candmz01.brenntag.ca
- Brenntag Canada Inc. -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 50:d5:17:88 was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Brenntag Canada Inc.
Organization:
Brenntag Canada Inc.
Organization unit: IT Department
Organization unit: IT Department
State / Province:
Ontario
Locality: Toronto
Country: CA
Locality: Toronto
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 50:d5:17:88Serial Number (int): 1356142472
Serial Number lenght: 31 bits, 4 octets
SubjectKeyId: 1b:4d:76:67:70:e4:52:fb:e1:04:c6:aa:59:4b:95:18:32:8b:86:07
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 04:33:6a:8a:33:8a:7b:04:db:5a:64:d0:11:8c:7e:97:78:50:1a:80
Fingerprint (sha256): a2:56:a9:88:74:2d:f6:53:2d:c6:46:50:52:99:0c:c0:03:38:34:44:cb:22:7f:52:93:50:8f:39:a3:69:db:37
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate candmz01.brenntag.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for candmz01.brenntag.ca
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
candmz01.brenntag.ca
Other certificates including the domain name brenntag.ca
(limited to 100 certificates)
eagle.brenntag.ca
candmz01.brenntag.ca
eagle2.brenntag.ca
candmz01.brenntag.ca
eagle.brenntag.ca
candmz02.brenntag.ca
somosmanada.turnosweb.app
www.shvaana.nl
eagle2.brenntag.ca
eagle2.brenntag.ca
candmz01.brenntag.ca
eagle.brenntag.ca
95-biztalk.brenntag.ca
canpgw.brenntag.ca
www.book360.us
candmz01.brenntag.ca
www.angularmaterial.dev
grapikitstudio.com
candmz04.brenntag.ca
candmz04.brenntag.ca
candmz01.brenntag.ca
candmz02.brenntag.ca
mail.brenntag.ca
candmz01.brenntag.ca
vendor.elitindirim.com
candmz01.brenntag.ca
somosmanada.turnosweb.app
onboarding.brenntag.ca
mail.brenntag.ca
candmz04.brenntag.ca
candmz01.brenntag.ca
candmz04.brenntag.ca
webmail.brenntag.ca
candmz04.brenntag.ca
candmz01.brenntag.ca
eagle2.brenntag.ca
candmz01.brenntag.ca
eagle.brenntag.ca
candmz02.brenntag.ca
somosmanada.turnosweb.app
www.shvaana.nl
eagle2.brenntag.ca
eagle2.brenntag.ca
candmz01.brenntag.ca
eagle.brenntag.ca
95-biztalk.brenntag.ca
canpgw.brenntag.ca
www.book360.us
candmz01.brenntag.ca
www.angularmaterial.dev
grapikitstudio.com
candmz04.brenntag.ca
candmz04.brenntag.ca
candmz01.brenntag.ca
candmz02.brenntag.ca
mail.brenntag.ca
candmz01.brenntag.ca
vendor.elitindirim.com
candmz01.brenntag.ca
somosmanada.turnosweb.app
onboarding.brenntag.ca
mail.brenntag.ca
candmz04.brenntag.ca
candmz01.brenntag.ca
candmz04.brenntag.ca
webmail.brenntag.ca
candmz04.brenntag.ca
Certificate
The complete raw certificate details for candmz01.brenntag.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGQTCCBSmgAwIBAgIEUNUXiDANBgkqhkiG9w0BAQsFADCBujELMAkGA1UEBhMC VVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50 cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDEyIEVudHJ1c3Qs IEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwGA1UEAxMlRW50cnVz dCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0xNTA4MjAxNzQ5NTVa Fw0xNzA4MTUwOTU3MDRaMIGHMQswCQYDVQQGEwJDQTEQMA4GA1UECBMHT250YXJp bzEQMA4GA1UEBxMHVG9yb250bzEdMBsGA1UEChMUQnJlbm50YWcgQ2FuYWRhIElu Yy4xFjAUBgNVBAsTDUlUIERlcGFydG1lbnQxHTAbBgNVBAMTFGNhbmRtejAxLmJy ZW5udGFnLmNhMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoncs5e79 AaDFGgjUQHDm3LhCx6MJqQT9VDlWInQz8hRZwv1qs1IJ1C9Qn2xmKcirgk4MzHld Occ99K2XiQ7YG62sSJgb/mHF6CrhSpvMslWDkJaY8d1qMIzLKmDatmG7hU7z2iqr nIOwWFiGlvK2XkSmRp/EEZuxbSPOGZCxzw68rtEjKzLp4jlJcRVNtfgReaIfoQzk VyJ/buJN1lAvVEUXAQanHw8Il/YM/EXFqxRdA78F+JOKkEmDqTcbMGRYloYgRpOC XAg5c7q8ynf2VFFHnlpdgv4YpQWm0PXa94/L2i2+hjcc76gBqyzUfNJj2LAJXuK9 O3acr4o0vOsIPC4O0I50GMgnVTZvoi0rF/Dd5JAW6T+oX9KhEJHi2FDdfYOyKTGi TeF5sabwv5Q4pBAED3SQDcPU1TDmLtzo/5gj2us4AfgirYMdq+ob3BJzLWggWnY3 pIHUkI/uBRoj5gmuORpK1WpC3KHzHy1BXTpWQeFRtSUCOEV3Obx7/WQZZ+k7FNwN iTSACqnaD0ghXJPYq9wTqcaZOYiZdMg61PQwL1Fa5jjAfUKK8bZPWC8C674IIRNN Kw0kCccV4tbkFHyo8Dvv+B/gp7I5QcHZSH7rpBXXqFBV0SN0Cbzt7U2lo4UKeLm5 p9Qv2lpoxPvStSnjJWN2BONLjrGzpynkUwkCAwEAAaOCAX4wggF6MAsGA1UdDwQE AwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAzBgNVHR8ELDAqMCigJqAkhiJodHRw Oi8vY3JsLmVudHJ1c3QubmV0L2xldmVsMWsuY3JsMEsGA1UdIAREMEIwNgYKYIZI AYb6bAoBBTAoMCYGCCsGAQUFBwIBFhpodHRwOi8vd3d3LmVudHJ1c3QubmV0L3Jw YTAIBgZngQwBAgIwaAYIKwYBBQUHAQEEXDBaMCMGCCsGAQUFBzABhhdodHRwOi8v b2NzcC5lbnRydXN0Lm5ldDAzBggrBgEFBQcwAoYnaHR0cDovL2FpYS5lbnRydXN0 Lm5ldC9sMWstY2hhaW4yNTYuY2VyMB8GA1UdEQQYMBaCFGNhbmRtejAxLmJyZW5u dGFnLmNhMB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU981/p2DGCky/MB0GA1UdDgQW BBQbTXZncORS++EExqpZS5UYMouGBzAJBgNVHRMEAjAAMA0GCSqGSIb3DQEBCwUA A4IBAQAwb+wiR3Sdx0qvLR94zT3zNUnFDKT0GQVJH5fOVIQLcKgWWDJ9FTwSwgcH 4OFQn78mFtwSn1C58B0WdTAorDSh2Hu5VVxS6ahNwLDTxDDrvZWlr+rU0aWHNihk NOT+BNhb6GXVTeefrAYHg9qJicJsPPlZkDX+5+k4Gg2SSpBHN8uu+8E5QndDFeod G4wOOW53oGcMLBLefiwBAcU79HnUH63lqZop4Cc6ljFASACM3Q9ZOepq6CvM6Yp9 u9exFn9HWVaCYm95do+ck1HUYRz0iG5vtyV4P9AxAw0WViYnY3GcLQpyQc7Y77xh /aqfP0oJLEOeMFK/iA9kGcCUqrGf -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoncs5e79AaDFGgjUQHDm 3LhCx6MJqQT9VDlWInQz8hRZwv1qs1IJ1C9Qn2xmKcirgk4MzHldOcc99K2XiQ7Y G62sSJgb/mHF6CrhSpvMslWDkJaY8d1qMIzLKmDatmG7hU7z2iqrnIOwWFiGlvK2 XkSmRp/EEZuxbSPOGZCxzw68rtEjKzLp4jlJcRVNtfgReaIfoQzkVyJ/buJN1lAv VEUXAQanHw8Il/YM/EXFqxRdA78F+JOKkEmDqTcbMGRYloYgRpOCXAg5c7q8ynf2 VFFHnlpdgv4YpQWm0PXa94/L2i2+hjcc76gBqyzUfNJj2LAJXuK9O3acr4o0vOsI PC4O0I50GMgnVTZvoi0rF/Dd5JAW6T+oX9KhEJHi2FDdfYOyKTGiTeF5sabwv5Q4 pBAED3SQDcPU1TDmLtzo/5gj2us4AfgirYMdq+ob3BJzLWggWnY3pIHUkI/uBRoj 5gmuORpK1WpC3KHzHy1BXTpWQeFRtSUCOEV3Obx7/WQZZ+k7FNwNiTSACqnaD0gh XJPYq9wTqcaZOYiZdMg61PQwL1Fa5jjAfUKK8bZPWC8C674IIRNNKw0kCccV4tbk FHyo8Dvv+B/gp7I5QcHZSH7rpBXXqFBV0SN0Cbzt7U2lo4UKeLm5p9Qv2lpoxPvS tSnjJWN2BONLjrGzpynkUwkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1356142472 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-08-20 17:49:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-15 09:57:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Toronto' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Brenntag Canada Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT Department' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'candmz01.brenntag.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 662801530997309126611197422443710990334369384137455559312169018185660815607577529942838447236376578056911386675644154830475829852862112452512316167601793250650089020448213670839757713606164930332029721854333776797794446877520963379083627845703545361670114463318116052994891304489222828179069005052517725801790936266978221087702079660273638829643871650757249583502287383426826965298263575865896519623955067035460614623881629083917172709782729264661662298530775740437257675480227294159905990818488782600640546397123150590053078332266246198337797132650259163403063246955293231294235570796187554145157517463369685662919151939009373600495563764158539521831584412312300657157825540751814441697018921499052367614054479225231337944581474733827842590298454768757677421411012575676972986928725307803692711119807361210379760427082069526516416460091735380823096961287688622632776716854207781446423909288420318607401066726807785791473391309153527290932768003049285324719878389373865846446288913059520871540539039990074410447436390941170569739525269981577335703550844152794993219046281316212539119315748228725412194272154310628961699148765678608632789930295118777405844030679616363319900635297106648119545180912674107158421288992998871431676973833 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'candmz01.brenntag.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1b4d766770e452fbe104c6aa594b9518328b8607 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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