sentry.donegalgroup.com
- Donegal Insurance Group -
Issued by Entrust Certification Authority - L1C
About this certificate
This digital certificate with serial number 4c:21:50:a9 was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Donegal Insurance Group
Organization:
Donegal Insurance Group
State / Province:
Pennsylvania
Locality: Marietta
Country: US
Locality: Marietta
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 4c:21:50:a9Serial Number (int): 1277251753
Serial Number lenght: 31 bits, 4 octets
SubjectKeyId: 3a:81:a0:b2:1a:76:d7:7a:96:18:3c:64:c6:ea:95:50:2e:1b:d8:10
AuthorityKeyId: 1e:f1:ab:89:06:f8:49:0f:01:33:77:ee:14:7a:ee:19:7c:93:28:4d
Fingerprint (sha1): 51:2b:7a:d1:0f:59:60:42:c8:98:55:70:0d:4f:b1:6b:fa:35:0d:76
Fingerprint (sha256): 97:a7:f7:39:c7:fd:8d:bf:27:9f:7c:a1:69:10:c5:16:98:93:70:b1:a8:27:ce:34:88:7a:3d:7b:c0:de:6f:36
Issuing Certificate URL: http://aia.entrust.net/2048-l1c.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1c.crl
Check the revocation status for certificate sentry.donegalgroup.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sentry.donegalgroup.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sentry.donegalgroup.com
Other certificates including the domain name donegalgroup.com
(limited to 100 certificates)
qa-user.donegalgroup.com
test-gw-lem-iso.donegalgroup.com
www.donegalgroup.com
test-www.donegalgroup.com
test-qtest-jira.donegalgroup.com
test-cdn.donegalgroup.com
esig.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
selfservice.donegalgroup.com
pilotprod-writebiz.donegalgroup.com
test-www.donegalgroup.com
test-external-ws.donegalgroup.com
sharepoint.donegalgroup.com
test-vueapp2.donegalgroup.com
test-qtest-jira.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
guestportal.donegalgroup.com
qa-external-ws.donegalgroup.com
www.donegalgroup.com
ts-test.donegalgroup.com
test-mobile.donegalgroup.com
mobile.donegalgroup.com
qa-user.donegalgroup.com
test-www.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
test-vueapp.donegalgroup.com
writebiz.donegalgroup.com
test-www.donegalgroup.com
my.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
test-wsag.donegalgroup.com
nautilus.donegalgroup.com
dmi-frw-barracuda.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
qa-www.donegalgroup.com
writebiz.donegalgroup.com
qa-cdn.donegalgroup.com
test-www.donegalgroup.com
test-digportal.donegalgroup.com
vue.donegalgroup.com
api.donegalgroup.com
api.donegalgroup.com
vpn-dr.donegalgroup.com
qa-www.donegalgroup.com
pas.donegalgroup.com
test-user.donegalgroup.com
pas.donegalgroup.com
sso.donegalgroup.com
writebiz.donegalgroup.com
expressway1pri.donegalgroup.com
qa-external-ws.donegalgroup.com
test-writepro.donegalgroup.com
prod-qtest-jira.donegalgroup.com
test-external-ws.donegalgroup.com
esig.donegalgroup.com
qa-user.donegalgroup.com
test-writebiz.donegalgroup.com
test-wbportal.donegalgroup.com
qa-cdn.donegalgroup.com
qa-www.donegalgroup.com
mergers.donegalgroup.com
wbportal.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
teradiciconsole.donegalgroup.com
remotedesktop.donegalgroup.com
smtp.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
wb-portal.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
cdn.donegalgroup.com
test-user.donegalgroup.com
www.donegalgroup.com
isosearchtst.donegalgroup.com
ts-test.donegalgroup.com
expressway1sec.donegalgroup.com
test-vue.donegalgroup.com
test-gw-symbility.donegalgroup.com
perf-vueapp2.donegalgroup.com
qa-user.donegalgroup.com
writepro.donegalgroup.com
www.donegalgroup.com
perf-www.donegalgroup.com
test-user.donegalgroup.com
losscontrol.donegalgroup.com
director.donegalgroup.com
test-wsag.donegalgroup.com
losscontrol.donegalgroup.com
cdn.donegalgroup.com
seg.donegalgroup.com
ts-prod.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
external-ws.donegalgroup.com
www.donegalgroup.com
test-vue2.donegalgroup.com
writebizqa.donegalgroup.com
cdn.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
writepro.donegalgroup.com
user.donegalgroup.com
www.donegalgroup.com
test-gw-lem-iso.donegalgroup.com
www.donegalgroup.com
test-www.donegalgroup.com
test-qtest-jira.donegalgroup.com
test-cdn.donegalgroup.com
esig.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
selfservice.donegalgroup.com
pilotprod-writebiz.donegalgroup.com
test-www.donegalgroup.com
test-external-ws.donegalgroup.com
sharepoint.donegalgroup.com
test-vueapp2.donegalgroup.com
test-qtest-jira.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
guestportal.donegalgroup.com
qa-external-ws.donegalgroup.com
www.donegalgroup.com
ts-test.donegalgroup.com
test-mobile.donegalgroup.com
mobile.donegalgroup.com
qa-user.donegalgroup.com
test-www.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
test-vueapp.donegalgroup.com
writebiz.donegalgroup.com
test-www.donegalgroup.com
my.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
test-wsag.donegalgroup.com
nautilus.donegalgroup.com
dmi-frw-barracuda.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
qa-www.donegalgroup.com
writebiz.donegalgroup.com
qa-cdn.donegalgroup.com
test-www.donegalgroup.com
test-digportal.donegalgroup.com
vue.donegalgroup.com
api.donegalgroup.com
api.donegalgroup.com
vpn-dr.donegalgroup.com
qa-www.donegalgroup.com
pas.donegalgroup.com
test-user.donegalgroup.com
pas.donegalgroup.com
sso.donegalgroup.com
writebiz.donegalgroup.com
expressway1pri.donegalgroup.com
qa-external-ws.donegalgroup.com
test-writepro.donegalgroup.com
prod-qtest-jira.donegalgroup.com
test-external-ws.donegalgroup.com
esig.donegalgroup.com
qa-user.donegalgroup.com
test-writebiz.donegalgroup.com
test-wbportal.donegalgroup.com
qa-cdn.donegalgroup.com
qa-www.donegalgroup.com
mergers.donegalgroup.com
wbportal.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
teradiciconsole.donegalgroup.com
remotedesktop.donegalgroup.com
smtp.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
wb-portal.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
cdn.donegalgroup.com
test-user.donegalgroup.com
www.donegalgroup.com
isosearchtst.donegalgroup.com
ts-test.donegalgroup.com
expressway1sec.donegalgroup.com
test-vue.donegalgroup.com
test-gw-symbility.donegalgroup.com
perf-vueapp2.donegalgroup.com
qa-user.donegalgroup.com
writepro.donegalgroup.com
www.donegalgroup.com
perf-www.donegalgroup.com
test-user.donegalgroup.com
losscontrol.donegalgroup.com
director.donegalgroup.com
test-wsag.donegalgroup.com
losscontrol.donegalgroup.com
cdn.donegalgroup.com
seg.donegalgroup.com
ts-prod.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
external-ws.donegalgroup.com
www.donegalgroup.com
test-vue2.donegalgroup.com
writebizqa.donegalgroup.com
cdn.donegalgroup.com
leapfrog-ssl-55.gcs-web.com
writepro.donegalgroup.com
user.donegalgroup.com
www.donegalgroup.com
Certificate
The complete raw certificate details for sentry.donegalgroup.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIETCFQqTANBgkqhkiG9w0BAQUFADCBsTELMAkGA1UEBhMC VVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRydXN0 Lm5ldC9ycGEgaXMgaW5jb3Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMW KGMpIDIwMDkgRW50cnVzdCwgSW5jLjEuMCwGA1UEAxMlRW50cnVzdCBDZXJ0aWZp Y2F0aW9uIEF1dGhvcml0eSAtIEwxQzAeFw0xMzExMTMxNDM1MjNaFw0xNzEwMjkw ODI4MzZaMHsxCzAJBgNVBAYTAlVTMRUwEwYDVQQIEwxQZW5uc3lsdmFuaWExETAP BgNVBAcTCE1hcmlldHRhMSAwHgYDVQQKExdEb25lZ2FsIEluc3VyYW5jZSBHcm91 cDEgMB4GA1UEAxMXc2VudHJ5LmRvbmVnYWxncm91cC5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCySYKvfxZ9+cXV+Ws+J2ubJ4pw342vIlRVlU8u cMDLjkjphCYDa3IKMn8g74SNyj9Q/7fJI5EvjZUmKrY3Nn2HhpERm4Fl3/O3n7YK CZ7enH0tz6TdGp7bom4TTKLXbWCXh6KzyEbwiB+nNHj/TlXDWYFGnRmOWqpstsuW 7HOZ9DtabO6uzk8Hpldz7b0yQuyKXlCdFO3RuxN44VtdlAA9hTlWhxchNw8Nrm3V spSrq8hEQRUitpJlXCyrF66oHZ79Oh5Kiy7R909YYfv++ya1u/wHXYZbVfUdjzkw 4HwJmrJ2neB7VlZoWg+a4A6PtpFOrNE0gYAJJQzAJwQ9mCM3AgMBAAGjggF8MIIB eDALBgNVHQ8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwMwYDVR0fBCwwKjAo oCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFjLmNybDBkBggrBgEF BQcBAQRYMFYwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MC8G CCsGAQUFBzAChiNodHRwOi8vYWlhLmVudHJ1c3QubmV0LzIwNDgtbDFjLmNlcjBK BgNVHSAEQzBBMDUGCSqGSIb2fQdLAjAoMCYGCCsGAQUFBwIBFhpodHRwOi8vd3d3 LmVudHJ1c3QubmV0L3JwYTAIBgZngQwBAgIwIgYDVR0RBBswGYIXc2VudHJ5LmRv bmVnYWxncm91cC5jb20wHwYDVR0jBBgwFoAUHvGriQb4SQ8BM3fuFHruGXyTKE0w HQYDVR0OBBYEFDqBoLIadtd6lhg8ZMbqlVAuG9gQMAkGA1UdEwQCMAAwDQYJKoZI hvcNAQEFBQADggEBAGqOcooLoI3ourBtd4IQlBTT3DjgnsN4X8pK74jR12KcEIsi LBa28sI2IXhD83/kcOsciDPR+YJ/3pr4dtf1e+7UGrtpEamoTRhp9Jrp90OyeCWC 5K4A/1d831sMP35ceNOmQEuujE1t3rfKmDcfdKz2LWlxPCciKII7FCtkJ9+C0tMR rtcZAspbHsPlll+Yk5rwhv+qMVVE639MSunnoQyccP61krAKDY91fyjiLUimtj/f ud027d7z27pkpjHJn9b6Z96x20DOIXELvkTtHlKdGRK/JzkEKI22lgxhWjRi8Q5y ocRlxyB+Mc+aox74fapXmgKMmoyOhUzcflsTBEM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskmCr38WffnF1flrPidr myeKcN+NryJUVZVPLnDAy45I6YQmA2tyCjJ/IO+Ejco/UP+3ySORL42VJiq2NzZ9 h4aREZuBZd/zt5+2Cgme3px9Lc+k3Rqe26JuE0yi121gl4eis8hG8IgfpzR4/05V w1mBRp0ZjlqqbLbLluxzmfQ7Wmzurs5PB6ZXc+29MkLsil5QnRTt0bsTeOFbXZQA PYU5VocXITcPDa5t1bKUq6vIREEVIraSZVwsqxeuqB2e/ToeSosu0fdPWGH7/vsm tbv8B12GW1X1HY85MOB8CZqydp3ge1ZWaFoPmuAOj7aRTqzRNIGACSUMwCcEPZgj NwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1277251753 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.entrust.net/rpa is incorporated by reference' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2009 Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1C' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-11-13 14:35:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-29 08:28:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Marietta' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Donegal Insurance Group' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sentry.donegalgroup.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22506667657789150119091093344337796587967794237393142932154225926539979773196441384521375849187048968354179016120770563940288236924727250570092096587998475451851497908737001667325501121478789708454717473384307405157762910983903605090174420197408387015735628160627685388305755277589952980255594299627378215192910207952340460083742366341891130022692822054606343894161996925308797254289423577478426480197186208209349415517498756005822829815366281619939793409616865300574986606171723836123793355403622385440442277672168587008897788383009414367221594930832939276410502357949766420808164884413570637527981645967097431860023 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1c.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/2048-l1c.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113533.7.75.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sentry.donegalgroup.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1ef1ab8906f8490f013377ee147aee197c93284d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3a81a0b21a76d77a96183c64c6ea95502e1bd810 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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