domains.returnly.com
- Returnly Technologies, Inc -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0e:ec:cb:2f:dc:a9:4a:69:32:10:37:3e:ce:87:77:ea was issued on by DigiCert Inc.
With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Returnly Technologies, Inc
Organization:
Returnly Technologies, Inc
State / Province:
CA
Locality: San Rafael
Country: US
Locality: San Rafael
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:ec:cb:2f:dc:a9:4a:69:32:10:37:3e:ce:87:77:eaSerial Number (int): 19838695120767583020352515753839654890
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 2c:61:28:90:00:4a:aa:95:ce:4e:20:18:fd:dd:18:ab:b1:46:a0:41
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 47:b7:e1:1d:6a:64:6e:63:05:c1:e2:e0:62:d5:58:12:f9:e7:08:20
Fingerprint (sha256): 8b:57:5f:af:dd:69:47:02:6b:7e:9c:6d:52:74:55:12:3e:9e:65:8d:67:bf:95:45:d4:3c:85:9c:13:51:bf:fd
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g5.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g5.crl
Check the revocation status for certificate domains.returnly.com
18
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for domains.returnly.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
domains.returnly.com
returns.marinelayer.com
returns.fansedge.com
returns.fanatics.com
returns-web.returnly.com
returns.kithnyc.com
returns.parachutehome.com
returns.stagprovisions.com
returns.bollandbranch.com
returns.nobullproject.com
returns.goop.com
returns.nascar.com
returns.mlbshop.com
returns.nflshop.com
returns.unitedworldsoccer.com
returns.shopgreybox.com
returns.lighterusa.com
returns.officersonly.com
returns.marinelayer.com
returns.fansedge.com
returns.fanatics.com
returns-web.returnly.com
returns.kithnyc.com
returns.parachutehome.com
returns.stagprovisions.com
returns.bollandbranch.com
returns.nobullproject.com
returns.goop.com
returns.nascar.com
returns.mlbshop.com
returns.nflshop.com
returns.unitedworldsoccer.com
returns.shopgreybox.com
returns.lighterusa.com
returns.officersonly.com
Other certificates including the domain name returnly.com
(limited to 100 certificates)
domains.returnly.com
secure0121.hubspot.com
returnly.com
returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
sni.cloudflaressl.com
returnly.com
returnly.com
domains.returnly.com
domains.returnly.com
*.returnly.com
storefront-widget.returnly.com
storefront-widget.returnly.com
domains.returnly.com
returnly.com
secure0121.hubspot.com
blog.returnly.com
api-documentation.returnly.com
blog.returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
secure0121.hubspot.com
blog.returnly.com
secure0121.hubspot.com
blog.returnly.com
info.returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
returnly.com
*.returnly.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
domains.returnly.com
storefront-widget.returnly.com
domains.returnly.com
*.returnly.com
www.returnly.com
domains.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
changelog.returnly.com
*.returnly.com
*.returnly.com
blog.returnly.com
*.returnly.com
info.returnly.com
domains.returnly.com
cf-ingress.returnly.com
blog.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
domains.returnly.com
domains.returnly.com
domains.returnly.com
secure0121.hubspot.com
blog.returnly.com
returnly.com
*.returnly.com
info.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
sni.cloudflaressl.com
blog.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
info.returnly.com
blog.returnly.com
info.returnly.com
*.returnly.com
domains.returnly.com
info.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
changelog.returnly.com
returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
*.returnly.com
*.returnly.com
blog.returnly.com
secure0121.hubspot.com
returnly.com
returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
sni.cloudflaressl.com
returnly.com
returnly.com
domains.returnly.com
domains.returnly.com
*.returnly.com
storefront-widget.returnly.com
storefront-widget.returnly.com
domains.returnly.com
returnly.com
secure0121.hubspot.com
blog.returnly.com
api-documentation.returnly.com
blog.returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
secure0121.hubspot.com
blog.returnly.com
secure0121.hubspot.com
blog.returnly.com
info.returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
returnly.com
*.returnly.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
domains.returnly.com
storefront-widget.returnly.com
domains.returnly.com
*.returnly.com
www.returnly.com
domains.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
changelog.returnly.com
*.returnly.com
*.returnly.com
blog.returnly.com
*.returnly.com
info.returnly.com
domains.returnly.com
cf-ingress.returnly.com
blog.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
domains.returnly.com
domains.returnly.com
domains.returnly.com
secure0121.hubspot.com
blog.returnly.com
returnly.com
*.returnly.com
info.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
sni.cloudflaressl.com
blog.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
info.returnly.com
blog.returnly.com
info.returnly.com
*.returnly.com
domains.returnly.com
info.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
*.returnly.com
domains.returnly.com
changelog.returnly.com
returnly.com
returnly.com
returnly.com
secure0121.hubspot.com
*.returnly.com
domains.returnly.com
secure0121.hubspot.com
*.returnly.com
*.returnly.com
*.returnly.com
blog.returnly.com
Certificate
The complete raw certificate details for domains.returnly.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGyDCCBbCgAwIBAgIQDuzLL9ypSmkyEDc+zod36jANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTUxMTA2MDAwMDAwWhcN MTYxMTEwMTIwMDAwWjBzMQswCQYDVQQGEwJVUzELMAkGA1UECBMCQ0ExEzARBgNV BAcTClNhbiBSYWZhZWwxIzAhBgNVBAoTGlJldHVybmx5IFRlY2hub2xvZ2llcywg SW5jMR0wGwYDVQQDExRkb21haW5zLnJldHVybmx5LmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAMmBDNIP6Fep0XlSBesZhiqpPDxlEMzu5PlP47OQ IrjkpwCtpPRDmmvaehPlZloskbRTOBUC6IRwVuytl+8s0T2wjMWTS8p1l/AyFOda YDwT9uxZF1Yz2kGqoAcCGgDVNf5AKf102t1Jq4PDVQV2AoyFH8AmN2wMX8C0RKtr 4qyeYSeVtRtqugmMflEpnAl5BFxaI/4k7K9dL1TVc84KkTtieaxSI+lRmB5HNbir 2WsbLMZ6Ek/ZOcVLgTk6NbHWZP2zTc2QY2I9L/Vv0+TbF5jzuGm1B6K81xeTTcFp /s1RpVMInL7/oovWRzsQ4RcqTjSQyg6ETfBPMWKm+E7T3eMCAwEAAaOCA3wwggN4 MB8GA1UdIwQYMBaAFA+AYRyCMWHVLyjnjUY4tCzhxtniMB0GA1UdDgQWBBQsYSiQ AEqqlc5OIBj93RirsUagQTCCAb4GA1UdEQSCAbUwggGxghRkb21haW5zLnJldHVy bmx5LmNvbYIXcmV0dXJucy5tYXJpbmVsYXllci5jb22CFHJldHVybnMuZmFuc2Vk Z2UuY29tghRyZXR1cm5zLmZhbmF0aWNzLmNvbYIYcmV0dXJucy13ZWIucmV0dXJu bHkuY29tghNyZXR1cm5zLmtpdGhueWMuY29tghlyZXR1cm5zLnBhcmFjaHV0ZWhv bWUuY29tghpyZXR1cm5zLnN0YWdwcm92aXNpb25zLmNvbYIZcmV0dXJucy5ib2xs YW5kYnJhbmNoLmNvbYIZcmV0dXJucy5ub2J1bGxwcm9qZWN0LmNvbYIQcmV0dXJu cy5nb29wLmNvbYIScmV0dXJucy5uYXNjYXIuY29tghNyZXR1cm5zLm1sYnNob3Au Y29tghNyZXR1cm5zLm5mbHNob3AuY29tgh1yZXR1cm5zLnVuaXRlZHdvcmxkc29j Y2VyLmNvbYIXcmV0dXJucy5zaG9wZ3JleWJveC5jb22CFnJldHVybnMubGlnaHRl cnVzYS5jb22CGHJldHVybnMub2ZmaWNlcnNvbmx5LmNvbTAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGsGA1UdHwRkMGIwL6At oCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzUuY3JsMC+g LaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc1LmNybDBM BgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3 dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB8BggrBgEFBQcBAQRwMG4wJAYI KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBGBggrBgEFBQcwAoY6 aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMlNlY3VyZVNl cnZlckNBLmNydDAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQDQec9e LZtxYpfF9zvCa+eWYhDWNaiCc2C2UwBWM7Dtnb2NwGuUXGKpTLhmmXEU/Dd+Yg4p OV1jNC3OvJMXTWQT6ogunYCeUl0cOpZhIINTO8e+EOwXZXb3XwrdBjrRbaczdOnb cV8yFW0RrhgqoPUZoh32X5WcUDriVoYv7qi6ce0tvuy2Kelh3xlR4flANmKzBv8A IpPV9aCHcVJMFE/Gf6y/30cZE3ewbB+nHfcWA/UKeytYNRK8+L39hBh1nWKTDEoo P8veAUN68oA0aTvKFJE6UZErORX6H+KSBc9sRTwluLXObr38Qt/5dgLSAXWv0wNi 0JKNU40fPMPa6KzC -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYEM0g/oV6nReVIF6xmG Kqk8PGUQzO7k+U/js5AiuOSnAK2k9EOaa9p6E+VmWiyRtFM4FQLohHBW7K2X7yzR PbCMxZNLynWX8DIU51pgPBP27FkXVjPaQaqgBwIaANU1/kAp/XTa3Umrg8NVBXYC jIUfwCY3bAxfwLREq2virJ5hJ5W1G2q6CYx+USmcCXkEXFoj/iTsr10vVNVzzgqR O2J5rFIj6VGYHkc1uKvZaxssxnoST9k5xUuBOTo1sdZk/bNNzZBjYj0v9W/T5NsX mPO4abUHorzXF5NNwWn+zVGlUwicvv+ii9ZHOxDhFypONJDKDoRN8E8xYqb4TtPd 4wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19838695120767583020352515753839654890 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-10 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'San Rafael' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Returnly Technologies, Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'domains.returnly.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25437536264552907359686471566908762753837786585272213532765590482626941438835022021956390846163384694305295002756460847484699672147871717381065889796418113911729152867754679217764452598207370511306668568842901203945424572396817837724252520541765544222306719794348649102271173341035582466522776690141253193663759181048006338814460987966352130976195481865515405219692504095644924895469442261240480053531903775969073632331847525992568718457750612979947175129811100021712261998980969056287982142675893617688051557889045057579443754093189351848895563904684340926076443646396741738754521560980326792995133246070339505741283 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2c612890004aaa95ce4e2018fddd18abb146a041 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (437 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domains.returnly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.marinelayer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.fansedge.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.fanatics.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns-web.returnly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.kithnyc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.parachutehome.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.stagprovisions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.bollandbranch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.nobullproject.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.goop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.nascar.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.mlbshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.nflshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.unitedworldsoccer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.shopgreybox.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.lighterusa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'returns.officersonly.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g5.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g5.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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