imperva.com
Issued by GlobalSign Atlas R3 DV TLS CA 2023 Q4
About this certificate
This digital certificate with serial number 01:f2:f1:4e:63:e3:2e:26:2a:25:4f:9f:f4:c6:fa:9a was issued on by GlobalSign nv-sa.
With 58 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=imperva.com
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 01:f2:f1:4e:63:e3:2e:26:2a:25:4f:9f:f4:c6:fa:9aSerial Number (int): 2590658106975160390435781259150424730
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: f2:da:c2:5d:d3:22:13:7b:0d:93:df:c3:91:fd:f9:14:69:62:3f:8f
AuthorityKeyId: aa:11:71:8f:95:c4:58:98:8b:b1:6e:0f:3b:50:68:24:bc:b8:19:bc
Fingerprint (sha1): e4:69:bc:47:eb:d1:d7:f9:44:c5:ea:51:a3:05:fb:f6:96:2f:50:d1
Fingerprint (sha256): a9:26:cf:63:02:d6:d5:97:d0:02:ca:ca:bf:af:0d:fb:fc:08:d8:3d:0f:b9:96:c6:3d:e1:d5:e6:60:8e:14:19
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2023q4.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2023q4CRL Distribution Point: http://crl.globalsign.com/ca/gsatlasr3dvtlsca2023q4.crl
Check the revocation status for certificate imperva.com
58
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for imperva.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.lghealthjobs.org
penncancer.org
*.pennmedicine.org
chestercountyhospital.org
princetonrheumatology.com
*.ocwish.org
ocwish.org
centralpaconnect.org
*.lancasterneuroscience.com
mypennmedicine.org
knowledgelink.upenn.edu
*.jlgh.org
lghblooddonors.org
lghealthhub.org
*.mypennmedicine.org
*.princetonrheumatology.com
*.princetonhcs.org
*.cceb.med.upenn.edu
*.eliancehealthsolutions.org
*.pmacs.upenn.edu
*.pennproton.org
*.pennprotontherapy.org
pennmedicine.com
*.rockmedical.com
*.cchosp.com
cchosp.com
*.lghealth.org
*.lghealthexpress.org
pennproton.org
*.mylghealth.org
pennprotontherapy.org
*.lghealthhub.org
rockmedical.com
lancastergeneralhealth.org
lghealthjobs.org
lghealthexpress.org
*.checkyourlungs.org
checkyourlungs.org
eliancehealthsolutions.org
lancasterneuroscience.com
ourcarewishes.org
pennmedicine.org
imperva.com
lancasterfamilymed.org
*.centralpaconnect.org
*.chestercountyhospital.org
mylghealth.org
*.lghblooddonors.org
jlgh.org
*.penncancer.org
*.pennmedicine.com
redcap-test-web.pmacs.upenn.edu
*.lancastergeneralhealth.org
*.uphs.upenn.edu
princetonhcs.org
*.med.upenn.edu
*.lancasterfamilymed.org
*.ourcarewishes.org
penncancer.org
*.pennmedicine.org
chestercountyhospital.org
princetonrheumatology.com
*.ocwish.org
ocwish.org
centralpaconnect.org
*.lancasterneuroscience.com
mypennmedicine.org
knowledgelink.upenn.edu
*.jlgh.org
lghblooddonors.org
lghealthhub.org
*.mypennmedicine.org
*.princetonrheumatology.com
*.princetonhcs.org
*.cceb.med.upenn.edu
*.eliancehealthsolutions.org
*.pmacs.upenn.edu
*.pennproton.org
*.pennprotontherapy.org
pennmedicine.com
*.rockmedical.com
*.cchosp.com
cchosp.com
*.lghealth.org
*.lghealthexpress.org
pennproton.org
*.mylghealth.org
pennprotontherapy.org
*.lghealthhub.org
rockmedical.com
lancastergeneralhealth.org
lghealthjobs.org
lghealthexpress.org
*.checkyourlungs.org
checkyourlungs.org
eliancehealthsolutions.org
lancasterneuroscience.com
ourcarewishes.org
pennmedicine.org
imperva.com
lancasterfamilymed.org
*.centralpaconnect.org
*.chestercountyhospital.org
mylghealth.org
*.lghblooddonors.org
jlgh.org
*.penncancer.org
*.pennmedicine.com
redcap-test-web.pmacs.upenn.edu
*.lancastergeneralhealth.org
*.uphs.upenn.edu
princetonhcs.org
*.med.upenn.edu
*.lancasterfamilymed.org
*.ourcarewishes.org
Other certificates including the domain name imperva.com
(limited to 100 certificates)
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
Certificate
The complete raw certificate details for imperva.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILATCCCemgAwIBAgIQAfLxTmPjLiYqJU+f9Mb6mjANBgkqhkiG9w0BAQsFADBY MQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEuMCwGA1UE AxMlR2xvYmFsU2lnbiBBdGxhcyBSMyBEViBUTFMgQ0EgMjAyMyBRNDAeFw0yMzEx MjkyMTAzNTRaFw0yNDA1MjcyMTAzNTRaMBYxFDASBgNVBAMMC2ltcGVydmEuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueawLbPzxGA0f4tD0QEG Zbcpcfe3jE0aQtwwoAFmcK1AvP2oXKHo2BYRNfLC+Xaan+/d9oukSq2w0eEq4KJ1 kJd0Brrn9W1qD9BFMzodypuwQytsf3+E9cJwfIoIaAEwNy1v1s1y6lK/SGcQYYaH JbdAlggObgsQ1Yj50T4hjY94/kViMDYlVzkXAKZc1q5W2EnpZMDpR9kGY+QCW1QT RZVuA+bMOzh5SkQIZ5FJL4UfZbp0hpfU+QFZA05SvsVYpg+FiuEqegi8hEK6hyn0 ryyTlMkMoptITbCHfcTcMrfmvssj0USelQMVUCBWGDJ/zsP5xVGMdYc1Bgz9+UbO /QIDAQABo4IIBzCCCAMwggS+BgNVHREEggS1MIIEsYISKi5sZ2hlYWx0aGpvYnMu b3Jngg5wZW5uY2FuY2VyLm9yZ4ISKi5wZW5ubWVkaWNpbmUub3JnghljaGVzdGVy Y291bnR5aG9zcGl0YWwub3JnghlwcmluY2V0b25yaGV1bWF0b2xvZ3kuY29tggwq Lm9jd2lzaC5vcmeCCm9jd2lzaC5vcmeCFGNlbnRyYWxwYWNvbm5lY3Qub3Jnghsq LmxhbmNhc3Rlcm5ldXJvc2NpZW5jZS5jb22CEm15cGVubm1lZGljaW5lLm9yZ4IX a25vd2xlZGdlbGluay51cGVubi5lZHWCCiouamxnaC5vcmeCEmxnaGJsb29kZG9u b3JzLm9yZ4IPbGdoZWFsdGhodWIub3JnghQqLm15cGVubm1lZGljaW5lLm9yZ4Ib Ki5wcmluY2V0b25yaGV1bWF0b2xvZ3kuY29tghIqLnByaW5jZXRvbmhjcy5vcmeC FCouY2NlYi5tZWQudXBlbm4uZWR1ghwqLmVsaWFuY2VoZWFsdGhzb2x1dGlvbnMu b3JnghEqLnBtYWNzLnVwZW5uLmVkdYIQKi5wZW5ucHJvdG9uLm9yZ4IXKi5wZW5u cHJvdG9udGhlcmFweS5vcmeCEHBlbm5tZWRpY2luZS5jb22CESoucm9ja21lZGlj YWwuY29tggwqLmNjaG9zcC5jb22CCmNjaG9zcC5jb22CDioubGdoZWFsdGgub3Jn ghUqLmxnaGVhbHRoZXhwcmVzcy5vcmeCDnBlbm5wcm90b24ub3JnghAqLm15bGdo ZWFsdGgub3JnghVwZW5ucHJvdG9udGhlcmFweS5vcmeCESoubGdoZWFsdGhodWIu b3Jngg9yb2NrbWVkaWNhbC5jb22CGmxhbmNhc3RlcmdlbmVyYWxoZWFsdGgub3Jn ghBsZ2hlYWx0aGpvYnMub3JnghNsZ2hlYWx0aGV4cHJlc3Mub3JnghQqLmNoZWNr eW91cmx1bmdzLm9yZ4ISY2hlY2t5b3VybHVuZ3Mub3JnghplbGlhbmNlaGVhbHRo c29sdXRpb25zLm9yZ4IZbGFuY2FzdGVybmV1cm9zY2llbmNlLmNvbYIRb3VyY2Fy ZXdpc2hlcy5vcmeCEHBlbm5tZWRpY2luZS5vcmeCC2ltcGVydmEuY29tghZsYW5j YXN0ZXJmYW1pbHltZWQub3JnghYqLmNlbnRyYWxwYWNvbm5lY3Qub3JnghsqLmNo ZXN0ZXJjb3VudHlob3NwaXRhbC5vcmeCDm15bGdoZWFsdGgub3JnghQqLmxnaGJs b29kZG9ub3JzLm9yZ4IIamxnaC5vcmeCECoucGVubmNhbmNlci5vcmeCEioucGVu bm1lZGljaW5lLmNvbYIfcmVkY2FwLXRlc3Qtd2ViLnBtYWNzLnVwZW5uLmVkdYIc Ki5sYW5jYXN0ZXJnZW5lcmFsaGVhbHRoLm9yZ4IQKi51cGhzLnVwZW5uLmVkdYIQ cHJpbmNldG9uaGNzLm9yZ4IPKi5tZWQudXBlbm4uZWR1ghgqLmxhbmNhc3RlcmZh bWlseW1lZC5vcmeCEyoub3VyY2FyZXdpc2hlcy5vcmcwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQU8trCXdMi E3sNk9/Dkf35FGliP48wVwYDVR0gBFAwTjAIBgZngQwBAgEwQgYKKwYBBAGgMgoB AzA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9yZXBv c2l0b3J5LzAMBgNVHRMBAf8EAjAAMIGeBggrBgEFBQcBAQSBkTCBjjBABggrBgEF BQcwAYY0aHR0cDovL29jc3AuZ2xvYmFsc2lnbi5jb20vY2EvZ3NhdGxhc3IzZHZ0 bHNjYTIwMjNxNDBKBggrBgEFBQcwAoY+aHR0cDovL3NlY3VyZS5nbG9iYWxzaWdu LmNvbS9jYWNlcnQvZ3NhdGxhc3IzZHZ0bHNjYTIwMjNxNC5jcnQwHwYDVR0jBBgw FoAUqhFxj5XEWJiLsW4PO1BoJLy4GbwwSAYDVR0fBEEwPzA9oDugOYY3aHR0cDov L2NybC5nbG9iYWxzaWduLmNvbS9jYS9nc2F0bGFzcjNkdnRsc2NhMjAyM3E0LmNy bDCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUA7s3QZNXbGs7FXLedtM0TojKH Rny87N7DUUhZRnEftZsAAAGMHOVY0AAABAMARjBEAiAcRTcai7CLUfOvkgwq9bro 7Xj04akfgdFVz1iiFnk3QQIgVtLnES9Ylmxq6zQE0U4XM+PzEhwtHVm4lKkkS0PE fDwAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYwc5Vj8AAAE AwBHMEUCIQDl6PyzIJqdLRvjq6SvK5jWSBMkZR8sRda1irbP4mpmVwIgH8Mdo8OH QJ8QJHVAz3R0NR2lr+ApyHapKO6Z1gIG5ZMAdQDatr9rP7W2Ip+bwrtca+hwkXFs u1GEhTS9pD0wSNf7qwAAAYwc5Vm2AAAEAwBGMEQCIFEnWSOgrDOOempfa3kJasky RVq7vCZXDRUPKSmiIghHAiBR6MSBzuC8uiUOHVlEPDVdke3wGkHyVj3tk+IwF8fz 3jANBgkqhkiG9w0BAQsFAAOCAQEACz2eUywGe3fBna9drwEmQm+J2Y2x1hqrredb xe3FqFBLXElJ57B0vXw/vWYJwMuuAT15ukIzDu+Q3e//nCsKAnrrkGzOQ95RAYPV qnmE2kwNh0ZYsiF42L6pSReBzegw1BElJFlrYhKTrVFH3r7AYos1dkqcKNN8GIzm xR6J6F4iVj7mdGQoVvP+288U2doctyCES6LbaZT8Y2UYB1z+KXlbKMZLROGz2yab uH2CNxy0dIVNIcekueZAcaPBSdjzWe3NH8gP4Rk0hw5c0L37TL7Bm1S6NHOAYZeR hFyjXdoFh77HELpr8mZRmVfu5ji83U8ahfHRhGcPV+kh1AjMQg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueawLbPzxGA0f4tD0QEG Zbcpcfe3jE0aQtwwoAFmcK1AvP2oXKHo2BYRNfLC+Xaan+/d9oukSq2w0eEq4KJ1 kJd0Brrn9W1qD9BFMzodypuwQytsf3+E9cJwfIoIaAEwNy1v1s1y6lK/SGcQYYaH JbdAlggObgsQ1Yj50T4hjY94/kViMDYlVzkXAKZc1q5W2EnpZMDpR9kGY+QCW1QT RZVuA+bMOzh5SkQIZ5FJL4UfZbp0hpfU+QFZA05SvsVYpg+FiuEqegi8hEK6hyn0 ryyTlMkMoptITbCHfcTcMrfmvssj0USelQMVUCBWGDJ/zsP5xVGMdYc1Bgz9+UbO /QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2590658106975160390435781259150424730 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Atlas R3 DV TLS CA 2023 Q4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-29 21:03:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-27 21:03:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'imperva.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23467843008610896659755304917190642112041992448776644884265506647477010060167406253425104124478681113834655679550123757888195135563193614743194179942401933115391650382865645617999916270922539792480698353841190001164148979060481446805041164279212737342336124272141117464085401609539642549315824942182528131091269452355965253814061515709874020967081100629262650215016628170896300900960857886424465070995771752084734643808033913687820748738265521747695495061059093467933943774967718924748165626475304828392803063449437548269330302685699783500843947505107935443914107804006610879384606730932416566809641025842145424494333 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1205 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthjobs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'penncancer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chestercountyhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'princetonrheumatology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ocwish.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ocwish.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centralpaconnect.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancasterneuroscience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mypennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knowledgelink.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.jlgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghblooddonors.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthhub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mypennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.princetonrheumatology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.princetonhcs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cceb.med.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eliancehealthsolutions.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pmacs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennproton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennprotontherapy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennmedicine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rockmedical.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cchosp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cchosp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthexpress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennproton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mylghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennprotontherapy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthhub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rockmedical.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancastergeneralhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthjobs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthexpress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.checkyourlungs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'checkyourlungs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eliancehealthsolutions.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancasterneuroscience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ourcarewishes.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imperva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancasterfamilymed.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.centralpaconnect.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chestercountyhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mylghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghblooddonors.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jlgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.penncancer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennmedicine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redcap-test-web.pmacs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancastergeneralhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.uphs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'princetonhcs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.med.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancasterfamilymed.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ourcarewishes.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f2dac25dd322137b0d93dfc391fdf91469623f8f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.10.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (145 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2023q4' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2023q4.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName aa11718f95c458988bb16e0f3b506824bcb819bc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/ca/gsatlasr3dvtlsca2023q4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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