*.cgi-bps.com
- CGI Federal Inc. -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 03:fa:f5:db:e0:67:44:df:c4:90:12:e8:23:b8:73:d9 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
CGI Federal Inc.
Organization:
CGI Federal Inc.
State / Province:
OH
Locality: Cleveland
Country: US
Locality: Cleveland
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fa:f5:db:e0:67:44:df:c4:90:12:e8:23:b8:73:d9Serial Number (int): 5290744812758426617098052714607703001
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 1f:d6:ec:88:4f:d2:98:44:e4:6b:46:bd:37:b9:1f:05:09:e7:33:4b
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): b3:32:98:78:ad:dd:b1:cb:5b:a9:0c:2b:b4:d7:b0:f8:5e:e0:63:f8
Fingerprint (sha256): a5:08:78:d6:69:24:90:ec:27:a0:5d:d8:32:89:ad:32:ed:47:86:29:d5:16:4f:98:82:03:9e:56:7f:62:76:78
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g6.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g6.crl
Check the revocation status for certificate *.cgi-bps.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.cgi-bps.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.cgi-bps.com
cgi-bps.com
citrix.cgi-bps.com
cgi-bps.com
citrix.cgi-bps.com
Other certificates including the domain name cgi-bps.com
(limited to 100 certificates)
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.dr.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.dr.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
imax.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
*.cgi-bps.com
Certificate
The complete raw certificate details for *.cgi-bps.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG5TCCBc2gAwIBAgIQA/r12+BnRN/EkBLoI7hz2TANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0yMDA4MDcwMDAwMDBaFw0yMjA5MTYxMjAwMDBa MGExCzAJBgNVBAYTAlVTMQswCQYDVQQIEwJPSDESMBAGA1UEBxMJQ2xldmVsYW5k MRkwFwYDVQQKExBDR0kgRmVkZXJhbCBJbmMuMRYwFAYDVQQDDA0qLmNnaS1icHMu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpcIjk26MvIrjOmh GhR+D6t/AGs3Ky/3UNxp/hLwI9bAkR8IvazYft8tguS7vl06ae129xry6po/n07o HpgtrMoFfAATBg9VfL51B6+sKEKl/lhve/0dG9wFJUZA4eqtKZj8Xcl5eHp5eZqz YOhPKQ0sQ/MI/z7dB3EznU+4F4W7mqOnylMhUGDptg9a/oDTRzzsR7S4204tJkLp 5rGgmxv5vLo8Q3CCTFTgaq7Xf5uf+5++74ybNEYfS/TbZ4t8OobdNGSSKYXcDluA 8PYfn4JTdMwYILBeqXRgPsRTej1e3oJEjJrXe9YL4lE25nO+zpK17IUKrcQiUsGU 0PZ4RwIDAQABo4IDiDCCA4QwHwYDVR0jBBgwFoAUUWj/kK8CB3U8zNllZGKiErhZ cjswHQYDVR0OBBYEFB/W7IhP0phE5GtGvTe5HwUJ5zNLMDkGA1UdEQQyMDCCDSou Y2dpLWJwcy5jb22CC2NnaS1icHMuY29tghJjaXRyaXguY2dpLWJwcy5jb20wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNV HR8EbjBsMDSgMqAwhi5odHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc2hhMi1oYS1z ZXJ2ZXItZzYuY3JsMDSgMqAwhi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hh Mi1oYS1zZXJ2ZXItZzYuY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYI KwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQIC MIGDBggrBgEFBQcBAQR3MHUwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2lj ZXJ0LmNvbTBNBggrBgEFBQcwAoZBaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29t L0RpZ2lDZXJ0U0hBMkhpZ2hBc3N1cmFuY2VTZXJ2ZXJDQS5jcnQwDAYDVR0TAQH/ BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYAKXm+8J45OSHwVnOfY6V3 5b5XfZxgCvj5TV0mXCVdx4QAAAFzynyABgAABAMARzBFAiAp26cXKDkpnEXLHSV4 YqibQqMtpRzr9Ti82av2EUCwEQIhALDdw/TYVIZB0/GYhT2I8hOWvb0VfliqT7Di gBx/16DuAHYAQcjKsd8iRkoQxqE6CUKHXk4xixsD6+tLx2jwkGKWBvYAAAFzynx/ 0QAABAMARzBFAiEA0coIrAl+ZSPUVgDrFp1OE3OtGQ0eApMjSneokCrP2bwCIHKs /PVgaCelaLTo+40pfo2mMZyOT4vH8FPvdqQBRKmeAHUARqVV63X6kSAwtaKJafTz fREsQXS+/Um4havy/HD+bUcAAAFzynyAVgAABAMARjBEAiAjsuN7v+99Mf3qI6I9 ZhZNCYOzVKDKJZ4bAiV8CckYDAIgEVxdW6+/wspN/LokqKR8JhskeQp4fRKOWYI2 E2qEWXkwDQYJKoZIhvcNAQELBQADggEBAGFIiaRyZvK3QGC3Xgf9wxW/DXmO7W1Z 57EJaBFgfzLtpyDGFurA/c3eEqAqsh32IpXkM2L6QBvcxLfJsqFp2UL1RkLzEaP3 lXKfq3M+x7nLlE6TzqNV/mwHmU8EzY/Bhb3oH3Z4KcjPoQKCwYL0qEiQ6qB+0wMf vc/8PhwJGOgOatXpGPOWj4Zvg0yESvBgaouVRzUU7p1fOA+4JuuQV8nj6Ki23SzE npaa3nKH//FcL3gXvoTTVjJe0Bh5PUi9hKiZPt6apqyM6VvjksSaiKThFqsuUnmt ry6oofEeYQc5+fd0dWTsf6ogZSxoxXrSkofXaLN7KS2YYBGipqKigZg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpcIjk26MvIrjOmhGhR+ D6t/AGs3Ky/3UNxp/hLwI9bAkR8IvazYft8tguS7vl06ae129xry6po/n07oHpgt rMoFfAATBg9VfL51B6+sKEKl/lhve/0dG9wFJUZA4eqtKZj8Xcl5eHp5eZqzYOhP KQ0sQ/MI/z7dB3EznU+4F4W7mqOnylMhUGDptg9a/oDTRzzsR7S4204tJkLp5rGg mxv5vLo8Q3CCTFTgaq7Xf5uf+5++74ybNEYfS/TbZ4t8OobdNGSSKYXcDluA8PYf n4JTdMwYILBeqXRgPsRTej1e3oJEjJrXe9YL4lE25nO+zpK17IUKrcQiUsGU0PZ4 RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5290744812758426617098052714607703001 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-16 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cleveland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CGI Federal Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.cgi-bps.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23049848859714686962561086627301023630788936803979252757154975545356358242893213142713609273022280156793046271329258572862325327819437623944784686461233412722672866034956777650961622069291713541977030662981079157819735833607081741837631280529258907119304200636182341184918823685419320484901191237406975386753596293370909320644568914783884560406034732509724948698936581509882171631738162019637669449896839460324163959641736429269373714062733141563616876752941827126284453483976310242277009905764609179506929496417918731051142325063351543891205541474921291932130263265030798280264260751579271320262898985463659783157831 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1fd6ec884fd29844e46b46bd37b91f0509e7334b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cgi-bps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cgi-bps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'citrix.cgi-bps.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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