novica.com
- Novica United Inc. -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0f:cd:cd:48:f6:9d:45:dc:d0:e4:c8:fe:13:16:99:36 was issued on by DigiCert Inc.
With 70 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Novica United Inc.
Organization:
Novica United Inc.
State / Province:
California
Locality: Santa Monica
Country: US
Locality: Santa Monica
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:cd:cd:48:f6:9d:45:dc:d0:e4:c8:fe:13:16:99:36Serial Number (int): 21007004467493271063228848329865992502
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 6f:a5:56:5e:e0:af:42:66:dd:01:eb:3c:2f:7d:07:c4:b5:06:c4:a9
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): 07:ba:4c:3a:08:33:ff:7f:c4:34:e3:c7:a6:a5:a3:52:45:a9:25:6b
Fingerprint (sha256): a8:36:23:8e:dc:35:37:c1:8e:c3:25:95:69:e1:b4:a8:c9:d6:c9:87:6e:41:e8:82:49:87:eb:96:0c:a1:93:ff
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate novica.com
70
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for novica.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
novica.com
artisanday.com
*.artisanday.org
*.artisansday.com
*.artisanday.com
artisansday.org
artisanday.org
artisansday.com
*.artisansday.org
*.worldartisansday.org
worldartisanday.com
worldartisansday.org
worldartisansday.com
handmade.com
*.handmade.com
novica.co.uk
*.novica.co.uk
novica.uk
*.novica.uk
*.es.novica.com
*.novica.es
*.worldartisansday.com
*.worldartisanday.com
worldartisanday.org
*.worldartisanday.org
www.novica.com
novica.ca
www.novica.ca
secure.novica.com
es.novica.com
api.novica.com
portal.novica.com
assets3.novica.net
secure1.novica.com
secure2.novica.com
secure3.novica.com
secure4.novica.com
content.novica.com
dropship.novica.com
www.novicacatalog.com
undiscovered.novica.com
extranet.novica.com
images1.novica.net
images2.novica.net
*.novica.ca
novica.es
novicacatalog.com
dev.novica.com
devtest.novica.com
dev-es.novica.com
glopal.novica.com
dev-glopal.novica.com
market.unicefusa.org
www.market.unicefusa.org
unicefmarket.org
secure.store.kiva.org
store.kiva.org
www.unicefmarket.org
assets1.novica.net
assets2.novica.net
secure5.novica.com
cards.unicefusa.org
shop.unicefusa.org
market.unicefusa.com
staging.novica.com
trk.novica.com
mj.novica.com
catalogue.novica.com
test.novica.com
aws.novica.com
artisanday.com
*.artisanday.org
*.artisansday.com
*.artisanday.com
artisansday.org
artisanday.org
artisansday.com
*.artisansday.org
*.worldartisansday.org
worldartisanday.com
worldartisansday.org
worldartisansday.com
handmade.com
*.handmade.com
novica.co.uk
*.novica.co.uk
novica.uk
*.novica.uk
*.es.novica.com
*.novica.es
*.worldartisansday.com
*.worldartisanday.com
worldartisanday.org
*.worldartisanday.org
www.novica.com
novica.ca
www.novica.ca
secure.novica.com
es.novica.com
api.novica.com
portal.novica.com
assets3.novica.net
secure1.novica.com
secure2.novica.com
secure3.novica.com
secure4.novica.com
content.novica.com
dropship.novica.com
www.novicacatalog.com
undiscovered.novica.com
extranet.novica.com
images1.novica.net
images2.novica.net
*.novica.ca
novica.es
novicacatalog.com
dev.novica.com
devtest.novica.com
dev-es.novica.com
glopal.novica.com
dev-glopal.novica.com
market.unicefusa.org
www.market.unicefusa.org
unicefmarket.org
secure.store.kiva.org
store.kiva.org
www.unicefmarket.org
assets1.novica.net
assets2.novica.net
secure5.novica.com
cards.unicefusa.org
shop.unicefusa.org
market.unicefusa.com
staging.novica.com
trk.novica.com
mj.novica.com
catalogue.novica.com
test.novica.com
aws.novica.com
Other certificates including the domain name novica.com
(limited to 100 certificates)
secure.novica.com
secure.novica.com
secure.novica.com
partners.novica.com
secure.novica.com
login.novica.com
origin.news.novica.com
*.novica.com
extranet.novica.com
login.novica.com
m.novica.com
go.novica.com
secure.novica.com
partners.novica.com
secure.novica.com
secure.novica.com
rs.novica.com
secure.novica.com
webserver1.novica.com
mj.novica.com
novica.com
go.novica.com
novica.com
secure.novica.com
secure.novica.com
partners.novica.com
extranet.novica.com
origin.news.novica.com
extranet.novica.com
partners.novica.com
secure.novica.com
dev.blog.novica.com
secure.novica.com
partners.novica.com
go.novica.com
novica.com
novica.ca
novica.com
novica.com
partners.novica.com
secure.novica.com
dev.blog.novica.com
yspxar.novica.com
novica.com
secure.novica.com
secure.novica.com
secure.novica.com
go.novica.com
origin.news.novica.com
go.novica.com
rs.novica.com
novica.com
go.novica.com
origin.news.novica.com
secure.novica.com
secure.novica.com
origin.news.novica.com
secure.novica.com
*.novica.com
secure.novica.com
secure.novica.com
origin-blog.novica.com
dev.blog.novica.com
support.novica.com
dev.blog.novica.com
partners.novica.com
secure.novica.com
secure.novica.com
secure.novica.com
novica.com
rs.novica.com
secure.novica.com
yspxar.novica.com
secure.novica.com
secure.novica.com
origin.news.novica.com
origin-blog.novica.com
extranet.novica.com
data.novica.com
secure.novica.com
rs.novica.com
secure.novica.com
undiscovered.novica.com
secure.novica.com
secure.novica.com
secure.novica.com
pics.novica.com
novica.ca
secure.novica.com
support.novica.com
yspxar.novica.com
secure.novica.com
rs.novica.com
secure.novica.com
go.novica.com
secure.novica.com
pics.novica.com
extranet.novica.com
extranet.novica.com
webserver1.novica.com
secure.novica.com
secure.novica.com
partners.novica.com
secure.novica.com
login.novica.com
origin.news.novica.com
*.novica.com
extranet.novica.com
login.novica.com
m.novica.com
go.novica.com
secure.novica.com
partners.novica.com
secure.novica.com
secure.novica.com
rs.novica.com
secure.novica.com
webserver1.novica.com
mj.novica.com
novica.com
go.novica.com
novica.com
secure.novica.com
secure.novica.com
partners.novica.com
extranet.novica.com
origin.news.novica.com
extranet.novica.com
partners.novica.com
secure.novica.com
dev.blog.novica.com
secure.novica.com
partners.novica.com
go.novica.com
novica.com
novica.ca
novica.com
novica.com
partners.novica.com
secure.novica.com
dev.blog.novica.com
yspxar.novica.com
novica.com
secure.novica.com
secure.novica.com
secure.novica.com
go.novica.com
origin.news.novica.com
go.novica.com
rs.novica.com
novica.com
go.novica.com
origin.news.novica.com
secure.novica.com
secure.novica.com
origin.news.novica.com
secure.novica.com
*.novica.com
secure.novica.com
secure.novica.com
origin-blog.novica.com
dev.blog.novica.com
support.novica.com
dev.blog.novica.com
partners.novica.com
secure.novica.com
secure.novica.com
secure.novica.com
novica.com
rs.novica.com
secure.novica.com
yspxar.novica.com
secure.novica.com
secure.novica.com
origin.news.novica.com
origin-blog.novica.com
extranet.novica.com
data.novica.com
secure.novica.com
rs.novica.com
secure.novica.com
undiscovered.novica.com
secure.novica.com
secure.novica.com
secure.novica.com
pics.novica.com
novica.ca
secure.novica.com
support.novica.com
yspxar.novica.com
secure.novica.com
rs.novica.com
secure.novica.com
go.novica.com
secure.novica.com
pics.novica.com
extranet.novica.com
extranet.novica.com
webserver1.novica.com
Certificate
The complete raw certificate details for novica.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIL5zCCCs+gAwIBAgIQD83NSPadRdzQ5Mj+ExaZNjANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjMx MDA5MDAwMDAwWhcNMjQwMzA3MjM1OTU5WjBrMQswCQYDVQQGEwJVUzETMBEGA1UE CBMKQ2FsaWZvcm5pYTEVMBMGA1UEBxMMU2FudGEgTW9uaWNhMRswGQYDVQQKExJO b3ZpY2EgVW5pdGVkIEluYy4xEzARBgNVBAMTCm5vdmljYS5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGrICII/UloftBJDAowQqkw2s5KdBWfZby frmY343ESiBajbhduJn+/yKM+iiwRZHZzF75Zcu6Fg8LPUHBJZ6mlt4lZ8Y5HGFh DhTZ2Sz3wslih7noS9yes2VHiZVFhUT2e6SUBuqqh/4qeWFNRmd6cTNgpu4JEz2O bZ8wsgiz2d6lRLPjtWcoAWTnE2GkaxnkzNzuOnekCfQMJd0KewVGyV3cKmZwMV4p HouFiaNF6KJoVdTWrggr7XEJ30U85DvXoFS03hP3dSo6tsrNcck+OEGAzoVhm1wK kn3mNnGriFL5swcz7l7k4IEmub+dNW0AWhjSxJzmY7SmAYIkSG4RAgMBAAGjggiX MIIIkzAfBgNVHSMEGDAWgBR0hYDAZsffN97PvSk3qgMdvu3NFzAdBgNVHQ4EFgQU b6VWXuCvQmbdAes8L30HxLUGxKkwggUkBgNVHREEggUbMIIFF4IKbm92aWNhLmNv bYIOYXJ0aXNhbmRheS5jb22CECouYXJ0aXNhbmRheS5vcmeCESouYXJ0aXNhbnNk YXkuY29tghAqLmFydGlzYW5kYXkuY29tgg9hcnRpc2Fuc2RheS5vcmeCDmFydGlz YW5kYXkub3Jngg9hcnRpc2Fuc2RheS5jb22CESouYXJ0aXNhbnNkYXkub3JnghYq LndvcmxkYXJ0aXNhbnNkYXkub3JnghN3b3JsZGFydGlzYW5kYXkuY29tghR3b3Js ZGFydGlzYW5zZGF5Lm9yZ4IUd29ybGRhcnRpc2Fuc2RheS5jb22CDGhhbmRtYWRl LmNvbYIOKi5oYW5kbWFkZS5jb22CDG5vdmljYS5jby51a4IOKi5ub3ZpY2EuY28u dWuCCW5vdmljYS51a4ILKi5ub3ZpY2EudWuCDyouZXMubm92aWNhLmNvbYILKi5u b3ZpY2EuZXOCFioud29ybGRhcnRpc2Fuc2RheS5jb22CFSoud29ybGRhcnRpc2Fu ZGF5LmNvbYITd29ybGRhcnRpc2FuZGF5Lm9yZ4IVKi53b3JsZGFydGlzYW5kYXku b3Jngg53d3cubm92aWNhLmNvbYIJbm92aWNhLmNhgg13d3cubm92aWNhLmNhghFz ZWN1cmUubm92aWNhLmNvbYINZXMubm92aWNhLmNvbYIOYXBpLm5vdmljYS5jb22C EXBvcnRhbC5ub3ZpY2EuY29tghJhc3NldHMzLm5vdmljYS5uZXSCEnNlY3VyZTEu bm92aWNhLmNvbYISc2VjdXJlMi5ub3ZpY2EuY29tghJzZWN1cmUzLm5vdmljYS5j b22CEnNlY3VyZTQubm92aWNhLmNvbYISY29udGVudC5ub3ZpY2EuY29tghNkcm9w c2hpcC5ub3ZpY2EuY29tghV3d3cubm92aWNhY2F0YWxvZy5jb22CF3VuZGlzY292 ZXJlZC5ub3ZpY2EuY29tghNleHRyYW5ldC5ub3ZpY2EuY29tghJpbWFnZXMxLm5v dmljYS5uZXSCEmltYWdlczIubm92aWNhLm5ldIILKi5ub3ZpY2EuY2GCCW5vdmlj YS5lc4IRbm92aWNhY2F0YWxvZy5jb22CDmRldi5ub3ZpY2EuY29tghJkZXZ0ZXN0 Lm5vdmljYS5jb22CEWRldi1lcy5ub3ZpY2EuY29tghFnbG9wYWwubm92aWNhLmNv bYIVZGV2LWdsb3BhbC5ub3ZpY2EuY29tghRtYXJrZXQudW5pY2VmdXNhLm9yZ4IY d3d3Lm1hcmtldC51bmljZWZ1c2Eub3JnghB1bmljZWZtYXJrZXQub3JnghVzZWN1 cmUuc3RvcmUua2l2YS5vcmeCDnN0b3JlLmtpdmEub3JnghR3d3cudW5pY2VmbWFy a2V0Lm9yZ4ISYXNzZXRzMS5ub3ZpY2EubmV0ghJhc3NldHMyLm5vdmljYS5uZXSC EnNlY3VyZTUubm92aWNhLmNvbYITY2FyZHMudW5pY2VmdXNhLm9yZ4ISc2hvcC51 bmljZWZ1c2Eub3JnghRtYXJrZXQudW5pY2VmdXNhLmNvbYISc3RhZ2luZy5ub3Zp Y2EuY29tgg50cmsubm92aWNhLmNvbYINbWoubm92aWNhLmNvbYIUY2F0YWxvZ3Vl Lm5vdmljYS5jb22CD3Rlc3Qubm92aWNhLmNvbYIOYXdzLm5vdmljYS5jb20wPgYD VR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdp Y2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCBlDBIoEagRIZCaHR0cDovL2NybDMuZGln aWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEyNTYyMDIwQ0ExLTEu Y3JsMEigRqBEhkJodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9i YWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcmwwgYcGCCsGAQUFBwEBBHsweTAk BggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMFEGCCsGAQUFBzAC hkVodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxHMlRM U1JTQVNIQTI1NjIwMjBDQTEtMS5jcnQwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB 1nkCBAIEggFuBIIBagFoAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEf tZsAAAGLFek4XgAABAMARzBFAiA9pBrIPE/ZTGTtmGNY9tcN3dmyIh9icB5JPqVE vejH/wIhAL8lKhLeRMyQN/Kb4AsuPnojMDKCU2byVO0PGGQN/8f6AHYASLDja9qm RzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGLFek4AgAABAMARzBFAiBjgoyX 6z2lvX8h5jd/twno7GuvhLPRaa7205hWwRxGpAIhAK5+Yw1GKP0aMZ5YDzBM17Sg scm54TZWU6f1GzFrgv2EAHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX +6sAAAGLFek3/gAABAMARzBFAiEAiUWurISEHsrrDumnchQeTyftEC2goOvJ4vDc f/1DSMICIFCL/erfoEwdwpN91Vlqw/5iXZcGY/jemcqUh3M6eMmXMA0GCSqGSIb3 DQEBCwUAA4IBAQAT7PHg6q/644KuedTWaPj9w9o6i48/EqflUmdRkW0r8q6NaVii +FqKs23SDMD+MdVwRj5DOGQxzNRX1DYCK/tNHpVkoPVl5HYf2v+18W6WNpOa2vXL Oo23kee+8Zs1Az4RKbXc0OtpYz5NHdi9G1ftHJnZuGddAOgZmBdK/m4lWYbpUeK+ KqTAJyVn1MnGrvywiVtxarouBFaKblXcd2GM61Sl+yDy0TvF0VWBnUcKO/pu9xPZ 8YlmPkTE50TFd6eViJLxQreAJqB0B1yImId0Z2xugTci8zjFggwSh4JEb1uCD/E2 ebyQxIjqxgDmdfzMUGePr4LMXCIUo38X/YNh -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhqyAiCP1JaH7QSQwKMEK pMNrOSnQVn2W8n65mN+NxEogWo24XbiZ/v8ijPoosEWR2cxe+WXLuhYPCz1BwSWe ppbeJWfGORxhYQ4U2dks98LJYoe56EvcnrNlR4mVRYVE9nuklAbqqof+KnlhTUZn enEzYKbuCRM9jm2fMLIIs9nepUSz47VnKAFk5xNhpGsZ5Mzc7jp3pAn0DCXdCnsF Rsld3CpmcDFeKR6LhYmjReiiaFXU1q4IK+1xCd9FPOQ716BUtN4T93UqOrbKzXHJ PjhBgM6FYZtcCpJ95jZxq4hS+bMHM+5e5OCBJrm/nTVtAFoY0sSc5mO0pgGCJEhu EQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 21007004467493271063228848329865992502 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Santa Monica' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Novica United Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'novica.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17000996810164132175616452638470696480131726990264925489680737700390829896535145209331340259201220293793494220778399776246001455594636969508359230225459652810534641347922515065366477797760297455914175317844299290000097529488114567173754814213632002919770840945554846792743577478810038385295773416947967824711371130305387134806017804352167348630772723044295933662141326928797049204462176784876173638721925583257028447843057023297547741058111858206208981053230937531736357005736336411705290614468576451082489809421882303818592080194854350470509199515731577544713625362351009963765140624678201537351981724598465345383953 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6fa5565ee0af4266dd01eb3c2f7d07c4b506c4a9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1307 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artisanday.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.artisanday.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.artisansday.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.artisanday.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artisansday.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artisanday.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artisansday.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.artisansday.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.worldartisansday.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'worldartisanday.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'worldartisansday.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'worldartisansday.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'handmade.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.handmade.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novica.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.novica.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novica.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.novica.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.es.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.novica.es' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.worldartisansday.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.worldartisanday.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'worldartisanday.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.worldartisanday.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novica.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.novica.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'es.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets3.novica.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure1.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure2.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure3.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure4.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'content.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dropship.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.novicacatalog.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'undiscovered.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'extranet.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images1.novica.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images2.novica.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.novica.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novica.es' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novicacatalog.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'devtest.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-es.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glopal.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-glopal.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'market.unicefusa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.market.unicefusa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unicefmarket.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.store.kiva.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.kiva.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.unicefmarket.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets1.novica.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets2.novica.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure5.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cards.unicefusa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.unicefusa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'market.unicefusa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trk.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mj.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'catalogue.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.novica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aws.novica.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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