data.cambridgema.gov
Issued by AlphaSSL CA - SHA256 - G2
About this certificate
This digital certificate with serial number 69:fa:65:6a:59:86:0a:f9:0c:9b:8a:f1 was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
Certificate Subject
CN=data.cambridgema.gov
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 69:fa:65:6a:59:86:0a:f9:0c:9b:8a:f1Serial Number (int): 32798636406965386738187078385
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: fa:f8:e2:b4:00:a7:ec:b9:5d:fd:9e:9a:b4:2b:dd:70:25:60:06:3e
AuthorityKeyId: f5:cd:d5:3c:08:50:f9:6a:4f:3a:b7:97:da:56:83:e6:69:d2:68:f7
Fingerprint (sha1): 30:55:bf:bb:6d:bc:ca:70:6f:2c:68:54:e9:60:87:2a:cf:98:0a:c1
Fingerprint (sha256): 8e:17:db:f2:5f:07:fe:66:35:63:a2:83:09:8f:6e:b2:1f:7b:67:21:46:c2:13:24:02:45:b8:d3:82:d7:70:35
Issuing Certificate URL: http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsalphasha2g2CRL Distribution Point: http://crl2.alphassl.com/gs/gsalphasha2g2.crl
Check the revocation status for certificate data.cambridgema.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for data.cambridgema.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
data.cambridgema.gov
Other certificates including the domain name cambridgema.gov
(limited to 100 certificates)
sustainabilitydashboard.cambridgema.gov
gisserver.cambridgema.gov
pcs-dispatcher.cambridgema.gov
chance.cambridgema.gov
www.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
www.cambridgema.gov
gis.cambridgema.gov
Exchange.Cambridgema.gov
Permits.CambridgeMA.GOV
results.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
sustainabilitydashboard.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
bullseye.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
data.cambridgema.gov
budget.data.cambridgema.gov
gatehouse.cambridgema.gov
gatehouse.cambridgema.gov
gisserver.cambridgema.gov
Secure.CambridgeMA.Gov
www.cambridgema.gov
www.cambridgema.gov
results.cambridgema.gov
Permits.CambridgeMA.GOV
permits.cambridgema.gov
data.cambridgema.gov
Permits.CambridgeMA.GOV
courage.cambridgema.gov
gis.cambridgema.gov
secure.cambridgema.gov
minibonds.cambridgema.gov
gis.cambridgema.gov
www2.cambridgema.gov
aruba.Cambridgema.gov
Permits.CambridgeMA.GOV
data.cambridgema.gov
Exchange.cambridgema.gov
admin-kla-prod.2ambh.com
firepermits.cambridgema.gov
remedydev.cambridgema.gov
muttley.cambridgema.gov
minibonds.cambridgema.gov
firepermits.cambridgema.gov
firepermitstest.cambridgema.gov
www2.cambridgema.gov
admin-kla-prod.2ambh.com
remedydev.cambridgema.gov
pcs-dispatcher.cambridgema.gov
remedy.cambridgema.gov
chance.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
Secure.CambridgeMA.gov
pb.cambridgema.gov
secure.cambridgema.gov
Exchange.Cambridgema.gov
cground.cambridgema.gov
tera.cambridgema.gov
mdm.ps.cambridgema.gov
www.cambridgema.gov
results.cambridgema.gov
wvd.cambridgema.gov
bitbucket.cambridgema.gov
voicemail.cambridgema.gov
gisserver.cambridgema.gov
budget.data.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
www.cambridgema.gov
remedy.cambridgema.gov
firepermits.cambridgema.gov
data.cambridgema.gov
gis.cambridgema.gov
techtraining.cambridgema.gov
gatehouse.cambridgema.gov
permits.cambridgema.gov
www2.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
secure5a82116344db483adc000000.nationbuilder.com
data.cambridgema.gov
betatest.cambridgema.gov
data.cambridgema.gov
budget.data.cambridgema.gov
gis.cambridgema.gov
Gis.Cambridgema.Gov
data.cambridgema.gov
Exchange.cambridgema.gov
data.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
mdm.ps.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
sustainabilitydashboard.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
permits.cambridgema.gov
gisserver.cambridgema.gov
Permits.CambridgeMA.GOV
Secure.CambridgeMA.gov
secure5a82116344db483adc000000.nationbuilder.com
gisserver.cambridgema.gov
gisserver.cambridgema.gov
pcs-dispatcher.cambridgema.gov
chance.cambridgema.gov
www.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
www.cambridgema.gov
gis.cambridgema.gov
Exchange.Cambridgema.gov
Permits.CambridgeMA.GOV
results.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
sustainabilitydashboard.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
bullseye.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
data.cambridgema.gov
budget.data.cambridgema.gov
gatehouse.cambridgema.gov
gatehouse.cambridgema.gov
gisserver.cambridgema.gov
Secure.CambridgeMA.Gov
www.cambridgema.gov
www.cambridgema.gov
results.cambridgema.gov
Permits.CambridgeMA.GOV
permits.cambridgema.gov
data.cambridgema.gov
Permits.CambridgeMA.GOV
courage.cambridgema.gov
gis.cambridgema.gov
secure.cambridgema.gov
minibonds.cambridgema.gov
gis.cambridgema.gov
www2.cambridgema.gov
aruba.Cambridgema.gov
Permits.CambridgeMA.GOV
data.cambridgema.gov
Exchange.cambridgema.gov
admin-kla-prod.2ambh.com
firepermits.cambridgema.gov
remedydev.cambridgema.gov
muttley.cambridgema.gov
minibonds.cambridgema.gov
firepermits.cambridgema.gov
firepermitstest.cambridgema.gov
www2.cambridgema.gov
admin-kla-prod.2ambh.com
remedydev.cambridgema.gov
pcs-dispatcher.cambridgema.gov
remedy.cambridgema.gov
chance.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
Secure.CambridgeMA.gov
pb.cambridgema.gov
secure.cambridgema.gov
Exchange.Cambridgema.gov
cground.cambridgema.gov
tera.cambridgema.gov
mdm.ps.cambridgema.gov
www.cambridgema.gov
results.cambridgema.gov
wvd.cambridgema.gov
bitbucket.cambridgema.gov
voicemail.cambridgema.gov
gisserver.cambridgema.gov
budget.data.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
www.cambridgema.gov
remedy.cambridgema.gov
firepermits.cambridgema.gov
data.cambridgema.gov
gis.cambridgema.gov
techtraining.cambridgema.gov
gatehouse.cambridgema.gov
permits.cambridgema.gov
www2.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
secure5a82116344db483adc000000.nationbuilder.com
data.cambridgema.gov
betatest.cambridgema.gov
data.cambridgema.gov
budget.data.cambridgema.gov
gis.cambridgema.gov
Gis.Cambridgema.Gov
data.cambridgema.gov
Exchange.cambridgema.gov
data.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
mdm.ps.cambridgema.gov
secure5a82116344db483adc000000.nationbuilder.com
sustainabilitydashboard.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
sustainabilitydashboard.cambridgema.gov
permits.cambridgema.gov
gisserver.cambridgema.gov
Permits.CambridgeMA.GOV
Secure.CambridgeMA.gov
secure5a82116344db483adc000000.nationbuilder.com
gisserver.cambridgema.gov
Certificate
The complete raw certificate details for data.cambridgema.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGODCCBSCgAwIBAgIMafplalmGCvkMm4rxMA0GCSqGSIb3DQEBCwUAMEwxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSIwIAYDVQQDExlB bHBoYVNTTCBDQSAtIFNIQTI1NiAtIEcyMB4XDTIyMDEzMTE0NTMxOVoXDTIzMDMw NDE0NTMxOVowHzEdMBsGA1UEAxMUZGF0YS5jYW1icmlkZ2VtYS5nb3YwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC631Fy92dMgCLSoyPQd53sh2l3g2Pp e2oZo4QQLzzuvTIWwgY8KvfSLxTYiR+a+Szh6+uHdfO3evAjv/RY8vBq619PRz7i QkkAT2uZGJPf0CB/D3KpNHVgK7mGuYU8bG6NJ3WsBVBy8Quu3PR81G+qhNXnlYgD s9wJxpFT7nvhzPCifnTBuUilHdfenB9mfoUF/wn4HNuTw0v99q+lDIjIrGOyXMK6 ivJPoaL5jiNdLeZk84JifenFYSHlqH8SeiKWCJQDFPRpj45nyyJxBEdX7C55AkfI UPEdJKRvmB+BdLOBTGCDALK6uXcBRU5O8n2nc5MsrwksVcaidpNxOCXLAgMBAAGj ggNFMIIDQTAOBgNVHQ8BAf8EBAMCBaAwgYkGCCsGAQUFBwEBBH0wezBCBggrBgEF BQcwAoY2aHR0cDovL3NlY3VyZTIuYWxwaGFzc2wuY29tL2NhY2VydC9nc2FscGhh c2hhMmcycjEuY3J0MDUGCCsGAQUFBzABhilodHRwOi8vb2NzcDIuZ2xvYmFsc2ln bi5jb20vZ3NhbHBoYXNoYTJnMjBXBgNVHSAEUDBOMEIGCisGAQQBoDIBCgowNDAy BggrBgEFBQcCARYmaHR0cHM6Ly93d3cuZ2xvYmFsc2lnbi5jb20vcmVwb3NpdG9y eS8wCAYGZ4EMAQIBMAkGA1UdEwQCMAAwPgYDVR0fBDcwNTAzoDGgL4YtaHR0cDov L2NybDIuYWxwaGFzc2wuY29tL2dzL2dzYWxwaGFzaGEyZzIuY3JsMB8GA1UdEQQY MBaCFGRhdGEuY2FtYnJpZGdlbWEuZ292MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjAfBgNVHSMEGDAWgBT1zdU8CFD5ak86t5faVoPmadJo9zAdBgNVHQ4E FgQU+vjitACn7Lld/Z6atCvdcCVgBj4wggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkB ZwB2AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABfrCgROQAAAQD AEcwRQIgeT892iYbC35KJr6LgLGr0N56pCzyOQHFCN1W74oSd68CIQDDH74RadWr vIN9UZELWai3rLk/aMVRa8DDgxx6BDHR1AB1AG9Tdqwx8DEZ2JkApFEV/3cVHBHZ AsEAKQaNsgiaN9kTAAABfrCgROcAAAQDAEYwRAIgEyvZX93/QiDMR6c7mmyXuVwT qGFi2m7r+uUFPn6eFQgCIHxjGU+Glx2tWvNSgLCf/AZ3tcf5qrGlLZFPw62Db6JK AHYAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAF+sKBFDwAABAMA RzBFAiBmHYoHU2WBsWqFOPoMuV/sRLQ2BJ/qK4BjVFfFICAEOgIhAKx1q8AINrQP k9hbTMcDcLj1rruD+WNADgwo5EyyZ2vQMA0GCSqGSIb3DQEBCwUAA4IBAQBQ7qih hSDIXtSAr6s6SKbAqPNqL9J159NGnazq7ZzfMUHGiTpt3xAU3/NciFuW99PcNgkk LQOhzdXcIRrbfkFxuQb67dU8cydRIZZxpesRQElDnYHHiapk3IneSPL/avfSxDd9 nIblJBua2l7sc9diU/CwYrvtYz3S3IYKwNO9QY98XBXdnyGmanJ3R9Onc9vuQ4Lf Zo7XrvC42qjBUURhpLIIrqkaRj4lIh5XlB+iOMYJN6JOmkrt6/SEdb4fteOlOKJj Ap94cN95tnzE5r6p2ANyOH0FwzCqZQKggJayiQ+Npw/pW2WqGn5DEurIS27+32bq wE+quqGM7Mb7H3dp -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAut9RcvdnTIAi0qMj0Hed 7Idpd4Nj6XtqGaOEEC887r0yFsIGPCr30i8U2Ikfmvks4evrh3Xzt3rwI7/0WPLw autfT0c+4kJJAE9rmRiT39Agfw9yqTR1YCu5hrmFPGxujSd1rAVQcvELrtz0fNRv qoTV55WIA7PcCcaRU+574czwon50wblIpR3X3pwfZn6FBf8J+Bzbk8NL/favpQyI yKxjslzCuoryT6Gi+Y4jXS3mZPOCYn3pxWEh5ah/EnoilgiUAxT0aY+OZ8sicQRH V+wueQJHyFDxHSSkb5gfgXSzgUxggwCyurl3AUVOTvJ9p3OTLK8JLFXGonaTcTgl ywIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 32798636406965386738187078385 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-31 14:53:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-04 14:53:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'data.cambridgema.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23590447012942568292089654141463020585376997537981876647630207225968488843702471246798248972990319513464490352648187625327845470067572999976149463688675806610656251274092951822041686099360403461831532058483363902595525680677524669194400473413478899034235197184844353126029675127572852384872089484019951216545456186372894149216288030669051659077392711401942928525672068978663588722983470476769596944231039097125462876757873324350007241412808380289596893472283196175955322106011680978914985186541589011789558124164665444670583590785722223368023169490947716159719176247256178237099573753864161229191630545970897492649419 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsalphasha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10.10 (Domain Validation Certificates Policy - AlphaSSL) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl2.alphassl.com/gs/gsalphasha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.cambridgema.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f5cdd53c0850f96a4f3ab797da5683e669d268f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) faf8e2b400a7ecb95dfd9e9ab42bdd702560063e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0050eea8a18520c85ed480afab3a48a6c0a8f36a2fd275e7d3469daceaed9cdf3141c6893a6ddf1014dff35c885b96f7d3dc3609242d03a1cdd5dc211adb7e4171b906faedd53c732751219671a5eb114049439d81c789aa64dc89de48f2ff6af7d2c4377d9c86e5241b9ada5eec73d76253f0b062bbed633dd2dc860ac0d3bd418f7c5c15dd9f21a66a727747d3a773dbee4382df668ed7aef0b8daa8c1514461a4b208aea91a463e25221e57941fa238c60937a24e9a4aedebf48475be1fb5e3a538a263029f7870df79b67cc4e6bea9d80372387d05c330aa6502a08096b2890f8da70fe95b65aa1a7e4312eac84b6efedf66eac04faabaa18cecc6fb1f7769