bjcris-prod.carenet.org
- BJC Healthcare -
Issued by Trusted Secure Certificate Authority 5
About this certificate
This digital certificate with serial number e8:4c:1e:0a:98:00:8a:68:28:28:4f:c1:c7:8b:58:aa was issued on by Corporation Service Company.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
BJC Healthcare
Organization:
BJC Healthcare
Organization unit: Enterprise SSL
Organization unit: Enterprise SSL
Address:
4901 Forest Park Ave
Postal code: 63110
State / Province: MO
Locality: St. Louis
Country: US
Postal code: 63110
State / Province: MO
Locality: St. Louis
Country: US
Corporation Service Company
Organization:
Corporation Service Company
State / Province:
DE
Locality: Wilmington
Country: US
Locality: Wilmington
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): e8:4c:1e:0a:98:00:8a:68:28:28:4f:c1:c7:8b:58:aaSerial Number (int): 308776118894961239206981770636318955690
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: d0:61:e0:27:78:17:43:86:c6:41:c1:38:80:cb:9a:30:ca:e3:f2:46
AuthorityKeyId: f2:bb:55:ee:fc:8f:cf:d0:3f:14:68:1a:95:7e:79:0e:ab:17:30:f4
Fingerprint (sha1): 95:8f:2a:7d:af:5b:96:0e:a7:d0:0f:37:a4:63:8a:8f:3d:d5:32:24
Fingerprint (sha256): a4:77:82:e4:c7:61:26:c0:3e:e8:60:ac:47:7c:29:a8:5a:d3:43:da:59:21:fc:5d:f2:92:5e:41:0a:38:2f:2a
Issuing Certificate URL: http://crt.usertrust.com/TrustedSecureCertificateAuthority5.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/TrustedSecureCertificateAuthority5.crl
Check the revocation status for certificate bjcris-prod.carenet.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bjcris-prod.carenet.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bjcris-prod.carenet.org
www.bjcris-prod.carenet.org
www.bjcris-prod.carenet.org
Other certificates including the domain name carenet.org
(limited to 100 certificates)
bcaweb.carenet.org
esstest.carenet.org
bjcpsft-prod.carenet.org
carenet.org
pswebhrtst.carenet.org
mybjcnet.carenet.org
bjcexconl01.bjc-nt.bjc.org
bjcfmdtest.bjc.org
ess.carenet.org
bjcidm.carenet.org
fmd.bjc.org
joinbjctest.carenet.org
bjcmgphysicians.carenet.org
BJCIAM.CARENET.ORG
ldmobile.carenet.org
vpn.bjc.org
smartweb.carenet.org
bjcpsft-nonprodext.carenet.org
pswebtst.carenet.org
bjcpsft-nonprodext.carenet.org
myhr.carenet.org
bjcidm.carenet.org
ctxremote.carenet.org
mytime.carenet.org
bcaweb.carenet.org
smartweb.carenet.org
mytime.carenet.org
fmdtest.bjc.org
bjcportal.bjc.org
ctxremotetest.carenet.org
BJCIAM.CARENET.ORG
myhr.carenet.org
mobileenroll.bjc.org
ess.carenet.org
bjcpsft-nonprodext.carenet.org
myhrtest.carenet.org
bjcidm.carenet.org
fmd.bjc.org
fmdtest.bjc.org
BJCIAMTEST.CARENET.ORG
bjcmgphysicians.carenet.org
joinbjc.carenet.org
mytime.carenet.org
ess.carenet.org
bjchcm.psoft.carenet.org
slchoppe.carenet.org
BJCIAMTEST.CARENET.ORG
bjcfmdtest.bjc.org
ctxremote.carenet.org
carenet.org
epicdevmgr.carenet.org
epicdevmgr.carenet.org
vpn.bjc.org
bjcris-prod.carenet.org
sni.cloudflaressl.com
bjcphysicians.carenet.org
bjchcm.carenet.org
bjcportal.bjc.org
rxprofile.bjc.org
bjcfmdtest.bjc.org
mytime.carenet.org
mybjcnet.carenet.org
BJCIAM.CARENET.ORG
BJCIAM.CARENET.ORG
ctxremote.carenet.org
joinbjctest2.carenet.org
joinbjc.carenet.org
bjcpsft-prod.carenet.org
vpn.bjc.org
wuecvfmd.carenet.org
bjcidm.carenet.org
ctxremotetest.carenet.org
joinbjctest.carenet.org
joinbjctest.carenet.org
fmd.bjc.org
epicvalidation.carenet.org
joinbjc.carenet.org
bjcpsft-joinbjc.carenet.org
carenet.org
mobileenroll.bjc.org
bjcfmdtest.bjc.org
hipobdmzt.carenet.org
joinbjctest.carenet.org
bjcris-prod.carenet.org
bjcidm.carenet.org
esstest.carenet.org
bjcportal.bjc.org
bjcportal.bjc.org
epicvalidation.carenet.org
esstest.carenet.org
bjcpsft-prod.carenet.org
carenet.org
pswebhrtst.carenet.org
mybjcnet.carenet.org
bjcexconl01.bjc-nt.bjc.org
bjcfmdtest.bjc.org
ess.carenet.org
bjcidm.carenet.org
fmd.bjc.org
joinbjctest.carenet.org
bjcmgphysicians.carenet.org
BJCIAM.CARENET.ORG
ldmobile.carenet.org
vpn.bjc.org
smartweb.carenet.org
bjcpsft-nonprodext.carenet.org
pswebtst.carenet.org
bjcpsft-nonprodext.carenet.org
myhr.carenet.org
bjcidm.carenet.org
ctxremote.carenet.org
mytime.carenet.org
bcaweb.carenet.org
smartweb.carenet.org
mytime.carenet.org
fmdtest.bjc.org
bjcportal.bjc.org
ctxremotetest.carenet.org
BJCIAM.CARENET.ORG
myhr.carenet.org
mobileenroll.bjc.org
ess.carenet.org
bjcpsft-nonprodext.carenet.org
myhrtest.carenet.org
bjcidm.carenet.org
fmd.bjc.org
fmdtest.bjc.org
BJCIAMTEST.CARENET.ORG
bjcmgphysicians.carenet.org
joinbjc.carenet.org
mytime.carenet.org
ess.carenet.org
bjchcm.psoft.carenet.org
slchoppe.carenet.org
BJCIAMTEST.CARENET.ORG
bjcfmdtest.bjc.org
ctxremote.carenet.org
carenet.org
epicdevmgr.carenet.org
epicdevmgr.carenet.org
vpn.bjc.org
bjcris-prod.carenet.org
sni.cloudflaressl.com
bjcphysicians.carenet.org
bjchcm.carenet.org
bjcportal.bjc.org
rxprofile.bjc.org
bjcfmdtest.bjc.org
mytime.carenet.org
mybjcnet.carenet.org
BJCIAM.CARENET.ORG
BJCIAM.CARENET.ORG
ctxremote.carenet.org
joinbjctest2.carenet.org
joinbjc.carenet.org
bjcpsft-prod.carenet.org
vpn.bjc.org
wuecvfmd.carenet.org
bjcidm.carenet.org
ctxremotetest.carenet.org
joinbjctest.carenet.org
joinbjctest.carenet.org
fmd.bjc.org
epicvalidation.carenet.org
joinbjc.carenet.org
bjcpsft-joinbjc.carenet.org
carenet.org
mobileenroll.bjc.org
bjcfmdtest.bjc.org
hipobdmzt.carenet.org
joinbjctest.carenet.org
bjcris-prod.carenet.org
bjcidm.carenet.org
esstest.carenet.org
bjcportal.bjc.org
bjcportal.bjc.org
epicvalidation.carenet.org
Certificate
The complete raw certificate details for bjcris-prod.carenet.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGtTCCBZ2gAwIBAgIRAOhMHgqYAIpoKChPwceLWKowDQYJKoZIhvcNAQELBQAw gYYxCzAJBgNVBAYTAlVTMQswCQYDVQQIEwJERTETMBEGA1UEBxMKV2lsbWluZ3Rv bjEkMCIGA1UEChMbQ29ycG9yYXRpb24gU2VydmljZSBDb21wYW55MS8wLQYDVQQD EyZUcnVzdGVkIFNlY3VyZSBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkgNTAeFw0xODEx MDEwMDAwMDBaFw0xOTExMDEyMzU5NTlaMIGxMQswCQYDVQQGEwJVUzEOMAwGA1UE ERMFNjMxMTAxCzAJBgNVBAgTAk1PMRIwEAYDVQQHEwlTdC4gTG91aXMxHTAbBgNV BAkTFDQ5MDEgRm9yZXN0IFBhcmsgQXZlMRcwFQYDVQQKEw5CSkMgSGVhbHRoY2Fy ZTEXMBUGA1UECxMORW50ZXJwcmlzZSBTU0wxIDAeBgNVBAMTF2JqY3Jpcy1wcm9k LmNhcmVuZXQub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvl6f ChVAuquwaEWpRi6foEoV2X+r68gMwbCfYvX+ehQoTlo23BZTUUeJQAZGdrs+euRJ fSwMo9w1DCOSSC9KhgZskSSzTsnC6ob+b/tjWzqS4qOIQnQfhHUgKWinGCHZOoPv g/+fHp2qqJ0lwFKiX/QxLyjT5fZ7IigNqeIE8asUTHvJoyDidUGR609ifgh7pZVU Q3zkqndbtXIviAYabVLIYRs7obqovke51b+EClZLQ0rgfj440M+H3t6HIGT2zV5Y 31FSMj/1kP/7u9TI6y8va+qeEFbHBo6/ua3HJHHLHrPhfzp3ztAcqc8FfOzbf9Wp TB1ZSgEGLdi+0dmPHQIDAQABo4IC7zCCAuswHwYDVR0jBBgwFoAU8rtV7vyPz9A/ FGgalX55DqsXMPQwHQYDVR0OBBYEFNBh4Cd4F0OGxkHBOIDLmjDK4/JGMA4GA1Ud DwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjBLBgNVHSAERDBCMDYGCysGAQQBsjEBAgIIMCcwJQYIKwYBBQUHAgEW GWh0dHBzOi8vY3BzLnVzZXJ0cnVzdC5jb20wCAYGZ4EMAQICMFAGA1UdHwRJMEcw RaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9UcnVzdGVkU2VjdXJlQ2Vy dGlmaWNhdGVBdXRob3JpdHk1LmNybDCBggYIKwYBBQUHAQEEdjB0MEsGCCsGAQUF BzAChj9odHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vVHJ1c3RlZFNlY3VyZUNlcnRp ZmljYXRlQXV0aG9yaXR5NS5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVz ZXJ0cnVzdC5jb20wPwYDVR0RBDgwNoIXYmpjcmlzLXByb2QuY2FyZW5ldC5vcmeC G3d3dy5iamNyaXMtcHJvZC5jYXJlbmV0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYE gfMA8QB3AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABZs/njF8A AAQDAEgwRgIhAMCNXLijLXquco5tz0fbhhjNlKV8AkJsBEnnVRqgyqvjAiEAzBk8 MaoYfIkY74e8DRnC9Fbx96bp/5PIJaPYFvXiThAAdgB0ftqDMa0zEJEhnM4lT0Jw wr/9XkIgCMY3NXnmEHvMVgAAAWbP54yOAAAEAwBHMEUCIEkfnMTiH3WzMSiaFmu4 PPMi1YKguMnGwx1p9Tve6Gw/AiEAsawdlvSNHz6HcGxWslPKG7rK8Xa3Lq+qL+L3 KjTvYtIwDQYJKoZIhvcNAQELBQADggEBAFdXs5/qdcBOVd18vGD74Bm14HujvzoM fGab4+5PO/ay1dDGjr4UNOZ2eQjqNYGnAMFa8d5JC1YMfS9y8FPWbPKRjEr6fNE4 BBfiiLuSYbD7SYYj+uRzhQeTbr7gdmXyZic3W65nzc74Ojfr8dM/MYOwqMQogTTF 8dIdqvTEumaobWtWMOzG9lqaCLTkj75I9j0sGcuMonlVcUwwhVN2/X2WiSEn2gLz 9ou46RSx5lggA3cCdbHd5iFx1/+rfekcoWQEtUW7EQ+rU/HCbRbmqf/RNV1hKmzq 1yIGi8WqDZp0qh2q94z6mo97MdhrtlIW8w/zjnw2B1piFgApnygCa4k= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvl6fChVAuquwaEWpRi6f oEoV2X+r68gMwbCfYvX+ehQoTlo23BZTUUeJQAZGdrs+euRJfSwMo9w1DCOSSC9K hgZskSSzTsnC6ob+b/tjWzqS4qOIQnQfhHUgKWinGCHZOoPvg/+fHp2qqJ0lwFKi X/QxLyjT5fZ7IigNqeIE8asUTHvJoyDidUGR609ifgh7pZVUQ3zkqndbtXIviAYa bVLIYRs7obqovke51b+EClZLQ0rgfj440M+H3t6HIGT2zV5Y31FSMj/1kP/7u9TI 6y8va+qeEFbHBo6/ua3HJHHLHrPhfzp3ztAcqc8FfOzbf9WpTB1ZSgEGLdi+0dmP HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 308776118894961239206981770636318955690 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wilmington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Corporation Service Company' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trusted Secure Certificate Authority 5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '63110' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'St. Louis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '4901 Forest Park Ave' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BJC Healthcare' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Enterprise SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bjcris-prod.carenet.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24031937419767489401664170334901455483702813608701493254069186329140170415823997067804141895354763433984420221140253770885003131712462472568879939158193905160016721530808895678393085846357574929887109937560684793326171474611281220432333686079854970070625840726855441582474196678419939994397783554394015259357328703880383801612993801265847873387828595005366447922743499667974979311964595175591966308526654669328622738193180939661694092123159152058538822969949007113828887417553586246102217361320378175255350040027135940140611632142078774233650827834552731733971679792805510401023723467243003887358360907634813332721437 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f2bb55eefc8fcfd03f14681a957e790eab1730f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d061e02778174386c641c13880cb9a30cae3f246 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/TrustedSecureCertificateAuthority5.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/TrustedSecureCertificateAuthority5.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bjcris-prod.carenet.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bjcris-prod.carenet.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb00000166cfe78c5f0000040300483046022100c08d5cb8a32d7aae728e6dcf47db8618cd94a57c02426c0449e7551aa0caabe3022100cc193c31aa187c8918ef87bc0d19c2f456f1f7a6e9ff93c825a3d816f5e24e10007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000166cfe78c8e00000403004730450220491f9cc4e21f75b331289a166bb83cf322d582a0b8c9c6c31d69f53bdee86c3f022100b1ac1d96f48d1f3e87706c56b253ca1bbacaf176b72eafaa2fe2f72a34ef62d2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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