broker.ampbanking.com
- AMP Bank Limited -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 01:f3:df:84:7a:72:17:be:12:8b:e7:9c:0a:e4:1d:c9 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
AMP Bank Limited
Company registration number:
081 596 009
Organization: AMP Bank Limited
Organization: AMP Bank Limited
Address:
L4 2-12 Macquarie St
Postal code: 2124
State / Province: New South Wales
Locality: Parramatta
Country: AU
Postal code: 2124
State / Province: New South Wales
Locality: Parramatta
Country: AU
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:f3:df:84:7a:72:17:be:12:8b:e7:9c:0a:e4:1d:c9Serial Number (int): 2595489605763046054320882741942689225
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 45:93:d7:ff:4a:d7:08:b2:42:42:9c:52:8a:1e:52:e5:04:9c:d7:a8
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 14:1c:16:0b:fb:7c:72:9a:ce:a2:b5:59:e1:05:22:c9:27:b0:4a:90
Fingerprint (sha256): 9a:86:c7:ff:f0:00:30:51:fd:24:42:82:a1:38:d4:24:03:55:88:a7:b4:ed:e4:e2:c3:83:49:4e:e7:f8:86:8d
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g1.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g1.crl
Check the revocation status for certificate broker.ampbanking.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for broker.ampbanking.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
broker.ampbanking.com
Other certificates including the domain name ampbanking.com
(limited to 100 certificates)
testing.ampbanking.com
planner.ampbanking.com
secure.ampbanking.com
*.ampbanking.com
secure.ampbanking.com
planner.ampbanking.com
broker.ampbanking.com
secure.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
testing.ampbanking.com
imperva.com
testing.ampbanking.com
testing.ampbanking.com
id.secure.ampbanking.com
id.secure.ampbanking.com
imperva.com
testing.ampbanking.com
secure.ampbanking.com
imperva.com
secure.ampbanking.com
planner.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
testing.ampbanking.com
broker.ampbanking.com
secure.ampbanking.com
secure.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
id.secure.ampbanking.com
plannertest.ampbanking.com
imperva.com
imperva.com
planner.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
testing.ampbanking.com
imperva.com
imperva.com
plannertest.ampbanking.com
plannertest.ampbanking.com
imperva.com
imperva.com
broker.ampbanking.com
secure.ampbanking.com
testing.ampbanking.com
imperva.com
secure.ampbanking.com
brokertest.ampbanking.com
imperva.com
ID.SECURE.AMPBANKING.COM
imperva.com
brokertest.ampbanking.com
planner.ampbanking.com
imperva.com
broker.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
secure.ampbanking.com
id.secure.ampbanking.com
imperva.com
secure.ampbanking.com
ID.SECURE.AMPBANKING.COM
planner.ampbanking.com
secure.ampbanking.com
*.ampbanking.com
secure.ampbanking.com
planner.ampbanking.com
broker.ampbanking.com
secure.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
testing.ampbanking.com
imperva.com
testing.ampbanking.com
testing.ampbanking.com
id.secure.ampbanking.com
id.secure.ampbanking.com
imperva.com
testing.ampbanking.com
secure.ampbanking.com
imperva.com
secure.ampbanking.com
planner.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
testing.ampbanking.com
broker.ampbanking.com
secure.ampbanking.com
secure.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
id.secure.ampbanking.com
plannertest.ampbanking.com
imperva.com
imperva.com
planner.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
testing.ampbanking.com
imperva.com
imperva.com
plannertest.ampbanking.com
plannertest.ampbanking.com
imperva.com
imperva.com
broker.ampbanking.com
secure.ampbanking.com
testing.ampbanking.com
imperva.com
secure.ampbanking.com
brokertest.ampbanking.com
imperva.com
ID.SECURE.AMPBANKING.COM
imperva.com
brokertest.ampbanking.com
planner.ampbanking.com
imperva.com
broker.ampbanking.com
secure.ampbanking.com
broker.ampbanking.com
secure.ampbanking.com
id.secure.ampbanking.com
imperva.com
secure.ampbanking.com
ID.SECURE.AMPBANKING.COM
Certificate
The complete raw certificate details for broker.ampbanking.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHXTCCBkWgAwIBAgIQAfPfhHpyF74Si+ecCuQdyTANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE1MDkyODAwMDAwMFoXDTE3MTEyOTEy MDAwMFowgfExHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAkFVMRQwEgYDVQQFEwswODEgNTk2IDAwOTEfMB0GA1UECRMWTDQg ICAyLTEyIE1hY3F1YXJpZSBTdDENMAsGA1UEERMEMjEyNDELMAkGA1UEBhMCQVUx GDAWBgNVBAgTD05ldyBTb3V0aCBXYWxlczETMBEGA1UEBxMKUGFycmFtYXR0YTEZ MBcGA1UEChMQQU1QIEJhbmsgTGltaXRlZDEeMBwGA1UEAxMVYnJva2VyLmFtcGJh bmtpbmcuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFfRBEJ+ /nBFkviy5ds8LgwJRiELXlkFKtp1aoIpXBRd+raAczfDWU/GqNGm9ba58NPhYv/W aP2UwUCuINGmzJbKT8bygJhvJk4j6VZK4eB6ZVdAJz4n3VW9SAHpgk1NG+YBDeHx wFsQO2d+OJJlcCKn9CGrSsIaIBatgzP/BBorwYo6l3HnFW0yO7drUV82v/wg8bnG BK80CfLgCf5xjcmF/IQTH6nN0AIlujH9q6CkQ7ogf3kGxKJarX73fkg408t1b5ai +HsvNJ4lKLbs9IltfGHpfsqLzCRNyASIVZxaUq2Ez26DYvMM33EQJbcBj5/hfCwY /krg6AfVTja3sQIDAQABo4IDajCCA2YwHwYDVR0jBBgwFoAUPdNQpdagre7zSmAK ZdMh1Pj41g8wHQYDVR0OBBYEFEWT1/9K1wiyQkKcUooeUuUEnNeoMCAGA1UdEQQZ MBeCFWJyb2tlci5hbXBiYW5raW5nLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMHUGA1UdHwRuMGwwNKAyoDCGLmh0dHA6 Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zaGEyLWV2LXNlcnZlci1nMS5jcmwwNKAyoDCG Lmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zaGEyLWV2LXNlcnZlci1nMS5jcmww QgYDVR0gBDswOTA3BglghkgBhv1sAgEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93 d3cuZGlnaWNlcnQuY29tL0NQUzCBiAYIKwYBBQUHAQEEfDB6MCQGCCsGAQUFBzAB hhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wUgYIKwYBBQUHMAKGRmh0dHA6Ly9j YWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJFeHRlbmRlZFZhbGlkYXRp b25TZXJ2ZXJDQS5jcnQwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFt BIIBaQFnAHYApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFQFMk2 OwAABAMARzBFAiEA83t1W/ixOmlxHHgUvNFyhQVYUzi95B6z5/s3eh1vKAYCIDld NurlCoC1gvfUnB2Mt+a0Ee5j4i7PcNiZprjXD9n8AHUAaPaY+B9kgr46jO65KB1M /HFRXWeT1ETRCmesu09P+8QAAAFQFMk2PgAABAMARjBEAiB8OzdgC4Q11UtOBFkI 4Vt1NxCbEqtuPzWQC2Ah4YTxGQIgekrOSJUIp5ZKwvGpSyCf3yWoBnveRQffaTQ8 MUlVtaQAdgBWFAaaL9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAVAUyTd4 AAAEAwBHMEUCIQC3tiQ7XwJ+mPQ0EdOLKhKAemwYPLwc7oY6gA7n6lueAgIgCW/U 9hrKHXcq6Fp7AHqq00/xoJ2C/deuKQFHzPE6/sAwDQYJKoZIhvcNAQELBQADggEB ANT+gqUknjQGttiMDSAG7MJujhZvFBHIB/d5Snc/FeiUvxhxGjN/L/uwzhYKt7lu unPkJH7av8xO9IAC2t6kWjlfgW71pVsPneAlfe0CEkrX5PkoJNE+P2RKdL/pX3XZ zwXoWIZQesZWlqXoVS8nbvp4ATdcymTfoZ8BZGxvxW1pQK89p9gkrjqjddjj/L2P wOeFB3d53s0m5w84zs0sbf1ZNKAKTZkGcIxc6MJfXRqBMeWD5rzZLlLkDALrwTkk oReUActYyf9b3wFCTuPn4IPuzk8Ol62UdNgitp49dhwUWzTbusbciMfVERgZcKBW nsFl5d63IuPxGRKW0Letsj4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFfRBEJ+/nBFkviy5ds8 LgwJRiELXlkFKtp1aoIpXBRd+raAczfDWU/GqNGm9ba58NPhYv/WaP2UwUCuINGm zJbKT8bygJhvJk4j6VZK4eB6ZVdAJz4n3VW9SAHpgk1NG+YBDeHxwFsQO2d+OJJl cCKn9CGrSsIaIBatgzP/BBorwYo6l3HnFW0yO7drUV82v/wg8bnGBK80CfLgCf5x jcmF/IQTH6nN0AIlujH9q6CkQ7ogf3kGxKJarX73fkg408t1b5ai+HsvNJ4lKLbs 9IltfGHpfsqLzCRNyASIVZxaUq2Ez26DYvMM33EQJbcBj5/hfCwY/krg6AfVTja3 sQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2595489605763046054320882741942689225 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-09-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-29 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '081 596 009' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'L4 2-12 Macquarie St' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '2124' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New South Wales' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Parramatta' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AMP Bank Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'broker.ampbanking.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24281058469415004629583723846771914566135737785134795420003369001072334223261372718324741141205117859060145113724581802602691682066190889647085891187137878345139195405662003188136158425215703234787532693263085501205510688709008204771437770369458359149432125706587567783253112835426237314794502349584089614428566857463770869229378424970922525239609319199288089428416250127252349036655941968979794565559087805559197198327538125085251321858766116580160206296329452855081959222881370346010543513810082703827928775692892837184068938735919475766516339257462339006167907279081573079459944084331065889967050002852128553875377 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4593d7ff4ad708b242429c528a1e52e5049cd7a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'broker.ampbanking.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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