webcarf.allina.com
- Allina Health System -
Issued by Symantec Class 3 Secure Server CA - G4
About this certificate
This digital certificate with serial number 33:0f:53:ba:df:b2:ba:72:82:95:23:59:97:b1:f6:cb was issued on by Symantec Corporation.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Allina Health System
Organization:
Allina Health System
State / Province:
Minnesota
Locality: Minneapolis
Country: US
Locality: Minneapolis
Country: US
Symantec Corporation
Organization:
Symantec Corporation
Organization unit: Symantec Trust Network
Organization unit: Symantec Trust Network
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 33:0f:53:ba:df:b2:ba:72:82:95:23:59:97:b1:f6:cbSerial Number (int): 67870210483575289132889555880054486731
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 5f:60:cf:61:90:55:df:84:43:14:8a:60:2a:b2:f5:7a:f4:43:18:ef
Fingerprint (sha1): 4f:76:13:f7:7a:10:7a:3e:37:d7:9e:35:1f:b2:5b:dd:4c:6b:06:a8
Fingerprint (sha256): 91:cd:30:15:da:03:15:a0:28:c7:49:21:90:66:5e:c4:d2:e5:09:00:5c:f0:1a:b3:1b:54:ce:36:fc:4c:7f:0e
Issuing Certificate URL: http://ss.symcb.com/ss.crt
Revocation information
OCSP Server: http://ss.symcd.comCRL Distribution Point: http://ss.symcb.com/ss.crl
Check the revocation status for certificate webcarf.allina.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for webcarf.allina.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
webcarf.allina.com
Other certificates including the domain name allina.com
(limited to 100 certificates)
donate.allina.com
securelink.allina.com
accwebsecure.allina.com
remoteapps.allina.com
donate.allina.com
vid-polycom-rpadext-01.Allina.com
donate.allina.com
akn.allina.com
epiccarelink.allina.com
*.allina.com
mail.allina.com
webmail.allina.com
devsoapproxy.allina.com
eft.allina.com
tstsecurelink.allina.com
adfs.allina.com
adfs.allina.com
devexcellianmobile.allina.com
*.rsasso.allina.com
remoteapps.allina.com
webmail.allina.com
webproxy.allina.com
adfs.allina.com
webproxy.allina.com
learn.allina.com
apps.allina.com
mainspring.allina.com
polyregistration.allina.com
learn.allina.com
epiccarelink.allina.com
remoteapps.allina.com
*.allina.com
sip.allina.com
websched01.allina.com
ww2.allina.com
excellianweb.allina.com
psservices.allina.com
eft.allina.com
www.allina.com
vip-afstoreint.allina.com
radev.allina.com
mychart.allina.com
accwebsecure.allina.com
webproxy.allina.com
remoteapps.allina.com
webmail.allina.com
learn.allina.com
*.allina.com
sip.allina.com
vpn.allina.com
ww2.allina.com
www.allina.com
webmail.allina.com
devwebproxy.allina.com
webproxy.allina.com
*.allina.com
devsoapproxy.allina.com
donate.allina.com
health.allina.com
vdiprod.allina.com
akn.allina.com
health.allina.com
handheld.excellian.net
excellianmobile.allina.com
identityiq.allina.com
epiccarelink.allina.com
adfs.allina.com
mychart.allina.com
donate.allina.com
accwebsecure.allina.com
adfs.allina.com
*.allina.com
remoteapps.allina.com
vdidev.allina.com
vdidev.allina.com
apps.allina.com
radev.allina.com
*.allina.com
fmpsrv02.allina.com
hybrid.allina.com
webcarf.allina.com
mdcisedev03.allina.com
eft.allina.com
apps.allina.com
devsoapproxy.allina.com
webcarf.allina.com
psrecruit.allina.com
sip.allina.com
sip.allina.com
excellianweb.allina.com
remoteapps.allina.com
*.allina.com
eft.allina.com
securelink.allina.com
devsoapproxy.allina.com
websched01.allina.com
devsoapproxy.allina.com
learn.allina.com
remoteapps.allina.com
learn.allina.com
securelink.allina.com
accwebsecure.allina.com
remoteapps.allina.com
donate.allina.com
vid-polycom-rpadext-01.Allina.com
donate.allina.com
akn.allina.com
epiccarelink.allina.com
*.allina.com
mail.allina.com
webmail.allina.com
devsoapproxy.allina.com
eft.allina.com
tstsecurelink.allina.com
adfs.allina.com
adfs.allina.com
devexcellianmobile.allina.com
*.rsasso.allina.com
remoteapps.allina.com
webmail.allina.com
webproxy.allina.com
adfs.allina.com
webproxy.allina.com
learn.allina.com
apps.allina.com
mainspring.allina.com
polyregistration.allina.com
learn.allina.com
epiccarelink.allina.com
remoteapps.allina.com
*.allina.com
sip.allina.com
websched01.allina.com
ww2.allina.com
excellianweb.allina.com
psservices.allina.com
eft.allina.com
www.allina.com
vip-afstoreint.allina.com
radev.allina.com
mychart.allina.com
accwebsecure.allina.com
webproxy.allina.com
remoteapps.allina.com
webmail.allina.com
learn.allina.com
*.allina.com
sip.allina.com
vpn.allina.com
ww2.allina.com
www.allina.com
webmail.allina.com
devwebproxy.allina.com
webproxy.allina.com
*.allina.com
devsoapproxy.allina.com
donate.allina.com
health.allina.com
vdiprod.allina.com
akn.allina.com
health.allina.com
handheld.excellian.net
excellianmobile.allina.com
identityiq.allina.com
epiccarelink.allina.com
adfs.allina.com
mychart.allina.com
donate.allina.com
accwebsecure.allina.com
adfs.allina.com
*.allina.com
remoteapps.allina.com
vdidev.allina.com
vdidev.allina.com
apps.allina.com
radev.allina.com
*.allina.com
fmpsrv02.allina.com
hybrid.allina.com
webcarf.allina.com
mdcisedev03.allina.com
eft.allina.com
apps.allina.com
devsoapproxy.allina.com
webcarf.allina.com
psrecruit.allina.com
sip.allina.com
sip.allina.com
excellianweb.allina.com
remoteapps.allina.com
*.allina.com
eft.allina.com
securelink.allina.com
devsoapproxy.allina.com
websched01.allina.com
devsoapproxy.allina.com
learn.allina.com
remoteapps.allina.com
learn.allina.com
Certificate
The complete raw certificate details for webcarf.allina.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH3TCCBsWgAwIBAgIQMw9Tut+yunKClSNZl7H2yzANBgkqhkiG9w0BAQsFADB+ MQswCQYDVQQGEwJVUzEdMBsGA1UEChMUU3ltYW50ZWMgQ29ycG9yYXRpb24xHzAd BgNVBAsTFlN5bWFudGVjIFRydXN0IE5ldHdvcmsxLzAtBgNVBAMTJlN5bWFudGVj IENsYXNzIDMgU2VjdXJlIFNlcnZlciBDQSAtIEc0MB4XDTE2MDUyNzAwMDAwMFoX DTE5MDUyNzIzNTk1OVowczELMAkGA1UEBhMCVVMxEjAQBgNVBAgMCU1pbm5lc290 YTEUMBIGA1UEBwwLTWlubmVhcG9saXMxHTAbBgNVBAoMFEFsbGluYSBIZWFsdGgg U3lzdGVtMRswGQYDVQQDDBJ3ZWJjYXJmLmFsbGluYS5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCeuE8MwK73ysWwBvrK0AXDVNvr2ko0UeF8vDM4 JSeBJdE9VgO0FAkuYA7EXUC5gK/H0RAXmCFx5QnXPv1Gt+oc33ZBFWbwdz6qudyO 110ynodtpBJVFgpwdHj+95pT192CY7pTYh0wN+1EfHBe8N0F89iEFXH7Ac6Dr0tJ txF7xWFJNPSUpnAcJrGMCKou4iyZsBFk2mgvTL1Qc/Oe3IIPibBas13LX6jgATeE IlRy4riZcf20QCpmdsMwwkm75AoGVkUdubnTr+mzyr1QD7atG60lSClG8gZZdlBh Ooe1h3wjt5njpAVklMw7//objh+Pd4newbVJWhD2xrlhRZnvGlmnju0TPQ8hKeFA +pnxUuOwOpDCZM9QUJnEwbuOc3llIUHxBS6UNztJFikKQ+9jzkij/t4BZBFCss90 PiOkCqnUclxU9eDlw/lhMM942/6owEFRTK4yQQr5NnAr30mrzAqNjWokZKvNgmWy yRDNZTzf7234Dj2aSQZms5g+hjx7ODTW/VGv8xciJzzD55nFCsiN/qNpMb1fWwly kUYtE9jCqGx/SG6QHBZ4MtNpSWY/md5nxhXAna7Dz+ZjACVnesMW1xs+ko5E9HHT IgbtMfSzO1IlG8KDsRGWOpw1ciYGWiT90a1leeO7VW85GsFjviB+0umAPMFv3wor Hn/Y0QIDAQABo4IDYDCCA1wwHQYDVR0RBBYwFIISd2ViY2FyZi5hbGxpbmEuY29t MAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMCsGA1UdHwQkMCIwIKAeoByGGmh0 dHA6Ly9zcy5zeW1jYi5jb20vc3MuY3JsMGEGA1UdIARaMFgwVgYGZ4EMAQICMEww IwYIKwYBBQUHAgEWF2h0dHBzOi8vZC5zeW1jYi5jb20vY3BzMCUGCCsGAQUFBwIC MBkMF2h0dHBzOi8vZC5zeW1jYi5jb20vcnBhMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjAfBgNVHSMEGDAWgBRfYM9hkFXfhEMUimAqsvV69EMY7zBXBggr BgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9zcy5zeW1jZC5jb20wJgYI KwYBBQUHMAKGGmh0dHA6Ly9zcy5zeW1jYi5jb20vc3MuY3J0MIIB9QYKKwYBBAHW eQIEAgSCAeUEggHhAd8AdQDd6x0reg1PpiCLga2BaHB+Lo6dAdVciI09EcTNtuy+ zAAAAVTykYVzAAAEAwBGMEQCIHoboE0Skzx33Szm1HIA8l6IWJdZ/19YbPjjXvzA g21HAiA1SfhDfjpKYdR06lSzXEfZKqbTOq8at/rr14iULorrZwB3AKS5CZC0GFgU h7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABVPKRhasAAAQDAEgwRgIhAKZJfxwa iIxWil3T8YA0PaIM4LtZ+V6dh3ySDB3Gg37FAiEAkQRf1pHnIrTtPmXD/A5K/okP zQF1P/PNSR/lLSYGCOMAdQBo9pj4H2SCvjqM7rkoHUz8cVFdZ5PURNEKZ6y7T0/7 xAAAAVTykYZkAAAEAwBGMEQCIEqN7rIYwA7gkxMxdmjpLeGZG11DDRtCum9/tv+3 yb/tAiAJi4y/06CZDiC+Og4XSPTVngrXIddzPRLhIzkJ2hDbZAB2AO5Lvbd1zmC6 4UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABVPKRho4AAAQDAEcwRQIgU09JuEtS pEjXxYcg3hb44OC/kDrIONjLi2cDl6aGIP0CIQDlZDsMngopohhiGunaAs3QSlxf g7wWTgRfNZ/wuSSFrzANBgkqhkiG9w0BAQsFAAOCAQEAGpW7dTy/rsqDj+HCCRlT ZXQvsX9wbOkPTdzvmCcfVQuCWP73VBJ6gSdVNxv/ulMIxBiemGzPLUmAQxVk72+H h5gG8xXOG1S2zo9VZ440z0uAd0IPT/yza5ragYDX3YnE980yu/GcYw+DXYwM3IDk t45YJS11ty0w1H6yqbfJZF70HDgd8z379XpBWHfD4c9Bae22pngi4g+Za05kqXrB T13nHX1t2n42Or5irDSQTmBDe4X/ESabhriWWlxHo/Ne1XZ8JONEv4A9HsARjgGY 3Yn/cVtYMgOkuKVt3KtyHRAY5ndfzIgb2GDodtpDJ8fRqTBhb7VlawT+Nx/gfgju 2g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnrhPDMCu98rFsAb6ytAF w1Tb69pKNFHhfLwzOCUngSXRPVYDtBQJLmAOxF1AuYCvx9EQF5ghceUJ1z79Rrfq HN92QRVm8Hc+qrncjtddMp6HbaQSVRYKcHR4/veaU9fdgmO6U2IdMDftRHxwXvDd BfPYhBVx+wHOg69LSbcRe8VhSTT0lKZwHCaxjAiqLuIsmbARZNpoL0y9UHPzntyC D4mwWrNdy1+o4AE3hCJUcuK4mXH9tEAqZnbDMMJJu+QKBlZFHbm506/ps8q9UA+2 rRutJUgpRvIGWXZQYTqHtYd8I7eZ46QFZJTMO//6G44fj3eJ3sG1SVoQ9sa5YUWZ 7xpZp47tEz0PISnhQPqZ8VLjsDqQwmTPUFCZxMG7jnN5ZSFB8QUulDc7SRYpCkPv Y85Io/7eAWQRQrLPdD4jpAqp1HJcVPXg5cP5YTDPeNv+qMBBUUyuMkEK+TZwK99J q8wKjY1qJGSrzYJlsskQzWU83+9t+A49mkkGZrOYPoY8ezg01v1Rr/MXIic8w+eZ xQrIjf6jaTG9X1sJcpFGLRPYwqhsf0hukBwWeDLTaUlmP5neZ8YVwJ2uw8/mYwAl Z3rDFtcbPpKORPRx0yIG7TH0sztSJRvCg7ERljqcNXImBlok/dGtZXnju1VvORrB Y74gftLpgDzBb98KKx5/2NECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 67870210483575289132889555880054486731 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Class 3 Secure Server CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Minneapolis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Allina Health System' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'webcarf.allina.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 647520927805916295901263593309231213810723711829264457207990807588392513419380904190517022934036974775743337839657804134787552701327085829548329610223972697190172821034031327261186217000010961597449513145045970762215576207094221834209756814376490884185902743742688930438593710823894473163226600134566552230192144579446453238434190860404540605044704789670764307071207608136832183894670843030141627409432599577458270630731407898474180159006580948583551036578818051658298909975622736001519099646246536195818442317387712943828465174628234853936707021996638233670076426080645149505764436790369211929021252410942379308179068232720617546801839474734843399400529417423344760302732616849818634119121041337360991534957898875624873266197711191655664942266049541449106831858482700180985128641074742296608925729843283265101809206193591571098437954815805944383182310868149251742335977276047136806644808710975105525854852824210694906976925633405357722588015689855625196520491790983770568941898128213981580865941662787855622444768077054996749107093985186807626808007980404282166645838251002198618171213056210515021298729841686547350319068055142862499213082270687652494549093897868214645578195028778160316605783913904503813336424003294067561368377553 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webcarf.allina.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ss.symcb.com/ss.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5f60cf619055df8443148a602ab2f57af44318ef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ss.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ss.symcb.com/ss.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (485 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (481 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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