup.net
*.breakit.aws.iggroup.net
*.igdgsuat.aws.iggroup.net
*.dtu.play.aws.iggroup.net
*.igcatest.aws.iggroup.net
autodiscover.ig.com
jamf.iggroup.net
remotesupport.iggroup.net
edge.dtu.iggroup.net
remotesupport.iggroup.net
autodiscover.ig.com
nadexdtu.aws.iggroup.net
sts.iggroup.net
sts.iggroup.net
*.igwtpprd.aws.iggroup.net
*.igdgsuat.aws.iggroup.net
rds.iggroup.net
*.istio.aws.iggroup.net
artifacts.aws.iggroup.net
autodiscover.ig.com
*.istio.igcobdtu.aws.iggroup.net
sts.iggroup.net
*.aws.iggroup.net
*.igcobdtu.aws.iggroup.net
*.igcaaprd.aws.iggroup.net
*.aws.iggroup.net
sts.iggroup.net
remotesupport.iggroup.net
autodiscover.ig.com
sts.iggroup.net
autodiscover.ig.com
external.igmwptest.aws.iggroup.net
*.igdgsdtu.aws.iggroup.net
autodiscover.ig.com
autodiscover.ig.com
autodiscover.ig.com
sts.iggroup.net
sts.iggroup.net
edge.dtu.iggroup.net
*.igdgsdtu.aws.iggroup.net
sts.iggroup.net
*.istio.breakit.aws.iggroup.net
iggroup.net
autodiscover.ig.com
gateway.iggroup.net
*.dtu.play.aws.iggroup.net
igmwptest.aws.iggroup.net
sts.iggroup.net
sts.iggroup.net
edge.dtu.iggroup.net
sts.iggroup.net
remotesupport.iggroup.net
edge.dtu.iggroup.net
autodiscover.ig.com
wm.iggroup.com
jamf.iggroup.net
wm.iggroup.com
edge.dtu.iggroup.net
sts.iggroup.net
sts.iggroup.net
sts.iggroup.net
iggroup.net
incapsula.com
sts.iggroup.net
autodiscover.ig.com
sts.iggroup.net
Certificate
The complete raw certificate details for sts.iggroup.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGdDCCBVygAwIBAgIQOpYNHs0c1VI8rvPWX2sk3zANBgkqhkiG9w0BAQsFADCB lTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMT0wOwYDVQQD EzRTZWN0aWdvIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2Vy dmVyIENBMB4XDTIzMDkyNzAwMDAwMFoXDTI0MDkyNjIzNTk1OVowXDELMAkGA1UE BhMCR0IxGDAWBgNVBAgTD0xvbmRvbiwgQ2l0eSBvZjEZMBcGA1UEChMQSUcgR3Jv dXAgTGltaXRlZDEYMBYGA1UEAxMPc3RzLmlnZ3JvdXAubmV0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtF9RjX0LqdLnZItuD3UciBgM7bte1ZPfTLUi Vq4mJH7fZjfgsjcDy1tPvi9kEkL09nruHCdlezA5d4JuN9KXdJsC5vwSU9pr9NGk Vs7HmRvM8vmTfQc74OSBUj/YGqqJ3pfTRIO/mY9xEOKRnhfNkbaa2yWC3Npzio4W mGSJTUJZ1sulfpVmXhr4DV12Uy6RnEVNIYq8Wg/3TgC846oO2LwiK8BTCrb+xAo9 Y5duGwq8PwqrHJxiVVW49wqAtxSRRG6e9rZB+de8XWGlUrnU7aqPX2+2Bn8DbwFg ov1aBPG+t5+WJ1+IWSOp/53CD9aJqDfDcQrlOtBfdswQdI4XvQIDAQABo4IC9jCC AvIwHwYDVR0jBBgwFoAUF9nWJSdn+THCSUPZMDZEjGypT+swHQYDVR0OBBYEFPHA 4q6dO4nNebtYUKpZ1agBGBIfMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAA MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBKBgNVHSAEQzBBMDUGDCsG AQQBsjEBAgEDBDAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28uY29tL0NQ UzAIBgZngQwBAgIwWgYDVR0fBFMwUTBPoE2gS4ZJaHR0cDovL2NybC5zZWN0aWdv LmNvbS9TZWN0aWdvUlNBT3JnYW5pemF0aW9uVmFsaWRhdGlvblNlY3VyZVNlcnZl ckNBLmNybDCBigYIKwYBBQUHAQEEfjB8MFUGCCsGAQUFBzAChklodHRwOi8vY3J0 LnNlY3RpZ28uY29tL1NlY3RpZ29SU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2Vj dXJlU2VydmVyQ0EuY3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdv LmNvbTATBgorBgEEAdZ5AgQDAQH/BAIFADCCAScGA1UdEQSCAR4wggEagg9zdHMu aWdncm91cC5uZXSCLWVudGVycHJpc2VyZWdpc3RyYXRpb24uYnJpZ2h0cG9vbC1t YXJrZXRzLmNvbYIiZW50ZXJwcmlzZXJlZ2lzdHJhdGlvbi5kYWlseWZ4LmNvbYId ZW50ZXJwcmlzZXJlZ2lzdHJhdGlvbi5pZy5jb22CIGVudGVycHJpc2VyZWdpc3Ry YXRpb24uaWdiYW5rLmNogiJlbnRlcnByaXNlcmVnaXN0cmF0aW9uLmlnZ3JvdXAu Y29tgiJlbnRlcnByaXNlcmVnaXN0cmF0aW9uLmlnZ3JvdXAubmV0gitlbnRlcnBy aXNlcmVnaXN0cmF0aW9uLnNwZWN0cnVtLW1hcmtldHMuY29tMA0GCSqGSIb3DQEB CwUAA4IBAQCHbTRqaCIk96VsKl9AkJBAeT7EpDTVCcfg7Rte+mvlNxc6knOsZZcI Xr2XLa08iCXiB7U2OZxZVOe2xQBmzsoOulYWKPtGCvZfaxqStE/ubcOJ4bUQDIAs MlqXWYMmYAWI0lkN6xVsL+94CF71aNwncKpo2LOCEb00dhgA+UMWZNCC2NFAiBpB fOtL8rDLp/xSmysmveqLy4o+BpO9F+KDfUPWg7Fh68Cho4q9O4tzXksSc10QBdvK dWRoql137XrpxfT7tTLMwvdW/w9DJN8ZnsQcZMe/lg57+1j3ox57BOaYKi1HrRBm SSKt2IxY58syW1ewMANpHvGgLr0cQcrT -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtF9RjX0LqdLnZItuD3Uc iBgM7bte1ZPfTLUiVq4mJH7fZjfgsjcDy1tPvi9kEkL09nruHCdlezA5d4JuN9KX dJsC5vwSU9pr9NGkVs7HmRvM8vmTfQc74OSBUj/YGqqJ3pfTRIO/mY9xEOKRnhfN kbaa2yWC3Npzio4WmGSJTUJZ1sulfpVmXhr4DV12Uy6RnEVNIYq8Wg/3TgC846oO 2LwiK8BTCrb+xAo9Y5duGwq8PwqrHJxiVVW49wqAtxSRRG6e9rZB+de8XWGlUrnU 7aqPX2+2Bn8DbwFgov1aBPG+t5+WJ1+IWSOp/53CD9aJqDfDcQrlOtBfdswQdI4X vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 77874334395954351989737537440586605791 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London, City of' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IG Group Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sts.iggroup.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22769898230225336274737544868577019640103020767078347470170906164387198941670341229600048730361577776749245411271602424797092352989778442128158198875321613755663771336330020935144307041926481589381180139633879704376633882737351840166945839761359259754659049223406183124487246376596716457622355030233070599779000869790545602649946515406062369865467859036006890304009576307788585760148612807224570088900257562436459503893371684195824936521843315239918268796381457686093931013350858888899727119784896572965535355004870467206410400294445955244501675749672318221903274397771509405069148807819470736157708196217927779620797 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f1c0e2ae9d3b89cd79bb5850aa59d5a80118121f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (286 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sts.iggroup.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.brightpool-markets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.dailyfx.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.ig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.igbank.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.iggroup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.iggroup.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.spectrum-markets.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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