okta.purefluent.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 3b:0f:e9:23:f6:f8:8c:bd was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=okta.purefluent.com,OU=Domain Control Validated
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 3b:0f:e9:23:f6:f8:8c:bdSerial Number (int): 4255876513565019325
Serial Number lenght: 62 bits, 8 octets
SubjectKeyId: d7:2e:26:59:d6:92:dc:a0:2f:ae:24:7d:9f:08:dd:14:08:70:74:f2
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 7f:29:84:b0:72:94:3d:9d:f9:f2:fd:59:2c:4b:f5:e5:22:39:f6:a3
Fingerprint (sha256): 8f:45:62:cb:00:be:b2:91:3f:1d:96:2b:89:67:0d:c4:c4:2b:f4:8a:00:ea:fc:bc:ca:9f:42:5f:e9:be:14:e3
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-856.crl
Check the revocation status for certificate okta.purefluent.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for okta.purefluent.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
okta.purefluent.com
www.okta.purefluent.com
www.okta.purefluent.com
Other certificates including the domain name purefluent.com
(limited to 100 certificates)
*.purefluent.com
purefluent.com
forms.cabinrentalpros.com
*.common.aatranslations.net
staging.purefluent.com
purefluent.com
purefluent.com
form.gibsonplumbing.com
forms.cabinrentalpros.com
contact.purefluent.com
forms.cabinrentalpros.com
purefluent.com
staging.purefluent.com
purefluent.com
*.proxy.purefluent.com
purefluent.com
okta.purefluent.com
okta.purefluent.com
*.purefluent.com
forms.cabinrentalpros.com
purefluent.com
purefluent.com
*.purefluent.com
www.purefluent.com
forms.localsecurity.org
forms.glowfieldschool.com
forms.cabinrentalpros.com
purefluent.com
forms.dandeibert.com
*.common.aatranslations.net
forms.cabinrentalpros.com
*.purefluent.com
mb930dev.my.wip-env.purefluent.com
purefluent.com
www.purefluent.com
purefluent.com
forms.cabinrentalpros.com
*.common.aatranslations.net
staging.purefluent.com
purefluent.com
purefluent.com
form.gibsonplumbing.com
forms.cabinrentalpros.com
contact.purefluent.com
forms.cabinrentalpros.com
purefluent.com
staging.purefluent.com
purefluent.com
*.proxy.purefluent.com
purefluent.com
okta.purefluent.com
okta.purefluent.com
*.purefluent.com
forms.cabinrentalpros.com
purefluent.com
purefluent.com
*.purefluent.com
www.purefluent.com
forms.localsecurity.org
forms.glowfieldschool.com
forms.cabinrentalpros.com
purefluent.com
forms.dandeibert.com
*.common.aatranslations.net
forms.cabinrentalpros.com
*.purefluent.com
mb930dev.my.wip-env.purefluent.com
purefluent.com
www.purefluent.com
Certificate
The complete raw certificate details for okta.purefluent.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGxjCCBa6gAwIBAgIIOw/pI/b4jL0wDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMTgwODA5MDc1ODA3WhcN MjAwODA5MDc1ODA3WjBBMSEwHwYDVQQLExhEb21haW4gQ29udHJvbCBWYWxpZGF0 ZWQxHDAaBgNVBAMTE29rdGEucHVyZWZsdWVudC5jb20wggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQDa3kPm5tRk852VjRJktoYYI0neNgKOOSWXwOszShCD zZbZ4Y3/UJ83UcTwfHNPKUdaSKAylXIDD7Gu43l+pMJCI3DPJfysJvjET7IzEyjR uTRTpJUXFr7pmgfOgk3fRyb4uyt/G/3gGxR8S9GWc1TbUHbQ127i+3yG+YnjXkh7 gSynBtTt2vxchZjj5rJH8S5Q8uywDpRb02WuexvhlRxUpeSMpl1FMiQfeLaaAxzz Q71NxzHpAfxB1b9C4zaIdXHFmJB+/Sd3x+rhwWd5unlojcKcS/8HXtiynXmaMMHT Juuzju91oXZhsaRJBrJ27WtDYcdkMn21vovmbzzXn0qtAgMBAAGjggNMMIIDSDAM BgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAOBgNV HQ8BAf8EBAMCBaAwNwYDVR0fBDAwLjAsoCqgKIYmaHR0cDovL2NybC5nb2RhZGR5 LmNvbS9nZGlnMnMxLTg1Ni5jcmwwXQYDVR0gBFYwVDBIBgtghkgBhv1tAQcXATA5 MDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3Jl cG9zaXRvcnkvMAgGBmeBDAECATB2BggrBgEFBQcBAQRqMGgwJAYIKwYBBQUHMAGG GGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBABggrBgEFBQcwAoY0aHR0cDovL2Nl cnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5L2dkaWcyLmNydDAfBgNV HSMEGDAWgBRAwr0njsw0gzCiM9f7bLPwtCyAzjA3BgNVHREEMDAughNva3RhLnB1 cmVmbHVlbnQuY29tghd3d3cub2t0YS5wdXJlZmx1ZW50LmNvbTAdBgNVHQ4EFgQU 1y4mWdaS3KAvriR9nwjdFAhwdPIwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2 AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABZR2x6VoAAAQDAEcw RQIhANXymDwEY2Z5cCZX0RxMDMBKWe7CptnYua1eb26j4tz6AiBozKPB9LL8cH7d yLuj6Cx8z5Qk+I4e9zKMQ9anD/Tl9QB3AO5Lvbd1zmC64UJpH6vhnmajD35fsHLY gwDEe4l6qP3LAAABZR2x7loAAAQDAEgwRgIhAIon5JEv+DIfBuH0NIQM2TmEQ7bJ OIhrLvAqdlKO7b6oAiEArndQ3V9kUpf9isbBEuaOaZ/HVrdcVDCZQhu/owp1sWAA dQBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAWUdse9BAAAEAwBG MEQCIEZK6H0YMerRZDwLlPQFWXaYyrYmHSKHK/g7SMJOTQ3vAiAX2bxNnwSWn0zP lC2gT5KGjonKhotngB6HiLmhsBB0mjANBgkqhkiG9w0BAQsFAAOCAQEArn7koRlB s+ynATu2Kl423KktKUoma8Shg0r6wAmDeBfCJrhGRsyCI/QsI5zBTFJ4qlf8kDz4 X/zDIinXwSoKyHgRhxlEtFyskknWWMZLewG5TsOP6cMeWkTYPagOnhUTnj/Rpps0 Qx5Vjgu59GHbRXtAeuzJ165uBrmwZROCs9dB7bKTtyM1ip2PXFTLw+sEnwWu1SNJ EUQAJdiSGHj7jjx3beF1mevz1/pLPYUBqql3XwLCwKQT84geJtWnHaNXkNHnQ6uF GtLYmsFIVVtuXLxjyaEWrlhw1BwwlmpRwB1bhUX5A5yKc05Kh2mKqnC2NZkOoQ5t UcxeW3mf7d7iFQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2t5D5ubUZPOdlY0SZLaG GCNJ3jYCjjkll8DrM0oQg82W2eGN/1CfN1HE8HxzTylHWkigMpVyAw+xruN5fqTC QiNwzyX8rCb4xE+yMxMo0bk0U6SVFxa+6ZoHzoJN30cm+Lsrfxv94BsUfEvRlnNU 21B20Ndu4vt8hvmJ415Ie4EspwbU7dr8XIWY4+ayR/EuUPLssA6UW9Nlrnsb4ZUc VKXkjKZdRTIkH3i2mgMc80O9Tccx6QH8QdW/QuM2iHVxxZiQfv0nd8fq4cFnebp5 aI3CnEv/B17Ysp15mjDB0ybrs47vdaF2YbGkSQaydu1rQ2HHZDJ9tb6L5m88159K rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4255876513565019325 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-09 07:58:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-09 07:58:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'okta.purefluent.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27629553558408352113054518464574800494060607710216888252213655056738747295076390309089625622320423721394517090246011405381956610544180999241366852603301572275833858499326098681210516655487708179431981130177708004394235911279383099193192229810635068855544060586225914537721123606281315698423859163444337780123019608879254904608086507659870742797707889048930246771019866746728320190993686647610020450035710508997334075560102952582180238283407147239781363210434034841334700460250220127903147870592616264888521324918705941660904566965681232279805207086842689388703721544752421236468087548578440859845083663724692029524653 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-856.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okta.purefluent.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.okta.purefluent.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d72e2659d692dca02fae247d9f08dd14087074f2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00ae7ee4a11941b3eca7013bb62a5e36dca92d294a266bc4a1834afac009837817c226b84646cc8223f42c239cc14c5278aa57fc903cf85ffcc32229d7c12a0ac87811871944b45cac9249d658c64b7b01b94ec38fe9c31e5a44d83da80e9e15139e3fd1a69b34431e558e0bb9f461db457b407aecc9d7ae6e06b9b0651382b3d741edb293b723358a9d8f5c54cbc3eb049f05aed5234911440025d8921878fb8e3c776de17599ebf3d7fa4b3d8501aaa9775f02c2c0a413f3881e26d5a71da35790d1e743ab851ad2d89ac148555b6e5cbc63c9a116ae5870d41c30966a51c01d5b8545f9039c8a734e4a87698aaa70b635990ea10e6d51cc5e5b799feddee215