demo.iam.ere.bnpparibas
- BNP PARIBAS SA -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 0a:ce:06:ad:e5:a8:8a:77:e7:ce:2e:74:9f:19:3c:94 was issued on by Entrust, Inc..
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
BNP PARIBAS SA
Organization:
BNP PARIBAS SA
Locality:
Montreuil
Country: FR
Country: FR
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0a:ce:06:ad:e5:a8:8a:77:e7:ce:2e:74:9f:19:3c:94Serial Number (int): 14362028582712890783492098581419605140
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 26:7e:38:af:00:3a:b5:7a:06:a6:42:3c:1d:b1:82:96:cd:18:c5:14
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 9c:3c:05:ae:6f:de:61:ad:2d:db:39:b2:2a:61:8f:63:cf:61:55:35
Fingerprint (sha256): 9a:d3:ce:06:1b:0d:2f:1b:4b:ec:ab:70:53:a5:29:10:1e:9b:b9:47:b0:14:8b:43:8c:24:a7:6c:91:7b:9a:2a
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate demo.iam.ere.bnpparibas
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demo.iam.ere.bnpparibas
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demo.iam.ere.bnpparibas
www.demo.iam.ere.bnpparibas
demo-api.epargne-retraite-entreprises.bnpparibas.com
demo-directeo.epargne-retraite-entreprises.bnpparibas.com
demo-personeo.epargne-retraite-entreprises.bnpparibas.com
ssotests-directeo.epargne-retraite-entreprises.bnpparibas.com
www.demo-api.epargne-retraite-entreprises.bnpparibas.com
www.demo-directeo.epargne-retraite-entreprises.bnpparibas.com
www.demo-personeo.epargne-retraite-entreprises.bnpparibas.com
www.ssotests-directeo.epargne-retraite-entreprises.bnpparibas.com
www.demo.iam.ere.bnpparibas
demo-api.epargne-retraite-entreprises.bnpparibas.com
demo-directeo.epargne-retraite-entreprises.bnpparibas.com
demo-personeo.epargne-retraite-entreprises.bnpparibas.com
ssotests-directeo.epargne-retraite-entreprises.bnpparibas.com
www.demo-api.epargne-retraite-entreprises.bnpparibas.com
www.demo-directeo.epargne-retraite-entreprises.bnpparibas.com
www.demo-personeo.epargne-retraite-entreprises.bnpparibas.com
www.ssotests-directeo.epargne-retraite-entreprises.bnpparibas.com
Other certificates including the domain name ere.bnpparibas
(limited to 100 certificates)
entreprises.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
monepargne.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
pewee.ere.bnpparibas
bnp08s.bnpparibas.com
demo.iam.ere.bnpparibas
monepargne.ere.bnpparibas
monepargne.ere.bnpparibas
pewee.ere.bnpparibas
epargne-retraite-entreprises.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
preview-monepargne-mee.ere.bnpparibas
login-entreprises.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
iam.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
pewee.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
epargne-retraite-entreprises.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
oak-extranet-op.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
monepargne.ere.bnpparibas
oak-extranet-op.ere.bnpparibas
bnp08s.bnpparibas.com
demo.iam.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
pewee.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
login-entreprises.ere.bnpparibas
bnp08s.bnpparibas.com
transferflow.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
monepargne.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
pewee.ere.bnpparibas
bnp08s.bnpparibas.com
demo.iam.ere.bnpparibas
monepargne.ere.bnpparibas
monepargne.ere.bnpparibas
pewee.ere.bnpparibas
epargne-retraite-entreprises.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
preview-monepargne-mee.ere.bnpparibas
login-entreprises.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
iam.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
pewee.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
epargne-retraite-entreprises.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
oak-extranet-op.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
monepargne.ere.bnpparibas
oak-extranet-op.ere.bnpparibas
bnp08s.bnpparibas.com
demo.iam.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
pewee.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
login-entreprises.ere.bnpparibas
bnp08s.bnpparibas.com
transferflow.ere.bnpparibas
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
bnp08s.bnpparibas.com
Certificate
The complete raw certificate details for demo.iam.ere.bnpparibas in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIGjCCBwKgAwIBAgIQCs4GreWoinfnzi50nxk8lDANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDA0MjMxNzAyMjhaFw0yNTA0MjMxNzAyMjdaMFwxCzAJBgNVBAYTAkZSMRIwEAYD VQQHEwlNb250cmV1aWwxFzAVBgNVBAoTDkJOUCBQQVJJQkFTIFNBMSAwHgYDVQQD ExdkZW1vLmlhbS5lcmUuYm5wcGFyaWJhczCCAiIwDQYJKoZIhvcNAQEBBQADggIP ADCCAgoCggIBALiSQzTAiO8AnjfpCP1LeUOl1L9cQLr7/5ta1NJF4e1pPIjL9Rei e/2hPMaLVBnnwfHnvlwgCVqOsv7AQEm68QNfNcVlvoHV2M1Gpmt/ZBbqmFmJTrMu mYqfEfF8oTPtLGsPR7dYgYQzQ/bFe8A81phi5TDDEAy+0VYDEJSmJ+3XGAuR6QfV ZqmK6mui8CH8EKBaNxA8Q1BhNd8ju9howhNbFvGLCexTCZt92zRiHG4aOU0GtBT/ wgbiDROdioqb16z8NTICJV41bTq6Pcx/QOJ4Jq+YtkwbK30c1+Ad9KBk2rwdx0U1 vDooxCSBZdCzae5RulNW6d92rptP3FZl+4VFAB+ykd2xTXEdTi3a8QzsgKDN541L GO4yy46RG60w9LqUzdSM5OiUZPt4FXRwKrgEL8kDzcnV5iETsSY5drBSFheE7vkc bFNjNC6J3LWPwW1PXkCRMYnE7EIO8jcs+fNJfgBDrJSOgHrgptxvyAmw5Kb1dr9+ 5bS+E5abE80BwuTXsXU3HOt/XBOUaq+IJKPgEUuQs5kNvsGPw+V8dYuZIIEVGRJz NPAWMYwAP5yR2GScAJd9B/nHmXfFixjMRu56QDlJQ98AvX5GHOKVPFJ1pXzG5spV woHwqbTZP+B10Cqg6Y48iyGc1zi38xr82ocUaPHRMIjrZ2quN7K58hKzAgMBAAGj ggN3MIIDczAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQmfjivADq1egamQjwdsYKW zRjFFDAfBgNVHSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzBoBggrBgEFBQcB AQRcMFowIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsG AQUFBzAChidodHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIw MwYDVR0fBCwwKjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFr LmNybDCCAikGA1UdEQSCAiAwggIcghdkZW1vLmlhbS5lcmUuYm5wcGFyaWJhc4Ib d3d3LmRlbW8uaWFtLmVyZS5ibnBwYXJpYmFzgjRkZW1vLWFwaS5lcGFyZ25lLXJl dHJhaXRlLWVudHJlcHJpc2VzLmJucHBhcmliYXMuY29tgjlkZW1vLWRpcmVjdGVv LmVwYXJnbmUtcmV0cmFpdGUtZW50cmVwcmlzZXMuYm5wcGFyaWJhcy5jb22COWRl bW8tcGVyc29uZW8uZXBhcmduZS1yZXRyYWl0ZS1lbnRyZXByaXNlcy5ibnBwYXJp YmFzLmNvbYI9c3NvdGVzdHMtZGlyZWN0ZW8uZXBhcmduZS1yZXRyYWl0ZS1lbnRy ZXByaXNlcy5ibnBwYXJpYmFzLmNvbYI4d3d3LmRlbW8tYXBpLmVwYXJnbmUtcmV0 cmFpdGUtZW50cmVwcmlzZXMuYm5wcGFyaWJhcy5jb22CPXd3dy5kZW1vLWRpcmVj dGVvLmVwYXJnbmUtcmV0cmFpdGUtZW50cmVwcmlzZXMuYm5wcGFyaWJhcy5jb22C PXd3dy5kZW1vLXBlcnNvbmVvLmVwYXJnbmUtcmV0cmFpdGUtZW50cmVwcmlzZXMu Ym5wcGFyaWJhcy5jb22CQXd3dy5zc290ZXN0cy1kaXJlY3Rlby5lcGFyZ25lLXJl dHJhaXRlLWVudHJlcHJpc2VzLmJucHBhcmliYXMuY29tMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwEwYDVR0gBAwwCjAIBgZn gQwBAgIwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAJWk ACPl9ILiIbImbl0k+nyjHIyV04xu9WyLTh9Rw+1lXEnexz5ImzG4PQwv+wHaEfa6 GdKMOHkiObfnZCv4cflra6nterOsdc5A2vs0lpErYvkiRItaMCc8dwCkk2VpTm9D PXXtMgrpem6s/xRsrjCPkI3dWP5rowpLRHJWNGZNf+MIqnL8XIGssGeO3xuf8pzP hKRsgZpQkrvkX3ad+gv6zo+/9c3jb820G2UZIA8lPysoXHPENagDBdRzwZDdssC/ FhMfMtG+eTI03EHEK2J8XQO1JeDdiiT2mQBtA4VYW51vH8dgVBN0HPzA99LakNbg 05hDRyTrwd+9NA5iRYw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuJJDNMCI7wCeN+kI/Ut5 Q6XUv1xAuvv/m1rU0kXh7Wk8iMv1F6J7/aE8xotUGefB8ee+XCAJWo6y/sBASbrx A181xWW+gdXYzUama39kFuqYWYlOsy6Zip8R8XyhM+0saw9Ht1iBhDND9sV7wDzW mGLlMMMQDL7RVgMQlKYn7dcYC5HpB9VmqYrqa6LwIfwQoFo3EDxDUGE13yO72GjC E1sW8YsJ7FMJm33bNGIcbho5TQa0FP/CBuINE52KipvXrPw1MgIlXjVtOro9zH9A 4ngmr5i2TBsrfRzX4B30oGTavB3HRTW8OijEJIFl0LNp7lG6U1bp33aum0/cVmX7 hUUAH7KR3bFNcR1OLdrxDOyAoM3njUsY7jLLjpEbrTD0upTN1Izk6JRk+3gVdHAq uAQvyQPNydXmIROxJjl2sFIWF4Tu+RxsU2M0LonctY/BbU9eQJExicTsQg7yNyz5 80l+AEOslI6AeuCm3G/ICbDkpvV2v37ltL4TlpsTzQHC5NexdTcc639cE5Rqr4gk o+ARS5CzmQ2+wY/D5Xx1i5kggRUZEnM08BYxjAA/nJHYZJwAl30H+ceZd8WLGMxG 7npAOUlD3wC9fkYc4pU8UnWlfMbmylXCgfCptNk/4HXQKqDpjjyLIZzXOLfzGvza hxRo8dEwiOtnaq43srnyErMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14362028582712890783492098581419605140 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-23 17:02:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-23 17:02:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montreuil' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BNP PARIBAS SA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo.iam.ere.bnpparibas' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 752985364129441748003217442361238897948300923216334402531540471350879969313527018553745520770636568212884740715392007120773587061521746647239224173887863512271488514756605070478829756390926750667509662896041480803238901822267575080317847636650858155858800154198675848431442229412456227122524260073547925255795139844665589159347527794426000421379240522411607895499827211973240802553123273313768269825410569731321829493224423007762514011239793396081798429018803834132702529244762096947719077978851200204448387643931381727009074610000924106795234230019899238174378383971519943508143996385896639603632726686370091130221770671248377519840730950629863515655169773164038129960555261486212860920910767892049850597090981561933616918443559107990700389446957379101998796324475875219728632646723823898287857005098572998951098786226853050484908754611153511418122048217471093335077577795489234730199613256595316908231504536070725005033213960714652093567895375295317214609473540327013595938054923614643804723442138930428116505477987994001249004370286527814202876216880755963048906795326785017505434192646254548663984292827269009853910075576835011772525700347578787486597965023806465019715415203468091951054792673661691365974703360000585571109049011 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 267e38af003ab57a06a6423c1db18296cd18c514 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (544 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.iam.ere.bnpparibas' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demo.iam.ere.bnpparibas' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo-api.epargne-retraite-entreprises.bnpparibas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo-directeo.epargne-retraite-entreprises.bnpparibas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo-personeo.epargne-retraite-entreprises.bnpparibas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ssotests-directeo.epargne-retraite-entreprises.bnpparibas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demo-api.epargne-retraite-entreprises.bnpparibas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demo-directeo.epargne-retraite-entreprises.bnpparibas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demo-personeo.epargne-retraite-entreprises.bnpparibas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ssotests-directeo.epargne-retraite-entreprises.bnpparibas.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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