*.innovateuk.org
- Innovate UK -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 03:5c:fc:b7:08:2d:e9:be:b6:62:bc:7e:ac:a7:50:84 was issued on by DigiCert Inc.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Innovate UK
Organization:
Innovate UK
Locality:
Swindon
Country: GB
Country: GB
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:5c:fc:b7:08:2d:e9:be:b6:62:bc:7e:ac:a7:50:84Serial Number (int): 4470500966845197661724416578674970756
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 8c:d0:33:c1:ad:69:98:36:09:0b:f5:7a:63:cb:5f:70:7c:63:27:e2
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): 2d:ac:3c:60:47:00:d1:39:4d:f3:1a:83:4a:83:f4:47:90:92:7a:a4
Fingerprint (sha256): 8f:9a:88:f3:59:85:00:80:17:2d:76:c3:af:0b:28:48:75:30:5e:ac:c5:74:9b:63:7e:a5:68:6f:68:be:02:59
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g6.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g6.crl
Check the revocation status for certificate *.innovateuk.org
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.innovateuk.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.innovateuk.org
innovateuk.org
mb1.sil.uat.innovateuk.org
mb2.sil.uat.innovateuk.org
mgt.sil.uat.innovateuk.org
sil.uat.innovateuk.org
innovateuk.org
mb1.sil.uat.innovateuk.org
mb2.sil.uat.innovateuk.org
mgt.sil.uat.innovateuk.org
sil.uat.innovateuk.org
Other certificates including the domain name innovateuk.org
(limited to 100 certificates)
datavis.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aem.devops.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
aem.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
engage.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
images.info.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
govboard.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aem.devops.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
aec.devops.innovateuk.org
aem.devops.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
reports.innovateuk.org
*.innovateuk.org
*.innovateuk.org
engage.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
images.info.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavis.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
app.info.innovateuk.org
*.innovateuk.org
*.innovateuk.org
*.innovateuk.org
datavistest.innovateuk.org
*.innovateuk.org
*.innovateuk.org
govboard.innovateuk.org
Certificate
The complete raw certificate details for *.innovateuk.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGyTCCBbGgAwIBAgIQA1z8twgt6b62Yrx+rKdQhDANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xODA2MTIwMDAwMDBaFw0xOTA2MTAxMjAwMDBa MFAxCzAJBgNVBAYTAkdCMRAwDgYDVQQHEwdTd2luZG9uMRQwEgYDVQQKEwtJbm5v dmF0ZSBVSzEZMBcGA1UEAwwQKi5pbm5vdmF0ZXVrLm9yZzCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAPlt5SwWcXbfB24F0bmNQDc9XZPiTlhfyzbSOEp2 0M1zD/8xnv/YxlHw2zC05zA8DpscVpRnG7PusMDAPJmf3i80/jAlPkE5EgJxv50E Q1jIDAk1n4n+47Mu9l3D4SGmbCZFI5oI7OvleOijqsCLwvGWBwCuJe56uT8Uolwm kOWeMyt3v7yWZ8cmV0OtXD1ulGj4Z+UwwoWbrR8CkbvglUQ+pQdO1f5ap1YPQ/wc GWQ4sZknAbnIP6MEwTGf2+yJJ38slRqC6OVUIz0YJreh8NknrkdQUJqsyNpZLCaV sa1qzCo89i1n/Pde+Mgugh9hNhJwxnFDOZ1sN6skboOV2FcR45Zxxtbdktz4qt+s iTrE1NxJEOxhVs/7P81KrsCgLoZ9qGQn4GFY/GMwrXnKBMqh+2LpdUaGEqfhKwtS zOhn0RtF0HqCV6CaJ3vtyksIBYl+XjA7c5WivXRJ0gyPaa7jawXWoRSyluwdlk/8 Cuaq9TV1pqLKRrx7iyhO5IDFxEV85mfYLunQomjQJjg0Eqsjdet/SB2TquchC5pT 5CwEBaBcxO0QE8fJBgvX6blayCzco3e2NPLsoJJWwBgt+e4aWYV+gzLpTGVFxgNe KpNHqUZ7C/fWRqUU9cu3ah9A7XRYXbqlepI4W0bFxr0dlzAC4uGuKu8FxZj+5eMg jDYRAgMBAAGjggJ9MIICeTAfBgNVHSMEGDAWgBRRaP+QrwIHdTzM2WVkYqISuFly OzAdBgNVHQ4EFgQUjNAzwa1pmDYJC/V6Y8tfcHxjJ+IwgZkGA1UdEQSBkTCBjoIQ Ki5pbm5vdmF0ZXVrLm9yZ4IOaW5ub3ZhdGV1ay5vcmeCGm1iMS5zaWwudWF0Lmlu bm92YXRldWsub3JnghptYjIuc2lsLnVhdC5pbm5vdmF0ZXVrLm9yZ4IabWd0LnNp bC51YXQuaW5ub3ZhdGV1ay5vcmeCFnNpbC51YXQuaW5ub3ZhdGV1ay5vcmcwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNV HR8EbjBsMDSgMqAwhi5odHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc2hhMi1oYS1z ZXJ2ZXItZzYuY3JsMDSgMqAwhi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hh Mi1oYS1zZXJ2ZXItZzYuY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYI KwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQIC MIGDBggrBgEFBQcBAQR3MHUwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2lj ZXJ0LmNvbTBNBggrBgEFBQcwAoZBaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29t L0RpZ2lDZXJ0U0hBMkhpZ2hBc3N1cmFuY2VTZXJ2ZXJDQS5jcnQwDAYDVR0TAQH/ BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE49k Qw/poqGJHek6QXKCH1shKrd/qPGOE5xE695N0tEZvTAXxiOWIOcycQ6os4cLGr5A thd+JlObIREFGk4sUXr89qrnaEaUIsdtSB3klINZO8jx05AIOotXjNAxuQBpJ6kS yhL8ZH+ZWdRKdnX6gzt2xli0rwzJEgfASul4zbnLxaaYadLLYPns5NvBYwKgZX/U /zg73jL4uf4ASUCWTKIOOAPGQzTGWQIy8qANSlGlqFFo7eNW9nrZCOBQc7qMUrlc 1O6ffOJn8+ZrIWO3q0fWLhczWwF8WVp6oKZRUVGcnxDFe2MngMYwP/UA733AUsfC B5Mun9dWLdEzr0Odqw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA+W3lLBZxdt8HbgXRuY1A Nz1dk+JOWF/LNtI4SnbQzXMP/zGe/9jGUfDbMLTnMDwOmxxWlGcbs+6wwMA8mZ/e LzT+MCU+QTkSAnG/nQRDWMgMCTWfif7jsy72XcPhIaZsJkUjmgjs6+V46KOqwIvC 8ZYHAK4l7nq5PxSiXCaQ5Z4zK3e/vJZnxyZXQ61cPW6UaPhn5TDChZutHwKRu+CV RD6lB07V/lqnVg9D/BwZZDixmScBucg/owTBMZ/b7IknfyyVGoLo5VQjPRgmt6Hw 2SeuR1BQmqzI2lksJpWxrWrMKjz2LWf89174yC6CH2E2EnDGcUM5nWw3qyRug5XY VxHjlnHG1t2S3Piq36yJOsTU3EkQ7GFWz/s/zUquwKAuhn2oZCfgYVj8YzCtecoE yqH7Yul1RoYSp+ErC1LM6GfRG0XQeoJXoJone+3KSwgFiX5eMDtzlaK9dEnSDI9p ruNrBdahFLKW7B2WT/wK5qr1NXWmospGvHuLKE7kgMXERXzmZ9gu6dCiaNAmODQS qyN1639IHZOq5yELmlPkLAQFoFzE7RATx8kGC9fpuVrILNyjd7Y08uygklbAGC35 7hpZhX6DMulMZUXGA14qk0epRnsL99ZGpRT1y7dqH0DtdFhduqV6kjhbRsXGvR2X MALi4a4q7wXFmP7l4yCMNhECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4470500966845197661724416578674970756 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-10 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Swindon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Innovate UK' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.innovateuk.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 1017582674956535764647218612996104331226851921266865317515013672780525442097457412825078634205090267618795709767044580487721596372489049456181041586691825291931796270045709408530670400259961904396694383537786084471253283753683234766256369387247036240399419125681147237938933269508780989615152294896419331540264752644053032036138318160343839912538088081385785969221515753752309207234800073174449976673550911326903805856972740064505117917154394346121144000900223628454761065789117662749612215379789484179547849822119940561863472934376614015723175730264492937650794043657965094375621006555683476715901830619688167327777267709837237094705737180256609956177878503456509902403014640665238691988392213741347551226540649142026010772053280165650551197741530437935000919503296468938484636739719644475829836402112738006607749524069944642863838644976945071632042794300278716857665958818815087854344505034730054724577468177005435038277055718060253049389196521270883223445637092475743537584133919003981760551120790256691418734201917985956021731771481251026266982625176802526171602848018998948193208578609286486982476834914791255244818924486088685229479629850028619742821776322614906301343472815572690741256818670454344136555331765031491420809868817 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8cd033c1ad699836090bf57a63cb5f707c6327e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (145 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.innovateuk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'innovateuk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mb1.sil.uat.innovateuk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mb2.sil.uat.innovateuk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mgt.sil.uat.innovateuk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sil.uat.innovateuk.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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