extnavi.usa-ed.net
- Navient Solutions, LLC -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 92:80:d9:99:79:ac:83:2c:a7:79:72:fe:cb:df:21:13 was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Navient Solutions, LLC
Organization:
Navient Solutions, LLC
State / Province:
Indiana
Country: US
Country: US
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 92:80:d9:99:79:ac:83:2c:a7:79:72:fe:cb:df:21:13Serial Number (int): 194736314824939273358423650512498794771
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: f5:c3:88:8b:df:52:30:6a:d3:cd:2a:c8:28:80:f8:79:db:a5:cc:e2
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): dd:8d:a6:18:8d:c6:13:bf:07:3c:fc:17:eb:2c:dd:68:11:80:02:da
Fingerprint (sha256): a7:c5:5a:c0:3c:73:74:b5:0e:1a:13:25:ee:43:bb:ec:83:15:7a:1d:2e:e7:fe:b8:16:94:6f:0c:bd:28:9c:6f
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate extnavi.usa-ed.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for extnavi.usa-ed.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
extnavi.usa-ed.net
extnavi.navient.com
extnavi.navient.com
Other certificates including the domain name usa-ed.net
(limited to 100 certificates)
ariba.usa-ed.net
K2devsite.usa-ed.net
LyncExt.navient.com
accesslync.navient.com
K2devsite.usa-ed.net
meteortest.navient.com
*.usa-ed.net
accesslync.navient.com
accesslync.navient.com
fsh-wlc-vip.usa-ed.net
navient.com
extnavi.usa-ed.net
PANIFIPCR010.usa-ed.net
vdi2.navient.com
view5.navient.com
View5.navient.com
qa.navient.com
qa.navient.com
LyncExt.navient.com
*.usa-ed.net
*.usa-ed.net
View5.navient.com
qa.navient.com
View5.navient.com
pwnifisco010.us.ad.usa-ed.net
accesslync.navient.com
test1.yourelectronicaward.usa-ed.net
fsh-isepdp-01.usa-ed.net
ariba.usa-ed.net
accesslync.navient.com
extnavi.usa-ed.net
LyncExt.navient.com
qa.navient.com
accesslync.navient.com
fsh-wlc-vip.usa-ed.net
K2prodsite.usa-ed.net
extnavi.usa-ed.net
charley.ed.myltest.usa-ed.net
Citrixcloud.usa-ed.net
qa.navient.com
accesslync.navient.com
*.usa-ed.net
LyncExt.navient.com
qa.navient.com
Citrixcloud.usa-ed.net
View5.navient.com
navient.com
*.usa-ed.net
ddcvhub1.aegisam.com
LyncExt.navient.com
esignproxy-cap.usa-ed.net
LyncExt.navient.com
vdi2.navient.com
ariba.usa-ed.net
*.usa-ed.net
view5.navient.com
charley.myltest.usa-ed.net
itl.myldev.usa-ed.net
accesslync.navient.com
accesslync.navient.com
K2dev.usa-ed.net
qa.navient.com
den1.navient.com
esignproxy-cap.usa-ed.net
charley.ed.myltest.usa-ed.net
esignproxydev.usa-ed.net
pwnifisco010.us.ad.usa-ed.net
ariba.usa-ed.net
extnavi.usa-ed.net
accesslync.navient.com
qa.navient.com
fsh-wlc-vip.usa-ed.net
extslmaldap.navient.com
accesslync.navient.com
accesslync.navient.com
accesslync.navient.com
qa.navient.com
accesslync.navient.com
qa.navient.com
qa.navient.com
*.usa-ed.net
qa.navient.com
LyncExt.navient.com
qa.navient.com
vdi2.navient.com
LyncExt.navient.com
View5.navient.com
qa.navient.com
ariba.usa-ed.net
citrixstorens.usa-ed.net
qa.navient.com
LyncExt.navient.com
LyncExt.navient.com
qa.navient.com
accesslync.navient.com
LyncExt.navient.com
pundfiprt010.usa-ed.net
*.usa-ed.net
LyncExt.navient.com
LyncExt.navient.com
K2devsite.usa-ed.net
LyncExt.navient.com
accesslync.navient.com
K2devsite.usa-ed.net
meteortest.navient.com
*.usa-ed.net
accesslync.navient.com
accesslync.navient.com
fsh-wlc-vip.usa-ed.net
navient.com
extnavi.usa-ed.net
PANIFIPCR010.usa-ed.net
vdi2.navient.com
view5.navient.com
View5.navient.com
qa.navient.com
qa.navient.com
LyncExt.navient.com
*.usa-ed.net
*.usa-ed.net
View5.navient.com
qa.navient.com
View5.navient.com
pwnifisco010.us.ad.usa-ed.net
accesslync.navient.com
test1.yourelectronicaward.usa-ed.net
fsh-isepdp-01.usa-ed.net
ariba.usa-ed.net
accesslync.navient.com
extnavi.usa-ed.net
LyncExt.navient.com
qa.navient.com
accesslync.navient.com
fsh-wlc-vip.usa-ed.net
K2prodsite.usa-ed.net
extnavi.usa-ed.net
charley.ed.myltest.usa-ed.net
Citrixcloud.usa-ed.net
qa.navient.com
accesslync.navient.com
*.usa-ed.net
LyncExt.navient.com
qa.navient.com
Citrixcloud.usa-ed.net
View5.navient.com
navient.com
*.usa-ed.net
ddcvhub1.aegisam.com
LyncExt.navient.com
esignproxy-cap.usa-ed.net
LyncExt.navient.com
vdi2.navient.com
ariba.usa-ed.net
*.usa-ed.net
view5.navient.com
charley.myltest.usa-ed.net
itl.myldev.usa-ed.net
accesslync.navient.com
accesslync.navient.com
K2dev.usa-ed.net
qa.navient.com
den1.navient.com
esignproxy-cap.usa-ed.net
charley.ed.myltest.usa-ed.net
esignproxydev.usa-ed.net
pwnifisco010.us.ad.usa-ed.net
ariba.usa-ed.net
extnavi.usa-ed.net
accesslync.navient.com
qa.navient.com
fsh-wlc-vip.usa-ed.net
extslmaldap.navient.com
accesslync.navient.com
accesslync.navient.com
accesslync.navient.com
qa.navient.com
accesslync.navient.com
qa.navient.com
qa.navient.com
*.usa-ed.net
qa.navient.com
LyncExt.navient.com
qa.navient.com
vdi2.navient.com
LyncExt.navient.com
View5.navient.com
qa.navient.com
ariba.usa-ed.net
citrixstorens.usa-ed.net
qa.navient.com
LyncExt.navient.com
LyncExt.navient.com
qa.navient.com
accesslync.navient.com
LyncExt.navient.com
pundfiprt010.usa-ed.net
*.usa-ed.net
LyncExt.navient.com
LyncExt.navient.com
Certificate
The complete raw certificate details for extnavi.usa-ed.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG6zCCBdOgAwIBAgIRAJKA2Zl5rIMsp3ly/svfIRMwDQYJKoZIhvcNAQELBQAw gZUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE9MDsGA1UE AxM0U2VjdGlnbyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0yMzExMjAwMDAwMDBaFw0yNDEyMTkyMzU5NTlaMF0xCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdJbmRpYW5hMR8wHQYDVQQKExZOYXZpZW50IFNvbHV0 aW9ucywgTExDMRswGQYDVQQDExJleHRuYXZpLnVzYS1lZC5uZXQwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDigIl3KqgJvaf8vC0AEQV4wSfKrNwccD2C 4Gl+z1GIeYgr47fUznFMMTFJth9oHFFiDaH81rKDJKKONG1oX3zKlh8EaRh7GwDO ewWwK8WZQuFz5jeHSgtvI6cAaPaeP38UJkl3x21yXd8TjivEA3UbfuJ4Jy2PhfHJ 7uLUU/S4uwbfSPWwtsz2HqMNEcuvHSe3JhL1t/FUTrqgvrjCZ0Uk8ck2Gb7f/9Pl AyL47awLfBczWR0QYQlh6Kx+zN3OvQeitYb8cnjKK1fAaU+ECNhtAvE3cpfw6kN2 xN6GqZ6l3qXmtB6hTAKU3TBRPEHkFrzT+uv8WkNmOIoYDhTPqUAtAgMBAAGjggNr MIIDZzAfBgNVHSMEGDAWgBQX2dYlJ2f5McJJQ9kwNkSMbKlP6zAdBgNVHQ4EFgQU 9cOIi99SMGrTzSrIKID4edulzOIwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQC MAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEoGA1UdIARDMEEwNQYM KwYBBAGyMQECAQMEMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20v Q1BTMAgGBmeBDAECAjBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLnNlY3Rp Z28uY29tL1NlY3RpZ29SU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2Vy dmVyQ0EuY3JsMIGKBggrBgEFBQcBAQR+MHwwVQYIKwYBBQUHMAKGSWh0dHA6Ly9j cnQuc2VjdGlnby5jb20vU2VjdGlnb1JTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25T ZWN1cmVTZXJ2ZXJDQS5jcnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLnNlY3Rp Z28uY29tMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQB2/4g/Crb7lVHCYcz1 h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYvuTIwKAAAEAwBGMEQCIB1y8uYiGu2P/X++ AE1DHUs2ghcEHzh4dT61IqvKUi+IAiAOCrTO6EFSGwp1k88T1rfmYUG/qeCd63aI LAU18dKpmgB1AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABi+5M jM8AAAQDAEYwRAIgbRpz/fgg8OH3w34HlhwhLcbiVD7z/2jOnTs+LKhP83ECIDV8 AbttdPcBp+3eh4eDnlFQYTXXXfLWxDZ96/f3NMwJAHcA7s3QZNXbGs7FXLedtM0T ojKHRny87N7DUUhZRnEftZsAAAGL7kyMTAAABAMASDBGAiEAmhCnFNsSEWiY4J3n lHtFafQUscT8JsvvxleU/De8Iu4CIQCsI00NKvqXOO9JyZUw+XQlWnmyZ2j2rAg2 wgRBO2UCKjAyBgNVHREEKzApghJleHRuYXZpLnVzYS1lZC5uZXSCE2V4dG5hdmku bmF2aWVudC5jb20wDQYJKoZIhvcNAQELBQADggEBAIxFmB/itbNdvW3jOsh2JFbs uE/rQ+6maQRSSo5rN5uXvSLCS91l5NAJ5km0EfTBdB8Aj7o/Fm5Hf605gy+zRW39 xDSq8fBAYcCj3TAG0fdeA+OhM4/iV+wW3LQ05XQvPMZOyKNBTqAVfr6WjtTJsnoK J9EOmK9JKDTFzJldTWb0b2vibitb0FhADXhMSxgG4vNrJ+Gv32Xxh2y68ra91dem h7jDJRr2ZqZmPxfps8hYdb54u1FSK4G9n/0N8OL6dXyxw5Y9NFn8LizyjZPishGY rOj9K8GeWMJ1sDH/LhYNNtCajsqgA5XB43u2/GAarOrr5PsG/f0YlS88k5sumwo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4oCJdyqoCb2n/LwtABEF eMEnyqzcHHA9guBpfs9RiHmIK+O31M5xTDExSbYfaBxRYg2h/NaygySijjRtaF98 ypYfBGkYexsAznsFsCvFmULhc+Y3h0oLbyOnAGj2nj9/FCZJd8dtcl3fE44rxAN1 G37ieCctj4Xxye7i1FP0uLsG30j1sLbM9h6jDRHLrx0ntyYS9bfxVE66oL64wmdF JPHJNhm+3//T5QMi+O2sC3wXM1kdEGEJYeisfszdzr0HorWG/HJ4yitXwGlPhAjY bQLxN3KX8OpDdsTehqmepd6l5rQeoUwClN0wUTxB5Ba80/rr/FpDZjiKGA4Uz6lA LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 194736314824939273358423650512498794771 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Indiana' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Navient Solutions, LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'extnavi.usa-ed.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28593240866850761248025764734900892170857607806154882509125642398287394654223134030317601222374580523166014047865186906736157147254284666463763107229826346307315850808274835678869115189733498489319347778046568437769149213092334390705850956107688884712577661924315952503257348043655969447430809177095202221733256909776263524049049087537063051529697686806972893886873034672659428453112864331854908777929096916439203306717367252549532701482548834312041720794786788342629581122905332976136613014060050609658028703744616655730724400907158953851591449538573210609634986501627067266677675743993719902826309545106109501095981 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f5c3888bdf52306ad3cd2ac82880f879dba5cce2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'extnavi.usa-ed.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'extnavi.navient.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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