avon.com
- Avon Cosmeticos Ltda. -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 0d:b9:a8:73:d6:3c:ca:ba:2d:d5:96:3e:39:72:61:c3 was issued on by DigiCert Inc.
With 95 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Avon Cosmeticos Ltda.
Company registration number:
56.991.441/0001-57
Organization: Avon Cosmeticos Ltda.
Organization: Avon Cosmeticos Ltda.
State / Province:
São Paulo
Locality: São Paulo
Country: BR
Locality: São Paulo
Country: BR
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:b9:a8:73:d6:3c:ca:ba:2d:d5:96:3e:39:72:61:c3Serial Number (int): 18243955486388237083429050931957883331
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d2:02:2a:e2:aa:6b:1e:b7:59:3f:cf:73:49:87:90:ca:a9:ea:6d:11
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 98:93:55:1c:49:06:e2:31:fa:d7:f4:17:fc:59:5b:f2:3b:57:ea:f7
Fingerprint (sha256): 92:eb:2a:f8:61:4f:d3:e7:8b:10:b4:3e:dc:9d:a7:b5:23:41:99:6d:b5:08:0b:5d:f9:35:10:e4:a3:86:dc:b5
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g3.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g3.crl
Check the revocation status for certificate avon.com
95
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for avon.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
avon.com
www.sv.avon.com
www.sa.avon.com
www.pe.avon.com
www.ni.avon.com
www.ma.avon.com
www.hn.avon.com
www.gt.avon.com
www.eg.avon.com
www.ec.avon.com
www.cl.avon.com
www.avoncosmetics.ro
www.avoncosmetics.cz
www.avoncosmetics.com.mk
www.avon.sk
www.avon.si
www.avon.me
www.avon.md
www.avon.lv
www.avon.hu
www.avon.hr
www.avon.ge
www.avon.ee
www.avon.com.ua
www.avon.com.sv
www.avon.com.pe
www.avon.com.ni
www.avon.com.hn
www.avon.com.gt
www.avon.com.ec
www.avon.cl
www.avon.ba
www.al.avon.com
www-o.avon.co.ma
webeservicesdls3.avon.com
webeservicesdls2.avon.com
webeservicesdls1.avon.com
webeservices3qaf.avon.com
sv.avon.com
static.rep.avon.bg
static.config.avon.com
static.avon.it
static.avon.com.ua
static.avon.com.tr
static-qaf.config.avon.com
rep.avoncosmetics.gr
rep.avon.rs
rep.avon.lt
rep.avon.fi
rep.avon.de
rep.avon.com.pt
rep.avon.bg
pe.avon.com
ni.avon.com
my.justine.co.za
my.avon.mx
my.avon.lv
my.avon.ee
my.avon.com.pe
my.avon.com.ec
my.avon.co.za
my.avon.co
mra.azuapi.avon.com
latam-static.avonuat.com
latam-static.avonqap.com
latam-static.avonqam.com
latam-static.avonqah.com
latam-static.avonqaf.com
latam-static.avon.com
la.agws3.avon.com
justine.co.za
hn.avon.com
gt.avon.com
emear-static.avonuat.com
emear-static.avonqap.com
emear-static.avonqam.com
emear-static.avonqah.com
emear-static.avonqaf.com
emear-static.avon.com
eem.co.avon.com
eem.br.avon.com
ec.avon.com
cl.avon.com
canopy.poc.avon.com
avon.lv
avon.ee
avon.com.sv
avon.com.pe
avon.com.ni
avon.com.hn
avon.com.gt
avon.com.ec
avon.co.za
avon.co
avon.cl
www.sv.avon.com
www.sa.avon.com
www.pe.avon.com
www.ni.avon.com
www.ma.avon.com
www.hn.avon.com
www.gt.avon.com
www.eg.avon.com
www.ec.avon.com
www.cl.avon.com
www.avoncosmetics.ro
www.avoncosmetics.cz
www.avoncosmetics.com.mk
www.avon.sk
www.avon.si
www.avon.me
www.avon.md
www.avon.lv
www.avon.hu
www.avon.hr
www.avon.ge
www.avon.ee
www.avon.com.ua
www.avon.com.sv
www.avon.com.pe
www.avon.com.ni
www.avon.com.hn
www.avon.com.gt
www.avon.com.ec
www.avon.cl
www.avon.ba
www.al.avon.com
www-o.avon.co.ma
webeservicesdls3.avon.com
webeservicesdls2.avon.com
webeservicesdls1.avon.com
webeservices3qaf.avon.com
sv.avon.com
static.rep.avon.bg
static.config.avon.com
static.avon.it
static.avon.com.ua
static.avon.com.tr
static-qaf.config.avon.com
rep.avoncosmetics.gr
rep.avon.rs
rep.avon.lt
rep.avon.fi
rep.avon.de
rep.avon.com.pt
rep.avon.bg
pe.avon.com
ni.avon.com
my.justine.co.za
my.avon.mx
my.avon.lv
my.avon.ee
my.avon.com.pe
my.avon.com.ec
my.avon.co.za
my.avon.co
mra.azuapi.avon.com
latam-static.avonuat.com
latam-static.avonqap.com
latam-static.avonqam.com
latam-static.avonqah.com
latam-static.avonqaf.com
latam-static.avon.com
la.agws3.avon.com
justine.co.za
hn.avon.com
gt.avon.com
emear-static.avonuat.com
emear-static.avonqap.com
emear-static.avonqam.com
emear-static.avonqah.com
emear-static.avonqaf.com
emear-static.avon.com
eem.co.avon.com
eem.br.avon.com
ec.avon.com
cl.avon.com
canopy.poc.avon.com
avon.lv
avon.ee
avon.com.sv
avon.com.pe
avon.com.ni
avon.com.hn
avon.com.gt
avon.com.ec
avon.co.za
avon.co
avon.cl
Other certificates including the domain name avon.com
(limited to 100 certificates)
ssl8.ipaper.io
ssl9.ipaper.io
ssl8.icommarketing.com
ssl9.ipaper.io
www.avon.my
qaf.link.avon.com
ecom.youravon.com
*.uk.avon.com
leadsservicesru.avon.com
ecom.youravon.com
z3-b45c.kxcdn.com
dev.ve.avon.com
on.avon.com
ryestgw.na.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
autodiscover.domino.avonfoundation.org
ssl8.ipaper.io
mobileapi.avon.com
qafmab.bg.avon.com
emear-lpa.avon.com
avon.com
connectshg.avon.com
connectar.avon.com
gabi03.com
uatssmab.ar.avon.com
ssl8.icommarketing.com
webeservicesru.avon.com
ssl8.icommarketing.com
ecom4.pr.avon.com
uatmab.static.co.avon.com
www.kr.avon.com
ssl9.ipaper.io
ssl8.icommarketing.com
uatmab.co.avon.com
static1.br.avon.com
qaf.eenew.avon.com
avon.kz
core-order-eu-dev.api-dev.aws.avon.com
qafmab.static.co.avon.com
ssl8.icommarketing.com
view.email.usa.avon.com
ssl8.icommarketing.com
www.avon.com.mx
ssl8.icommarketing.com
www.sa.avon.com
eem.co.avon.com
qaf.eenew.avon.com
dev.sv.avon.com
static1.br.avon.com
*.uk.avon.com
www.uy.avon.com
qaf.jtnew.avon.com
connectuk.avon.com
www.my.avon.com
dev.ec.avon.com
drmsp.cn.avon.com
simulator.avon.com
ssl9.ipaper.io
uatmab.static.ro.avon.com
choiceservicesqaf.avon.com
www.tr.avon.com
qafss.ar.avon.com
shop.avon.com
connectsuffern.avon.com
qaf.lvnew.avon.com
uat.mobilecms.avon.com
ssl8.ipaper.io
dev.pe.avon.com
avonaccess.na.avon.com
qap.mx.avon.com
www.al.avon.com
www.ni.avon.com
www.uy.avon.com
br.avon.com
www.sv.avon.com
www.tw.avon.com
br.avon.com
choiceservices-ru.avon.com
*.arpdev.avon.com
eem.br.avon.com
drupal.avon.com.ar
imshare.avon.com
static1.br.avon.com
*.ro.avon.com
dev.pa.avon.com
ssl9.ipaper.io
catalog.avonnow.com
link.customer.avon.com
author.pl.avon.com
ecom4.pr.avon.com
www.avon2win.avon.com.pt
qafmab.co.avon.com
newsin.bullets.app
*.hu.avon.com
dev.gt.avon.com
link.customer.avon.com
avononline.pl.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
ssl9.ipaper.io
www.avon.my
qaf.link.avon.com
ecom.youravon.com
*.uk.avon.com
leadsservicesru.avon.com
ecom.youravon.com
z3-b45c.kxcdn.com
dev.ve.avon.com
on.avon.com
ryestgw.na.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
autodiscover.domino.avonfoundation.org
ssl8.ipaper.io
mobileapi.avon.com
qafmab.bg.avon.com
emear-lpa.avon.com
avon.com
connectshg.avon.com
connectar.avon.com
gabi03.com
uatssmab.ar.avon.com
ssl8.icommarketing.com
webeservicesru.avon.com
ssl8.icommarketing.com
ecom4.pr.avon.com
uatmab.static.co.avon.com
www.kr.avon.com
ssl9.ipaper.io
ssl8.icommarketing.com
uatmab.co.avon.com
static1.br.avon.com
qaf.eenew.avon.com
avon.kz
core-order-eu-dev.api-dev.aws.avon.com
qafmab.static.co.avon.com
ssl8.icommarketing.com
view.email.usa.avon.com
ssl8.icommarketing.com
www.avon.com.mx
ssl8.icommarketing.com
www.sa.avon.com
eem.co.avon.com
qaf.eenew.avon.com
dev.sv.avon.com
static1.br.avon.com
*.uk.avon.com
www.uy.avon.com
qaf.jtnew.avon.com
connectuk.avon.com
www.my.avon.com
dev.ec.avon.com
drmsp.cn.avon.com
simulator.avon.com
ssl9.ipaper.io
uatmab.static.ro.avon.com
choiceservicesqaf.avon.com
www.tr.avon.com
qafss.ar.avon.com
shop.avon.com
connectsuffern.avon.com
qaf.lvnew.avon.com
uat.mobilecms.avon.com
ssl8.ipaper.io
dev.pe.avon.com
avonaccess.na.avon.com
qap.mx.avon.com
www.al.avon.com
www.ni.avon.com
www.uy.avon.com
br.avon.com
www.sv.avon.com
www.tw.avon.com
br.avon.com
choiceservices-ru.avon.com
*.arpdev.avon.com
eem.br.avon.com
drupal.avon.com.ar
imshare.avon.com
static1.br.avon.com
*.ro.avon.com
dev.pa.avon.com
ssl9.ipaper.io
catalog.avonnow.com
link.customer.avon.com
author.pl.avon.com
ecom4.pr.avon.com
www.avon2win.avon.com.pt
qafmab.co.avon.com
newsin.bullets.app
*.hu.avon.com
dev.gt.avon.com
link.customer.avon.com
avononline.pl.avon.com
autodiscover.domino.avonfoundation.org
Certificate
The complete raw certificate details for avon.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIINgjCCDGqgAwIBAgIQDbmoc9Y8yrot1ZY+OXJhwzANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTIzMTAyNDAwMDAwMFoXDTI0MTAyNTIz NTk1OVowgbsxEzARBgsrBgEEAYI3PAIBAxMCQlIxHTAbBgNVBA8MFFByaXZhdGUg T3JnYW5pemF0aW9uMRswGQYDVQQFExI1Ni45OTEuNDQxLzAwMDEtNTcxCzAJBgNV BAYTAkJSMRMwEQYDVQQIDApTw6NvIFBhdWxvMRMwEQYDVQQHDApTw6NvIFBhdWxv MR4wHAYDVQQKExVBdm9uIENvc21ldGljb3MgTHRkYS4xETAPBgNVBAMTCGF2b24u Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJttrVJXBRyo4332 iEtp2BKdJ07USK0vtXTL3FA7Lc7ZcInEvKXhSygoDWA2jx7laxybnF4HgXMSYtzO kARub2uvkv1Mz0rt6VGgtGpo/Sv+MMFkIQN3Sf2lNVLx07ONhQ8jP4kQWdiTpaYX H9silyuNn2rH//Jio3V3YLQY641Jjf3Ll8OB24FYKm+9rc1hv0yvE+Q9oSCvgAIh ssVioPn8YgMfIZrGLHoiOiujHzheyGdHrlPi1ITXBsB0GsBsy2ghF20nWNxmW0Bn zVjuOd6GhAwWID8yBVU+Y6BVp+/L4IMahh4hpKA7DBsH4svm9bNC6oKHxIcW6Tq2 3dGC2QIDAQABo4IJxTCCCcEwHwYDVR0jBBgwFoAUPdNQpdagre7zSmAKZdMh1Pj4 1g8wHQYDVR0OBBYEFNICKuKqax63WT/Pc0mHkMqp6m0RMIIGbgYDVR0RBIIGZTCC BmGCCGF2b24uY29tgg93d3cuc3YuYXZvbi5jb22CD3d3dy5zYS5hdm9uLmNvbYIP d3d3LnBlLmF2b24uY29tgg93d3cubmkuYXZvbi5jb22CD3d3dy5tYS5hdm9uLmNv bYIPd3d3LmhuLmF2b24uY29tgg93d3cuZ3QuYXZvbi5jb22CD3d3dy5lZy5hdm9u LmNvbYIPd3d3LmVjLmF2b24uY29tgg93d3cuY2wuYXZvbi5jb22CFHd3dy5hdm9u Y29zbWV0aWNzLnJvghR3d3cuYXZvbmNvc21ldGljcy5jeoIYd3d3LmF2b25jb3Nt ZXRpY3MuY29tLm1rggt3d3cuYXZvbi5za4ILd3d3LmF2b24uc2mCC3d3dy5hdm9u Lm1lggt3d3cuYXZvbi5tZIILd3d3LmF2b24ubHaCC3d3dy5hdm9uLmh1ggt3d3cu YXZvbi5ocoILd3d3LmF2b24uZ2WCC3d3dy5hdm9uLmVlgg93d3cuYXZvbi5jb20u dWGCD3d3dy5hdm9uLmNvbS5zdoIPd3d3LmF2b24uY29tLnBlgg93d3cuYXZvbi5j b20ubmmCD3d3dy5hdm9uLmNvbS5oboIPd3d3LmF2b24uY29tLmd0gg93d3cuYXZv bi5jb20uZWOCC3d3dy5hdm9uLmNsggt3d3cuYXZvbi5iYYIPd3d3LmFsLmF2b24u Y29tghB3d3ctby5hdm9uLmNvLm1hghl3ZWJlc2VydmljZXNkbHMzLmF2b24uY29t ghl3ZWJlc2VydmljZXNkbHMyLmF2b24uY29tghl3ZWJlc2VydmljZXNkbHMxLmF2 b24uY29tghl3ZWJlc2VydmljZXMzcWFmLmF2b24uY29tggtzdi5hdm9uLmNvbYIS c3RhdGljLnJlcC5hdm9uLmJnghZzdGF0aWMuY29uZmlnLmF2b24uY29tgg5zdGF0 aWMuYXZvbi5pdIISc3RhdGljLmF2b24uY29tLnVhghJzdGF0aWMuYXZvbi5jb20u dHKCGnN0YXRpYy1xYWYuY29uZmlnLmF2b24uY29tghRyZXAuYXZvbmNvc21ldGlj cy5ncoILcmVwLmF2b24ucnOCC3JlcC5hdm9uLmx0ggtyZXAuYXZvbi5maYILcmVw LmF2b24uZGWCD3JlcC5hdm9uLmNvbS5wdIILcmVwLmF2b24uYmeCC3BlLmF2b24u Y29tggtuaS5hdm9uLmNvbYIQbXkuanVzdGluZS5jby56YYIKbXkuYXZvbi5teIIK bXkuYXZvbi5sdoIKbXkuYXZvbi5lZYIObXkuYXZvbi5jb20ucGWCDm15LmF2b24u Y29tLmVjgg1teS5hdm9uLmNvLnphggpteS5hdm9uLmNvghNtcmEuYXp1YXBpLmF2 b24uY29tghhsYXRhbS1zdGF0aWMuYXZvbnVhdC5jb22CGGxhdGFtLXN0YXRpYy5h dm9ucWFwLmNvbYIYbGF0YW0tc3RhdGljLmF2b25xYW0uY29tghhsYXRhbS1zdGF0 aWMuYXZvbnFhaC5jb22CGGxhdGFtLXN0YXRpYy5hdm9ucWFmLmNvbYIVbGF0YW0t c3RhdGljLmF2b24uY29tghFsYS5hZ3dzMy5hdm9uLmNvbYINanVzdGluZS5jby56 YYILaG4uYXZvbi5jb22CC2d0LmF2b24uY29tghhlbWVhci1zdGF0aWMuYXZvbnVh dC5jb22CGGVtZWFyLXN0YXRpYy5hdm9ucWFwLmNvbYIYZW1lYXItc3RhdGljLmF2 b25xYW0uY29tghhlbWVhci1zdGF0aWMuYXZvbnFhaC5jb22CGGVtZWFyLXN0YXRp Yy5hdm9ucWFmLmNvbYIVZW1lYXItc3RhdGljLmF2b24uY29tgg9lZW0uY28uYXZv bi5jb22CD2VlbS5ici5hdm9uLmNvbYILZWMuYXZvbi5jb22CC2NsLmF2b24uY29t ghNjYW5vcHkucG9jLmF2b24uY29tggdhdm9uLmx2ggdhdm9uLmVlggthdm9uLmNv bS5zdoILYXZvbi5jb20ucGWCC2F2b24uY29tLm5pggthdm9uLmNvbS5oboILYXZv bi5jb20uZ3SCC2F2b24uY29tLmVjggphdm9uLmNvLnphggdhdm9uLmNvggdhdm9u LmNsMEoGA1UdIARDMEEwCwYJYIZIAYb9bAIBMDIGBWeBDAEBMCkwJwYIKwYBBQUH AgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMHUGA1UdHwRuMGwwNKAyoDCG Lmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zaGEyLWV2LXNlcnZlci1nMy5jcmww NKAyoDCGLmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zaGEyLWV2LXNlcnZlci1n My5jcmwwgYgGCCsGAQUFBwEBBHwwejAkBggrBgEFBQcwAYYYaHR0cDovL29jc3Au ZGlnaWNlcnQuY29tMFIGCCsGAQUFBzAChkZodHRwOi8vY2FjZXJ0cy5kaWdpY2Vy dC5jb20vRGlnaUNlcnRTSEEyRXh0ZW5kZWRWYWxpZGF0aW9uU2VydmVyQ0EuY3J0 MAwGA1UdEwEB/wQCMAAwggGABgorBgEEAdZ5AgQCBIIBcASCAWwBagB3AO7N0GTV 2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABi2KR2ysAAAQDAEgwRgIhAMOl vbN870E4FBsHrwg+iS9o9TB2H5TTmc7IfHkPsrYEAiEA+96PKIvpv9WaQqDM1t4C X3NTVqZflwbMHMK0YHSoGtUAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+r OdiEcwAAAYtikdqZAAAEAwBIMEYCIQCTO9C9h9H/GWmkji4NEV081uMyehcFeeuk lIm1DYYOowIhAOCsMsV1MhOR/agudpZWcJVqaV96TAHNvJ1SVttdTGMoAHYA2ra/ az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGLYpHaiQAABAMARzBFAiB8 nHhRpp9AUy2ucdYPI0GIwkgTZd9P8MiSEYcQex9IcQIhAItr33W5cGXhao1H3Tn5 nbi9pRtOPXsmApPmk+TY4NiIMA0GCSqGSIb3DQEBCwUAA4IBAQAkkYe4z5Oucu8D aDnNO0YRaax1Gu8u4CynzGd8230KSLJ/+zTQnPCvUjD7IUMDlkFOm2wKAk1KYXTJ EovYcLhX5zHEXM7p+opIxVwafdjKayASBnv3NY953sVibIAv5BWAHUi6Jt4gMYRZ ZixUu1/fcA3CahE3AfyFwnCZk6w9t8DIyoA42JG2yOYPdaf69oHp4sKhsu+AuEz2 +7H9wAogph1tFrCRCy/BLuwg01fP/JPkcaFamYF48oPZALDb51eMf0qLhLcqd87e AbyPNetcU+rZY1YP2dX/HweXPMt0q+6N0hj7BqnSYWH3svNSo8E1HQCOfzUtBqC9 lyiWcxoy -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJttrVJXBRyo4332iEtp 2BKdJ07USK0vtXTL3FA7Lc7ZcInEvKXhSygoDWA2jx7laxybnF4HgXMSYtzOkARu b2uvkv1Mz0rt6VGgtGpo/Sv+MMFkIQN3Sf2lNVLx07ONhQ8jP4kQWdiTpaYXH9si lyuNn2rH//Jio3V3YLQY641Jjf3Ll8OB24FYKm+9rc1hv0yvE+Q9oSCvgAIhssVi oPn8YgMfIZrGLHoiOiujHzheyGdHrlPi1ITXBsB0GsBsy2ghF20nWNxmW0BnzVju Od6GhAwWID8yBVU+Y6BVp+/L4IMahh4hpKA7DBsH4svm9bNC6oKHxIcW6Tq23dGC 2QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18243955486388237083429050931957883331 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '56.991.441/0001-57' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'São Paulo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'São Paulo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Avon Cosmeticos Ltda.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'avon.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22799539507299682672212193564769310549034762230479672243350561676273567219316494250649089735287329797628272515621755841374882928094479269986919839878331060327578381044121653024536271769594283688030559114027168317183982535218149875189440581198906687426492397352562781123203114260526143066474968146012705501023346799497038707058097330844114967109247141354287824950492917530314907126321889443478318042448463381298163601332828637305561766515063475876216789583522048881366684240813218634494228850831848714064867171767780052908484506203480035400115032977795886154970275229458663774132185684000189155537819451188747950981849 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d2022ae2aa6b1eb7593fcf73498790caa9ea6d11 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1637 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sv.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sa.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pe.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ni.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ma.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hn.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gt.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.eg.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ec.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cl.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avoncosmetics.ro' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avoncosmetics.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avoncosmetics.com.mk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.si' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.me' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.md' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.lv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.hr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.ge' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.ee' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.com.ua' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.com.sv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.com.pe' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.com.ni' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.com.hn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.com.gt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.com.ec' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.cl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avon.ba' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.al.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-o.avon.co.ma' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webeservicesdls3.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webeservicesdls2.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webeservicesdls1.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webeservices3qaf.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sv.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.rep.avon.bg' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.config.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.avon.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.avon.com.ua' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.avon.com.tr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static-qaf.config.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rep.avoncosmetics.gr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rep.avon.rs' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rep.avon.lt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rep.avon.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rep.avon.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rep.avon.com.pt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rep.avon.bg' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pe.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ni.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.justine.co.za' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.avon.mx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.avon.lv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.avon.ee' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.avon.com.pe' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.avon.com.ec' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.avon.co.za' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.avon.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mra.azuapi.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'latam-static.avonuat.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'latam-static.avonqap.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'latam-static.avonqam.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'latam-static.avonqah.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'latam-static.avonqaf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'latam-static.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'la.agws3.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'justine.co.za' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hn.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gt.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emear-static.avonuat.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emear-static.avonqap.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emear-static.avonqam.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emear-static.avonqah.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emear-static.avonqaf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emear-static.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eem.co.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eem.br.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ec.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cl.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canopy.poc.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.lv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.ee' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.com.sv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.com.pe' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.com.ni' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.com.hn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.com.gt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.com.ec' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.co.za' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avon.cl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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