alcon.com
- Alcon Vision, LLC -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 03:97:ab:b9:4f:29:6f:41:f0:20:e0:1e:42:eb:dc:1e was issued on by DigiCert Inc.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Alcon Vision, LLC
Organization:
Alcon Vision, LLC
State / Province:
Texas
Locality: Fort Worth
Country: US
Locality: Fort Worth
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:97:ab:b9:4f:29:6f:41:f0:20:e0:1e:42:eb:dc:1eSerial Number (int): 4775203786745203298675975648248060958
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 74:65:0b:4f:03:eb:e3:60:6d:99:dd:8e:ca:0c:ae:79:08:c3:44:ca
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 08:74:60:31:60:f6:73:4e:7d:8c:ec:6d:d0:4f:81:79:f8:1d:dd:1b
Fingerprint (sha256): 9b:f8:1d:a2:76:58:2b:9a:af:c0:11:6b:92:20:3d:7c:58:f2:20:0a:f5:fa:16:db:19:de:3a:d3:bf:69:b6:b0
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate alcon.com
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for alcon.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alcon.net
alcon.com
jpsh-expwy-e02.alcon.com
jpsh-expwy-e01.alcon.com
jpsh-expwy-cluster.alcon.com
jpsh-expwy-e03.alcon.com
jpsh-expwy-e04.alcon.com
jpsh-expwy-e01.alcon.net
jpsh-expwy-e02.alcon.net
jpsh-expwy-e03.alcon.net
jpsh-expwy-e04.alcon.net
alcon.com
jpsh-expwy-e02.alcon.com
jpsh-expwy-e01.alcon.com
jpsh-expwy-cluster.alcon.com
jpsh-expwy-e03.alcon.com
jpsh-expwy-e04.alcon.com
jpsh-expwy-e01.alcon.net
jpsh-expwy-e02.alcon.net
jpsh-expwy-e03.alcon.net
jpsh-expwy-e04.alcon.net
Other certificates including the domain name alcon.com
(limited to 100 certificates)
vpnedc.alcon.com
www.genoptix.com
sni.cloudflaressl.com
incapsula.com
sni.cloudflaressl.com
sni.cloudflaressl.com
view.email.alcon.com
sni.cloudflaressl.com
sni.cloudflaressl.com
incapsula.com
sni.cloudflaressl.com
origin.virtualconsultant.alcon.com
sni.cloudflaressl.com
cnf.alcon.com
incapsula.com
www.genoptix.com
www.lensrebates.alcon.com
akamai-san44.exacttarget.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
alc-defa-ipt-cuc01-ms.alcon.net
incapsula.com
sni.cloudflaressl.com
incapsula.com
novartis.com
incapsula.com
alcon.com
eroomval.alcon.com
virtual.alcon.com
scontent.alcon.com
sni.cloudflaressl.com
www.genoptix.com
sni.cloudflaressl.com
www.genoptix.com
www.get.cibavision.com
ssl384893.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
incapsula.com
ssl384893.cloudflaressl.com
www.genoptix.com
sni.cloudflaressl.com
alc-usfw-ipt-pub-ms.alcon.net
pontodevista.alcon.com
workspace.alcon.com
incapsula.com
visioncare.alcon.com
www.visioncare.alcon.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl384891.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
alc-usfw-ipt-cuc01-ms.alcon.net
www.genoptix.com
sni.cloudflaressl.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
www.genoptix.com
sni.cloudflaressl.com
incapsula.com
investor.alcon.com
sni.cloudflaressl.com
sni.cloudflaressl.com
incapsula.com
incapsula.com
sni.cloudflaressl.com
incapsula.com
sni.cloudflaressl.com
sslaka.alcon.com
ssl384892.cloudflaressl.com
incapsula.com
incapsula.com
scontent.alcon.com
incapsula.com
sni.cloudflaressl.com
ssl384892.cloudflaressl.com
incapsula.com
investor.alcon.com
sni.cloudflaressl.com
Workspace.Alcon.Com
incapsula.com
sni.cloudflaressl.com
incapsula.com
sni.cloudflaressl.com
sni.cloudflaressl.com
origin.visioncare.alcon.com
incapsula.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl384891.cloudflaressl.com
www.genoptix.com
sni.cloudflaressl.com
www.genoptix.com
sni.cloudflaressl.com
incapsula.com
sni.cloudflaressl.com
sni.cloudflaressl.com
view.email.alcon.com
sni.cloudflaressl.com
sni.cloudflaressl.com
incapsula.com
sni.cloudflaressl.com
origin.virtualconsultant.alcon.com
sni.cloudflaressl.com
cnf.alcon.com
incapsula.com
www.genoptix.com
www.lensrebates.alcon.com
akamai-san44.exacttarget.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
alc-defa-ipt-cuc01-ms.alcon.net
incapsula.com
sni.cloudflaressl.com
incapsula.com
novartis.com
incapsula.com
alcon.com
eroomval.alcon.com
virtual.alcon.com
scontent.alcon.com
sni.cloudflaressl.com
www.genoptix.com
sni.cloudflaressl.com
www.genoptix.com
www.get.cibavision.com
ssl384893.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
incapsula.com
ssl384893.cloudflaressl.com
www.genoptix.com
sni.cloudflaressl.com
alc-usfw-ipt-pub-ms.alcon.net
pontodevista.alcon.com
workspace.alcon.com
incapsula.com
visioncare.alcon.com
www.visioncare.alcon.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl384891.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
alc-usfw-ipt-cuc01-ms.alcon.net
www.genoptix.com
sni.cloudflaressl.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
incapsula.com
www.genoptix.com
sni.cloudflaressl.com
incapsula.com
investor.alcon.com
sni.cloudflaressl.com
sni.cloudflaressl.com
incapsula.com
incapsula.com
sni.cloudflaressl.com
incapsula.com
sni.cloudflaressl.com
sslaka.alcon.com
ssl384892.cloudflaressl.com
incapsula.com
incapsula.com
scontent.alcon.com
incapsula.com
sni.cloudflaressl.com
ssl384892.cloudflaressl.com
incapsula.com
investor.alcon.com
sni.cloudflaressl.com
Workspace.Alcon.Com
incapsula.com
sni.cloudflaressl.com
incapsula.com
sni.cloudflaressl.com
sni.cloudflaressl.com
origin.visioncare.alcon.com
incapsula.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl384891.cloudflaressl.com
www.genoptix.com
sni.cloudflaressl.com
Certificate
The complete raw certificate details for alcon.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHHzCCBgegAwIBAgIQA5eruU8pb0HwIOAeQuvcHjANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMjAwMjI2MDAwMDAwWhcN MjIwMzAxMTIwMDAwWjBiMQswCQYDVQQGEwJVUzEOMAwGA1UECBMFVGV4YXMxEzAR BgNVBAcTCkZvcnQgV29ydGgxGjAYBgNVBAoTEUFsY29uIFZpc2lvbiwgTExDMRIw EAYDVQQDEwlhbGNvbi5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQC/DJ84Jui/JOOS+GqNc00Y9/2aOGfUasB+FWx0VaCEJW9WfHVgb6jEN8IhL3IG /V3AaWBvAP9N8ldujAW2FOXprPc+dgtLS9xcW/Q7oTWkWxNGlH/aF3mrAgkjiLfk PlxQlSSJcsObkEBOxBQ2H/uvsV6LbH8tG4FvYz04PWs1EG35ryxUpHMsoV6B7I41 MsqD0cN7khHsyBKLZq2OoLhcxIKrXuS390jxs7Jbx8X8EICaAyNVlwJTlim09jpZ 8o6LmksOo63zNwIJO3rH0S1KImiWHdFFV+XN0xx5OLFGpVMPxbBXeruGvX1/fmCc /OJ537BPLfR+mXEGZlbcSXow0bBkJkKbAsxjYCxuDrqqQGW0V1w0Qa09L3CxTMSz 7ShWX1TIYbP0984RuQCz9OruNxPP5zOqFsMsxDASBGRiKruWUgiAlmqHguTotK9X wbuh913QWYAJi4X/u8ezc00Z2cqtDkyJGCijAXpwFYuxPT3OquUBtpLWDmOh+PEV XavrwT0A4MMrQHd+6a5IhoAzPTAMUYOSy9BMvMthYiratrwa/KbiYhPQb0+6R3Zv undGmPBtJXgkP3cfwfsAmXL/0rCzhnIlOG4b6DQA+rQ7DWr4gFcZ+cnZbWHIZzUF 1WJ5oQBK8H4NtCZFeIonGZKl5ubGAsJst/thTRZ6izVeGwIDAQABo4IC5DCCAuAw HwYDVR0jBBgwFoAUD4BhHIIxYdUvKOeNRji0LOHG2eIwHQYDVR0OBBYEFHRlC08D 6+NgbZndjsoMrnkIw0TKMIIBEQYDVR0RBIIBCDCCAQSCCWFsY29uLm5ldIIJYWxj b24uY29tghhqcHNoLWV4cHd5LWUwMi5hbGNvbi5jb22CGGpwc2gtZXhwd3ktZTAx LmFsY29uLmNvbYIcanBzaC1leHB3eS1jbHVzdGVyLmFsY29uLmNvbYIYanBzaC1l eHB3eS1lMDMuYWxjb24uY29tghhqcHNoLWV4cHd5LWUwNC5hbGNvbi5jb22CGGpw c2gtZXhwd3ktZTAxLmFsY29uLm5ldIIYanBzaC1leHB3eS1lMDIuYWxjb24ubmV0 ghhqcHNoLWV4cHd5LWUwMy5hbGNvbi5uZXSCGGpwc2gtZXhwd3ktZTA0LmFsY29u Lm5ldDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9z c2NhLXNoYTItZzYuY3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20v c3NjYS1zaGEyLWc2LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsG AQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB8 BggrBgEFBQcBAQRwMG4wJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0 LmNvbTBGBggrBgEFBQcwAoY6aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMlNlY3VyZVNlcnZlckNBLmNydDAMBgNVHRMBAf8EAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBYJ4/nMkKS224/G+DO sP4bDP9L4GJvHl72uALKS/TzJY2y59yl+bERDhwP4be6EzEV7/kIOvOMfVfUZMr+ 3ijrne2F9lt6LbObMu3KyBuvLacItOzYeWFQCAEzWw0P4de2fJqKvAJURgRUq5+u auPHajzPuJpKUorPm+3NPXrCByrkRKfqHM8LEYItdD2F1VoBm5WfNY4DuuCYJAbB NQYoDQW5DC9WVS2qX0Aq6S5y55hDyZBkvxqr1bjqDGe+AQq+WKxfB72I5Qs9a9Xa KZwjpyEAXZZvZiesBvIOxgLrsHUlZk1/8dL2FeBcdWiNmwKwcvlxPdpdj38LefLS Upb0 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvwyfOCbovyTjkvhqjXNN GPf9mjhn1GrAfhVsdFWghCVvVnx1YG+oxDfCIS9yBv1dwGlgbwD/TfJXbowFthTl 6az3PnYLS0vcXFv0O6E1pFsTRpR/2hd5qwIJI4i35D5cUJUkiXLDm5BATsQUNh/7 r7Fei2x/LRuBb2M9OD1rNRBt+a8sVKRzLKFegeyONTLKg9HDe5IR7MgSi2atjqC4 XMSCq17kt/dI8bOyW8fF/BCAmgMjVZcCU5YptPY6WfKOi5pLDqOt8zcCCTt6x9Et SiJolh3RRVflzdMceTixRqVTD8WwV3q7hr19f35gnPzied+wTy30fplxBmZW3El6 MNGwZCZCmwLMY2Asbg66qkBltFdcNEGtPS9wsUzEs+0oVl9UyGGz9PfOEbkAs/Tq 7jcTz+czqhbDLMQwEgRkYiq7llIIgJZqh4Lk6LSvV8G7ofdd0FmACYuF/7vHs3NN GdnKrQ5MiRgoowF6cBWLsT09zqrlAbaS1g5jofjxFV2r68E9AODDK0B3fumuSIaA Mz0wDFGDksvQTLzLYWIq2ra8Gvym4mIT0G9Pukd2b7p3RpjwbSV4JD93H8H7AJly /9Kws4ZyJThuG+g0APq0Ow1q+IBXGfnJ2W1hyGc1BdVieaEASvB+DbQmRXiKJxmS pebmxgLCbLf7YU0Weos1XhsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4775203786745203298675975648248060958 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-01 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Texas' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Fort Worth' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Alcon Vision, LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alcon.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 779413161779869539849942641388261656028743265164397428022677058062481164710656475187938035869670925081020196006539927252190009244963192278883383538083611141264358108599100173355683942992492640370862945505636218817189335316979943605706704586180062270578113874336807882480302518980304000553592340742455037642100734230757151961997616132448059999644306043888413214141369475877790935113176342395237738148294497535333217252048654348598552163119162396202882849907540477196683105990481929872592441225931567340133907839917731110574155562184911455636628461505474463002560065002371174094988357524987175807211008232901341646232293391022908423263697103772160113590321701024953574333605261045832181191264480591905207729576556171454510083618868610047550611047908637771385460605740960440238588042011781099413729590216805866333443936554104243748507294237182808140726514939569461977454595676238987311365375861411600361224155189456414540591611229811028285632040922238053256125720141821090917926913635910667585542045763007711499875505608935428901806111163126893749142941407525285138659815701817711716456843376581917804351668814788089808551574756720110746466598341668525584748528522885466539934082051461209688859310006769397345633976054089946499929955867 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 74650b4f03ebe3606d99dd8eca0cae7908c344ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (264 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alcon.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alcon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jpsh-expwy-e02.alcon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jpsh-expwy-e01.alcon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jpsh-expwy-cluster.alcon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jpsh-expwy-e03.alcon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jpsh-expwy-e04.alcon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jpsh-expwy-e01.alcon.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jpsh-expwy-e02.alcon.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jpsh-expwy-e03.alcon.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jpsh-expwy-e04.alcon.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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