clientauth.aviva.co.uk
- Aviva PLC -
Issued by Sectigo RSA Extended Validation Secure Server CA
About this certificate
This digital certificate with serial number b3:aa:c8:eb:22:fa:f0:56:20:5a:a9:dc:26:92:eb:1e was issued on by Sectigo Limited.
With 29 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Aviva PLC
Company registration number:
02468686
Organization: Aviva PLC
Organization unit: Digital
Organization unit: Hosted by AVIVA CENTRAL SERVICES UK LIMITED
Organization unit: COMODO EV Multi-Domain SSL
Organization: Aviva PLC
Organization unit: Digital
Organization unit: Hosted by AVIVA CENTRAL SERVICES UK LIMITED
Organization unit: COMODO EV Multi-Domain SSL
Address:
1 Undershaft
Address: St Helens
Postal code: EC3P 3DQ
State / Province: London
Locality: London
Country: GB
Address: St Helens
Postal code: EC3P 3DQ
State / Province: London
Locality: London
Country: GB
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): b3:aa:c8:eb:22:fa:f0:56:20:5a:a9:dc:26:92:eb:1eSerial Number (int): 238818576822815639878372403303549168414
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 2b:14:05:c7:79:80:96:39:7d:3d:c8:ed:5a:94:5f:44:2c:8b:eb:67
AuthorityKeyId: 2c:69:ff:80:c9:87:90:ae:34:e1:b4:e7:4c:93:85:99:40:e9:a7:b2
Fingerprint (sha1): 51:60:2c:f5:d1:a2:29:38:2f:cb:5e:35:a7:04:8e:0c:87:91:bf:7a
Fingerprint (sha256): 95:63:1f:2d:86:f7:59:c2:fc:fc:fc:f5:ff:d8:6a:46:7a:08:42:d5:b7:02:da:ae:5b:f8:a3:ad:e7:14:18:de
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl
Check the revocation status for certificate clientauth.aviva.co.uk
29
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for clientauth.aviva.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
clientauth.aviva.co.uk
at44.avivaservices.co.uk
at44.friendslife.co.uk
certlogin.dev-aviva.co.uk
certlogin.pre-aviva.co.uk
certlogin.rwy-aviva.co.uk
certlogin.stg-aviva.co.uk
certlogin.sys-aviva.co.uk
connect.sys-aviva.co.uk
psv-cert-extranet.friendslife.co.uk
psv-contractenquiry.friendslife.co.uk
uat1-cert-extranet.friendslife.co.uk
uat1-contractenquiry.friendslife.co.uk
uat2-cert-extranet.friendslife.co.uk
uat2-contractenquiry.friendslife.co.uk
uat3-cert-extranet.friendslife.co.uk
uat3-contractenquiry.friendslife.co.uk
uat4-cert-extranet.friendslife.co.uk
uat4-contractenquiry.friendslife.co.uk
www.aviva-for-messaging.co.uk
www.certlogin.aviva.co.uk
www.dev-aviva-for-messaging.co.uk
www.pre-aviva-for-messaging.co.uk
www.rwy-aviva-for-messaging.co.uk
www.stg-aviva-for-messaging.co.uk
www.sys-aviva-for-messaging.co.uk
www3.friendslife.co.uk
www44.avivaservices.co.uk
www44.friendslife.co.uk
at44.avivaservices.co.uk
at44.friendslife.co.uk
certlogin.dev-aviva.co.uk
certlogin.pre-aviva.co.uk
certlogin.rwy-aviva.co.uk
certlogin.stg-aviva.co.uk
certlogin.sys-aviva.co.uk
connect.sys-aviva.co.uk
psv-cert-extranet.friendslife.co.uk
psv-contractenquiry.friendslife.co.uk
uat1-cert-extranet.friendslife.co.uk
uat1-contractenquiry.friendslife.co.uk
uat2-cert-extranet.friendslife.co.uk
uat2-contractenquiry.friendslife.co.uk
uat3-cert-extranet.friendslife.co.uk
uat3-contractenquiry.friendslife.co.uk
uat4-cert-extranet.friendslife.co.uk
uat4-contractenquiry.friendslife.co.uk
www.aviva-for-messaging.co.uk
www.certlogin.aviva.co.uk
www.dev-aviva-for-messaging.co.uk
www.pre-aviva-for-messaging.co.uk
www.rwy-aviva-for-messaging.co.uk
www.stg-aviva-for-messaging.co.uk
www.sys-aviva-for-messaging.co.uk
www3.friendslife.co.uk
www44.avivaservices.co.uk
www44.friendslife.co.uk
Other certificates including the domain name aviva.co.uk
(limited to 100 certificates)
www.healthpoint.qs.aviva.co.uk
www.aviva-platform.aviva.co.uk
avivaprivacy.uk
www.eserve.avivaservices.co.uk
cert02.uk.aviva.com
www.nationwide.qs.aviva.co.uk
xmlnj.qs.aviva.co.uk
barclayssaml.qs.aviva.co.uk
aviva.co.uk
www.xmlquote.qs.aviva.co.uk
footyfinance.aviva.co.uk
cert03.uk.aviva.com
cert06.uk.aviva.com
avivaprivacy.uk
identitysecure.hsbc.aviva.co.uk
jira-pp.aviva.co.uk
np-cert02.uk.aviva.com
www.insurance.qs.aviva.co.uk
avivaprivacy.uk
cert11.uk.aviva.com
cert03.uk.aviva.com
avivaprivacy.uk
www.direct.aviva.co.uk
www.avivahealth.qs.aviva.co.uk
footyfinance.football
rmdapi1.aviva.co.uk
poet.qs.aviva.co.uk
rmdapi4.aviva.co.uk
cert08.uk.aviva.com
cert01.uk.aviva.com
www.avivahealth.qs.aviva.co.uk
aviva.co.uk
aviva.co.uk
www.selfservice.qs.aviva.co.uk
secure.qs.aviva.co.uk
cert06.uk.aviva.com
aviva.co.uk
www.apb.qs.aviva.co.uk
www.certlogin.aviva.co.uk
www2.wsg.qs.aviva.co.uk
avivaprivacy.uk
aviva.co.uk
cert10.uk.aviva.com
cert06.uk.aviva.com
intquote.aviva.co.uk
rmdapi1.aviva.co.uk
jira.aviva.co.uk
cert10.uk.aviva.com
cert01.tmp.aviva.com
www.ukdi.qs.aviva.co.uk
cert08.uk.aviva.com
cert01.uk.aviva.com
incapsula.com
np-cert02.uk.aviva.com
cert10.uk.aviva.com
www.realitycheckaccount.aviva.co.uk
www.isup.preview.qs.aviva.co.uk
www.apb.qs.aviva.co.uk
intquote.aviva.co.uk
www.insuranceportal-tsbhome-branch.qs.aviva.co.uk
incapsula.com
cert01.uk.aviva.com
avivaprivacy.uk
graduates.aviva.co.uk
incapsula.com
aviva.co.uk
careers.aviva.co.uk
aviva.co.uk
avivaprivacy.uk
referral.aviva.co.uk
cert01.uk.aviva.com
www.wsg.qs.aviva.co.uk
rmdapi2.data.aviva.co.uk
cert08.uk.aviva.com
footyfinance.aviva.co.uk
t.notifications.aviva.co.uk
services.aviva.co.uk
www.quotehc.qs.aviva.co.uk
www.creditor.qs.aviva.co.uk
www.aviva.co.uk
www.hre.qs.aviva.co.uk
www.hsol.qs.aviva.co.uk
uat.aviva.co.uk
aviva.co.uk
www.avivatransfer.co.uk
aviva.co.uk
rmdapi3.aviva.co.uk
hawkeye.qs.aviva.co.uk
incapsula.com
www.mas.qs.aviva.co.uk
www.dsfhe.qs.aviva.co.uk
incapsula.com
mail.aviva.com
cert03.uk.aviva.com
incapsula.com
uat.aviva.co.uk
e-learningportal.at.aviva.com
cert01.tmp.aviva.com
mybusiness.aviva.co.uk
cert05.uk.aviva.com
www.aviva-platform.aviva.co.uk
avivaprivacy.uk
www.eserve.avivaservices.co.uk
cert02.uk.aviva.com
www.nationwide.qs.aviva.co.uk
xmlnj.qs.aviva.co.uk
barclayssaml.qs.aviva.co.uk
aviva.co.uk
www.xmlquote.qs.aviva.co.uk
footyfinance.aviva.co.uk
cert03.uk.aviva.com
cert06.uk.aviva.com
avivaprivacy.uk
identitysecure.hsbc.aviva.co.uk
jira-pp.aviva.co.uk
np-cert02.uk.aviva.com
www.insurance.qs.aviva.co.uk
avivaprivacy.uk
cert11.uk.aviva.com
cert03.uk.aviva.com
avivaprivacy.uk
www.direct.aviva.co.uk
www.avivahealth.qs.aviva.co.uk
footyfinance.football
rmdapi1.aviva.co.uk
poet.qs.aviva.co.uk
rmdapi4.aviva.co.uk
cert08.uk.aviva.com
cert01.uk.aviva.com
www.avivahealth.qs.aviva.co.uk
aviva.co.uk
aviva.co.uk
www.selfservice.qs.aviva.co.uk
secure.qs.aviva.co.uk
cert06.uk.aviva.com
aviva.co.uk
www.apb.qs.aviva.co.uk
www.certlogin.aviva.co.uk
www2.wsg.qs.aviva.co.uk
avivaprivacy.uk
aviva.co.uk
cert10.uk.aviva.com
cert06.uk.aviva.com
intquote.aviva.co.uk
rmdapi1.aviva.co.uk
jira.aviva.co.uk
cert10.uk.aviva.com
cert01.tmp.aviva.com
www.ukdi.qs.aviva.co.uk
cert08.uk.aviva.com
cert01.uk.aviva.com
incapsula.com
np-cert02.uk.aviva.com
cert10.uk.aviva.com
www.realitycheckaccount.aviva.co.uk
www.isup.preview.qs.aviva.co.uk
www.apb.qs.aviva.co.uk
intquote.aviva.co.uk
www.insuranceportal-tsbhome-branch.qs.aviva.co.uk
incapsula.com
cert01.uk.aviva.com
avivaprivacy.uk
graduates.aviva.co.uk
incapsula.com
aviva.co.uk
careers.aviva.co.uk
aviva.co.uk
avivaprivacy.uk
referral.aviva.co.uk
cert01.uk.aviva.com
www.wsg.qs.aviva.co.uk
rmdapi2.data.aviva.co.uk
cert08.uk.aviva.com
footyfinance.aviva.co.uk
t.notifications.aviva.co.uk
services.aviva.co.uk
www.quotehc.qs.aviva.co.uk
www.creditor.qs.aviva.co.uk
www.aviva.co.uk
www.hre.qs.aviva.co.uk
www.hsol.qs.aviva.co.uk
uat.aviva.co.uk
aviva.co.uk
www.avivatransfer.co.uk
aviva.co.uk
rmdapi3.aviva.co.uk
hawkeye.qs.aviva.co.uk
incapsula.com
www.mas.qs.aviva.co.uk
www.dsfhe.qs.aviva.co.uk
incapsula.com
mail.aviva.com
cert03.uk.aviva.com
incapsula.com
uat.aviva.co.uk
e-learningportal.at.aviva.com
cert01.tmp.aviva.com
mybusiness.aviva.co.uk
cert05.uk.aviva.com
Certificate
The complete raw certificate details for clientauth.aviva.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJ7TCCCNWgAwIBAgIRALOqyOsi+vBWIFqp3CaS6x4wDQYJKoZIhvcNAQELBQAw gZExCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE5MDcGA1UE AxMwU2VjdGlnbyBSU0EgRXh0ZW5kZWQgVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVy IENBMB4XDTE5MDcyMzAwMDAwMFoXDTIxMDIwNTIzNTk1OVowggFWMREwDwYDVQQF EwgwMjQ2ODY4NjETMBEGCysGAQQBgjc8AgEDEwJHQjEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xCzAJBgNVBAYTAkdCMREwDwYDVQQREwhFQzNQIDNEUTEP MA0GA1UECBMGTG9uZG9uMQ8wDQYDVQQHEwZMb25kb24xFTATBgNVBAkTDDEgVW5k ZXJzaGFmdDESMBAGA1UECRMJU3QgSGVsZW5zMRIwEAYDVQQKEwlBdml2YSBQTEMx EDAOBgNVBAsTB0RpZ2l0YWwxNDAyBgNVBAsTK0hvc3RlZCBieSBBVklWQSBDRU5U UkFMIFNFUlZJQ0VTIFVLIExJTUlURUQxIzAhBgNVBAsTGkNPTU9ETyBFViBNdWx0 aS1Eb21haW4gU1NMMR8wHQYDVQQDExZjbGllbnRhdXRoLmF2aXZhLmNvLnVrMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0wmDeSsPTxJSPBX9afdhcfv jh44uNfkf5DBaI22+tSHFLTfGYNToDVVXf4itEEs9slS4Z0jut2jHQLW9PE+axr5 XTPxMjBX6W9eJgzsQjA0vS2VJr0FVqjByPS26u7dJVsgnyv1NSyXChKoTOh89PxH rn5aZB7XpMNVwupScM1cXvLQkgMztkukxlJAYQt3tYpCpywRyz/vz/ZXANtBg3K4 db1wS5WgSHdt1euX1WHzDgLIHS0TN9ugXelofqk2W1TE2Vc0SpeP9GxnsuP4Bbfy qti0vscrEUvjc3RNnKNebryajWJhQvazzoilc0dY2OxIFjh8uMtPADPj8ez7vwID AQABo4IFdjCCBXIwHwYDVR0jBBgwFoAULGn/gMmHkK404bTnTJOFmUDpp7IwHQYD VR0OBBYEFCsUBcd5gJY5fT3I7VqUX0Qsi+tnMA4GA1UdDwEB/wQEAwIFoDAMBgNV HRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAE QjBAMDUGDCsGAQQBsjEBAgEFATAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3Rp Z28uY29tL0NQUzAHBgVngQwBATBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3Js LnNlY3RpZ28uY29tL1NlY3RpZ29SU0FFeHRlbmRlZFZhbGlkYXRpb25TZWN1cmVT ZXJ2ZXJDQS5jcmwwgYYGCCsGAQUFBwEBBHoweDBRBggrBgEFBQcwAoZFaHR0cDov L2NydC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNBRXh0ZW5kZWRWYWxpZGF0aW9uU2Vj dXJlU2VydmVyQ0EuY3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdv LmNvbTATBgorBgEEAdZ5AgQDAQH/BAIFADCCA7AGA1UdEQSCA6cwggOjghZjbGll bnRhdXRoLmF2aXZhLmNvLnVrghhhdDQ0LmF2aXZhc2VydmljZXMuY28udWuCFmF0 NDQuZnJpZW5kc2xpZmUuY28udWuCGWNlcnRsb2dpbi5kZXYtYXZpdmEuY28udWuC GWNlcnRsb2dpbi5wcmUtYXZpdmEuY28udWuCGWNlcnRsb2dpbi5yd3ktYXZpdmEu Y28udWuCGWNlcnRsb2dpbi5zdGctYXZpdmEuY28udWuCGWNlcnRsb2dpbi5zeXMt YXZpdmEuY28udWuCF2Nvbm5lY3Quc3lzLWF2aXZhLmNvLnVrgiNwc3YtY2VydC1l eHRyYW5ldC5mcmllbmRzbGlmZS5jby51a4IlcHN2LWNvbnRyYWN0ZW5xdWlyeS5m cmllbmRzbGlmZS5jby51a4IkdWF0MS1jZXJ0LWV4dHJhbmV0LmZyaWVuZHNsaWZl LmNvLnVrgiZ1YXQxLWNvbnRyYWN0ZW5xdWlyeS5mcmllbmRzbGlmZS5jby51a4Ik dWF0Mi1jZXJ0LWV4dHJhbmV0LmZyaWVuZHNsaWZlLmNvLnVrgiZ1YXQyLWNvbnRy YWN0ZW5xdWlyeS5mcmllbmRzbGlmZS5jby51a4IkdWF0My1jZXJ0LWV4dHJhbmV0 LmZyaWVuZHNsaWZlLmNvLnVrgiZ1YXQzLWNvbnRyYWN0ZW5xdWlyeS5mcmllbmRz bGlmZS5jby51a4IkdWF0NC1jZXJ0LWV4dHJhbmV0LmZyaWVuZHNsaWZlLmNvLnVr giZ1YXQ0LWNvbnRyYWN0ZW5xdWlyeS5mcmllbmRzbGlmZS5jby51a4Idd3d3LmF2 aXZhLWZvci1tZXNzYWdpbmcuY28udWuCGXd3dy5jZXJ0bG9naW4uYXZpdmEuY28u dWuCIXd3dy5kZXYtYXZpdmEtZm9yLW1lc3NhZ2luZy5jby51a4Ihd3d3LnByZS1h dml2YS1mb3ItbWVzc2FnaW5nLmNvLnVrgiF3d3cucnd5LWF2aXZhLWZvci1tZXNz YWdpbmcuY28udWuCIXd3dy5zdGctYXZpdmEtZm9yLW1lc3NhZ2luZy5jby51a4Ih d3d3LnN5cy1hdml2YS1mb3ItbWVzc2FnaW5nLmNvLnVrghZ3d3czLmZyaWVuZHNs aWZlLmNvLnVrghl3d3c0NC5hdml2YXNlcnZpY2VzLmNvLnVrghd3d3c0NC5mcmll bmRzbGlmZS5jby51azANBgkqhkiG9w0BAQsFAAOCAQEAbARIyrgKB8j2G93FL4o0 ZYi0yCkAogeNL7/goWdzBvSqmby+POz+2FJXKZB4TrIoCIIiLscMTWMVCkaD4YYh OKF/Gd8tLOjwmWD38zJax14rdmxn7zXe22TxUqeTDrPt2Ep39Y5b/9VKr/+Ke+IW o6MrfjGhDzhrH1vch2EwS2pC/bho/WTTa4OmyOQQBVMAUORO3kESAl2HtUTSYESm Mz/xD/X0GhRRfqZEdf/A0QHbHCgE9gsHOQz3qrSMicoGBeZnhh1mWCL6OREb8SDU g+7RzYH/awCr9rXQfA/5anb6R8MDtV7m4DNReRoCpGI3c1+N0GHhyL8XS2hDKn0L ZA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0wmDeSsPTxJSPBX9afd hcfvjh44uNfkf5DBaI22+tSHFLTfGYNToDVVXf4itEEs9slS4Z0jut2jHQLW9PE+ axr5XTPxMjBX6W9eJgzsQjA0vS2VJr0FVqjByPS26u7dJVsgnyv1NSyXChKoTOh8 9PxHrn5aZB7XpMNVwupScM1cXvLQkgMztkukxlJAYQt3tYpCpywRyz/vz/ZXANtB g3K4db1wS5WgSHdt1euX1WHzDgLIHS0TN9ugXelofqk2W1TE2Vc0SpeP9GxnsuP4 Bbfyqti0vscrEUvjc3RNnKNebryajWJhQvazzoilc0dY2OxIFjh8uMtPADPj8ez7 vwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 238818576822815639878372403303549168414 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Extended Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '02468686' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'EC3P 3DQ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1 Undershaft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'St Helens' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aviva PLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Digital' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by AVIVA CENTRAL SERVICES UK LIMITED' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO EV Multi-Domain SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'clientauth.aviva.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23139160107373121517421265466693591739372939410043677236092374979975196112646479044816158523646182836246437544334934630885002046430952972485136250876612518485072549186572002963140014934608524422633930688955605341359610009862436411288004030703510529539204642943499711983916052182489264362560291616680598246094533174193439813737822915137679501042448284815945143261146488918373924014853335482875792774247598532349991093633164324819793541662744544577863125334227246450139168548127175701797234077563450923978829075812183767956662171672225243878587976906249827325071390036379958916728412259541865540263012531175431548500927 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2c69ff80c98790ae34e1b4e74c93859940e9a7b2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2b1405c7798096397d3dc8ed5a945f442c8beb67 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.5.1 (Comodo EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (122 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (935 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clientauth.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'at44.avivaservices.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'at44.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'certlogin.dev-aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'certlogin.pre-aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'certlogin.rwy-aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'certlogin.stg-aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'certlogin.sys-aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'connect.sys-aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psv-cert-extranet.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psv-contractenquiry.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat1-cert-extranet.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat1-contractenquiry.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat2-cert-extranet.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat2-contractenquiry.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat3-cert-extranet.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat3-contractenquiry.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat4-cert-extranet.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat4-contractenquiry.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aviva-for-messaging.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.certlogin.aviva.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dev-aviva-for-messaging.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pre-aviva-for-messaging.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rwy-aviva-for-messaging.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stg-aviva-for-messaging.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sys-aviva-for-messaging.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www3.friendslife.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www44.avivaservices.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www44.friendslife.co.uk' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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