azpphrpassport.dfid.gov.uk
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 08:f3:f0:3f:44:dc:c5:fc:a0:8b:ff:d8:fc:dc:9d:43 was issued on by DigiCert, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=azpphrpassport.dfid.gov.uk
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:f3:f0:3f:44:dc:c5:fc:a0:8b:ff:d8:fc:dc:9d:43Serial Number (int): 11900424893894284211030319185706917187
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 83:3e:c3:6b:d6:8f:95:79:a0:b7:88:0b:e8:b6:40:64:ce:1f:57:4e
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 98:8e:90:b9:20:fc:d2:7b:92:ec:8f:c6:0c:13:e9:ac:89:5f:fe:bb
Fingerprint (sha256): a2:c8:20:d2:18:3e:01:5d:bb:1d:8a:44:21:c0:21:09:56:e9:65:53:f0:05:4d:1a:01:e1:8f:ab:df:45:e3:cd
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate azpphrpassport.dfid.gov.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for azpphrpassport.dfid.gov.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
azpphrpassport.dfid.gov.uk
www.azpphrpassport.dfid.gov.uk
www.azpphrpassport.dfid.gov.uk
Other certificates including the domain name dfid.gov.uk
(limited to 100 certificates)
www.gov.uk
dfidexchange.dfid.gov.uk
intouch6.dfid.gov.uk
dfid.gov.uk
intouch3.dfid.gov.uk
devtracker.dfid.gov.uk
devtracker-int.dfid.gov.uk
www.gov.uk
skypeexternal.dfid.gov.uk
dfidexchange.dfid.gov.uk
projects.dfid.gov.uk
*.dfid.gov.uk
intouch.dfid.gov.uk
supplierportal.dfid.gov.uk
Skypeexternal.dfid.gov.uk
aipbeta.dfid.gov.uk
adfs.dfid.gov.uk
devtracker.dfid.gov.uk
HRPassport.dfid.gov.uk
www.dfid.gov.uk
devtracker.dfid.gov.uk
www.gov.uk
www.gov.uk
intouch.dfid.gov.uk
adfs3.dfid.gov.uk
*.vault.dfid.gov.uk
devtracker.dfid.gov.uk
intouch2.dfid.gov.uk
DFIDCmg.dfid.gov.uk
intouch5.dfid.gov.uk
projects.dfid.gov.uk
devtracker.dfid.gov.uk
intouch3.dfid.gov.uk
dfidexchange.dfid.gov.uk
intouch2.dfid.gov.uk
DFIDCmg.dfid.gov.uk
Devhrpassport.dfid.gov.uk
devtracker.dfid.gov.uk
devtracker.dfid.gov.uk
Devhrpassport.dfid.gov.uk
insight.dfid.gov.uk
www.gov.uk
*.dfid.gov.uk
www.gov.uk
*.dfid.gov.uk
supplierportal.dfid.gov.uk
devtracker.dfid.gov.uk
adfs3.dfid.gov.uk
devtracker.dfid.gov.uk
vault.dfid.gov.uk
intouch6.dfid.gov.uk
adfs3.dfid.gov.uk
insight.dfid.gov.uk
dfidexchange.dfid.gov.uk
www.dfid.gov.uk
Access.dfid.gov.uk
Index.dfid.gov.uk
DfidCmg.Dfid.gov.uk
devtracker-ci.dfid.gov.uk
dfid.gov.uk
supplierportal.dfid.gov.uk
www.gov.uk
www.gov.uk
devtracker.dfid.gov.uk
*.dfid.gov.uk
skypeexternal.dfid.gov.uk
azpphrpassport.dfid.gov.uk
supplierportal.dfid.gov.uk
adfs.dfid.gov.uk
devtracker.dfid.gov.uk
*.dfid.gov.uk
www.gov.uk
azpphrpassport.dfid.gov.uk
dfidexchange.dfid.gov.uk
supplierportal.dfid.gov.uk
www.gov.uk
intouch5.dfid.gov.uk
cscuk.dfid.gov.uk
www.gov.uk
adfstoken.dfid.gov.uk
dfidexchange.dfid.gov.uk
www.dfid.gov.uk
Devhrpassport.dfid.gov.uk
*.dfid.gov.uk
vault.dfid.gov.uk
access.dfid.gov.uk
dfidexchange.dfid.gov.uk
devtracker.dfid.gov.uk
supplierportal.dfid.gov.uk
dfidexchange.dfid.gov.uk
dfidexchange.dfid.gov.uk
access.dfid.gov.uk
devtracker.dfid.gov.uk
devtracker-int.dfid.gov.uk
www.gov.uk
Index.dfid.gov.uk
azpphrpassport.dfid.gov.uk
adfs.dfid.gov.uk
*.vault.dfid.gov.uk
devtracker-ci.dfid.gov.uk
dfidexchange.dfid.gov.uk
intouch6.dfid.gov.uk
dfid.gov.uk
intouch3.dfid.gov.uk
devtracker.dfid.gov.uk
devtracker-int.dfid.gov.uk
www.gov.uk
skypeexternal.dfid.gov.uk
dfidexchange.dfid.gov.uk
projects.dfid.gov.uk
*.dfid.gov.uk
intouch.dfid.gov.uk
supplierportal.dfid.gov.uk
Skypeexternal.dfid.gov.uk
aipbeta.dfid.gov.uk
adfs.dfid.gov.uk
devtracker.dfid.gov.uk
HRPassport.dfid.gov.uk
www.dfid.gov.uk
devtracker.dfid.gov.uk
www.gov.uk
www.gov.uk
intouch.dfid.gov.uk
adfs3.dfid.gov.uk
*.vault.dfid.gov.uk
devtracker.dfid.gov.uk
intouch2.dfid.gov.uk
DFIDCmg.dfid.gov.uk
intouch5.dfid.gov.uk
projects.dfid.gov.uk
devtracker.dfid.gov.uk
intouch3.dfid.gov.uk
dfidexchange.dfid.gov.uk
intouch2.dfid.gov.uk
DFIDCmg.dfid.gov.uk
Devhrpassport.dfid.gov.uk
devtracker.dfid.gov.uk
devtracker.dfid.gov.uk
Devhrpassport.dfid.gov.uk
insight.dfid.gov.uk
www.gov.uk
*.dfid.gov.uk
www.gov.uk
*.dfid.gov.uk
supplierportal.dfid.gov.uk
devtracker.dfid.gov.uk
adfs3.dfid.gov.uk
devtracker.dfid.gov.uk
vault.dfid.gov.uk
intouch6.dfid.gov.uk
adfs3.dfid.gov.uk
insight.dfid.gov.uk
dfidexchange.dfid.gov.uk
www.dfid.gov.uk
Access.dfid.gov.uk
Index.dfid.gov.uk
DfidCmg.Dfid.gov.uk
devtracker-ci.dfid.gov.uk
dfid.gov.uk
supplierportal.dfid.gov.uk
www.gov.uk
www.gov.uk
devtracker.dfid.gov.uk
*.dfid.gov.uk
skypeexternal.dfid.gov.uk
azpphrpassport.dfid.gov.uk
supplierportal.dfid.gov.uk
adfs.dfid.gov.uk
devtracker.dfid.gov.uk
*.dfid.gov.uk
www.gov.uk
azpphrpassport.dfid.gov.uk
dfidexchange.dfid.gov.uk
supplierportal.dfid.gov.uk
www.gov.uk
intouch5.dfid.gov.uk
cscuk.dfid.gov.uk
www.gov.uk
adfstoken.dfid.gov.uk
dfidexchange.dfid.gov.uk
www.dfid.gov.uk
Devhrpassport.dfid.gov.uk
*.dfid.gov.uk
vault.dfid.gov.uk
access.dfid.gov.uk
dfidexchange.dfid.gov.uk
devtracker.dfid.gov.uk
supplierportal.dfid.gov.uk
dfidexchange.dfid.gov.uk
dfidexchange.dfid.gov.uk
access.dfid.gov.uk
devtracker.dfid.gov.uk
devtracker-int.dfid.gov.uk
www.gov.uk
Index.dfid.gov.uk
azpphrpassport.dfid.gov.uk
adfs.dfid.gov.uk
*.vault.dfid.gov.uk
devtracker-ci.dfid.gov.uk
Certificate
The complete raw certificate details for azpphrpassport.dfid.gov.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHwDCCBaigAwIBAgIQCPPwP0Tcxfygi//Y/NydQzANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjIwNjI4MDAwMDAwWhcNMjMwNjA0MjM1OTU5WjAlMSMwIQYDVQQDExphenBwaHJw YXNzcG9ydC5kZmlkLmdvdi51azCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDrD+Pz81Pde5UwG8KbVNDv8C7K5W+yIECizeNnsrK38YUWO+dncEklbFuf uv56fxW357msu4TFyOV2HRDBtisjTcEB/yBdaBVf21Hw6hNgs6O8LCWNFGqkp8Qq ion/flOQ7mpYZN0DRX8qUMExr+fR9sYmDQmsDy9kC0CBgA13uBraigL3Wrgoptmm drkIp6rLp63ANh9LMkdIpWJsoFgHeDFswOh9r1dvATZctU5iltmwTkCJkZP5tAHG tKemAlovSbaVgYLkCWFGZke7QuKVsra67QMNgaO7n8Du3eCPIVXSM+JYalf00gbw Wvcle7muPKYWlFIFJM2vn630oXECAwEAAaOCA7MwggOvMB8GA1UdIwQYMBaAFKW0 1us2xOdrpt/EZAsBKiAEuGYjMB0GA1UdDgQWBBSDPsNr1o+VeaC3iAvotkBkzh9X TjBFBgNVHREEPjA8ghphenBwaHJwYXNzcG9ydC5kZmlkLmdvdi51a4Ied3d3LmF6 cHBocnBhc3Nwb3J0LmRmaWQuZ292LnVrMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCBlDBIoEagRIZCaHR0 cDovL2NybDMuZGlnaWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNI QTI1NjIwMjJDQTEuY3JsMEigRqBEhkJodHRwOi8vY3JsNC5kaWdpY2VydC5jb20v R2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNBMS5jcmwwPgYDVR0g BDcwNTAzBgZngQwBAgEwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2Vy dC5jb20vQ1BTMIGHBggrBgEFBQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0dHA6Ly9v Y3NwLmRpZ2ljZXJ0LmNvbTBRBggrBgEFBQcwAoZFaHR0cDovL2NhY2VydHMuZGln aWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEu Y3J0MAkGA1UdEwQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AOg+0No+ 9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABgaoCZpoAAAQDAEcwRQIgeYPD MmYtdmATz9PKpBDymPcj5mVW0ZvgPPK9GLTBFncCIQDK8edPB0CYG7AfZe8KhjGr NgcUArXDJczKMwe1DyTHXQB3ADXPGRu/sWxXvw+tTG1Cy7u2JyAmUeo/4SrvqAPD O9ZMAAABgaoCZs0AAAQDAEgwRgIhANKPWu0E8+sY6M1F7qtJm3EP/NodjYVyiQv9 h1gpQM7nAiEAyRJj2MUB1cqKqF7h4hTSj8IxOeK/ErOp3UxcAzxmeCIAdQC3Pvsk 35xNunXyOcW6WPRsXfxCz3qfNcSeHQmBJe20mQAAAYGqAmbRAAAEAwBGMEQCIEnU 8qcCgbG8ZvbOLo9KpTbqmAcyzcFBm6hvlunIvaniAiBDABYQqme7Ei6LN/HFGJwz JA7jbSLvI19A5Hgo8axmWzANBgkqhkiG9w0BAQsFAAOCAgEATtlNf1jfTXBwR6wI 6AMcI2wxOtecG0pqgG/ru8Tp8qvqP41DRGTWUQDBkvUS8DxFYisTUrTk7HaYGR2f SBzPbGXb6VHXwrnQXo5P9sduDbiHT1awXZ1RBor9wOtafH9twtqKdfxjIn2J7/zF g+dFQcfK+Ry3jYPYYzR9ik7PxKlaDdhyOCOuwIEObUiMe8hTrfoXVC4Hw0sa/Cx4 Ry8RViRk3j6xniACJHmx+BzsY+J4K31JfsAopGTYjo5SJSzFkt8Nx1GEf9iKeXM9 DsBLaBiMpyl/nMeTa+Ih0fnukEmRgwnrORwQ6D5ZIjE1HUm9U8QLR2Z4deGb7zx6 eoXaMbVvwQcIgXmcOlyh6jGOLozlcQXMsGEl/XB3Id5s9Iec60ICOaIWCfquU0ex 0mwD+qvevw5/5TRwilZ7QOcQMcBZ9aOPXZ0hXD4K4d0K4uzDFPEL4xCS/Fu7ZLni QWKhITeJnP5uBQH42S5Ea0/P3MGyIc2klkKT/pQfz7vITmucPQ8ZGcU5O2LPIVNw 7bnNhTUsrhbQw3A72j2s3RWihnw6ok5Qwuo9cb6Eyo85pnePzY1Jdqb9wMMIhgcf SB+osR09JhkckwpmzSTba1ZktdMMiUY31Wcqogq4ZPlfaLXzIJozLK7TPBgH0kuh WS7jlaVQCRnVJ+Oo+X2GQAmoLpM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOsP4/PzU917lTAbwptU 0O/wLsrlb7IgQKLN42eysrfxhRY752dwSSVsW5+6/np/Fbfnuay7hMXI5XYdEMG2 KyNNwQH/IF1oFV/bUfDqE2Czo7wsJY0UaqSnxCqKif9+U5Dualhk3QNFfypQwTGv 59H2xiYNCawPL2QLQIGADXe4GtqKAvdauCim2aZ2uQinqsunrcA2H0syR0ilYmyg WAd4MWzA6H2vV28BNly1TmKW2bBOQImRk/m0Aca0p6YCWi9JtpWBguQJYUZmR7tC 4pWytrrtAw2Bo7ufwO7d4I8hVdIz4lhqV/TSBvBa9yV7ua48phaUUgUkza+frfSh cQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11900424893894284211030319185706917187 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'azpphrpassport.dfid.gov.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24353667981356678661295783698900782791636658702599395548094662565293722829566090174992978675599015206563741105740279758115894714280443730259624452940819450976044896826192437043102404535189584344932049620954956140808350586548349814348323443970336770797541680409048971301195452936366924325768482656848763133737663927813179582799264552215217049986257269798940359605929506585182255368210920243422075714014149155855375619725100654652097385234285761578120050900598728236082655879412262322312653249290632031840893198546859562073703595608812124740977263457951674239431635975079792909289561225359521184990320415898252755640689 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 833ec36bd68f9579a0b7880be8b64064ce1f574e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'azpphrpassport.dfid.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.azpphrpassport.dfid.gov.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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