cmacan.org
Issued by Starfield Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number f1:73:86:2d:e4:e4:fa:21 was issued on by Starfield Technologies, Inc..
With 17 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cmacan.org,OU=Domain Control Validated
Starfield Technologies, Inc.
Organization:
Starfield Technologies, Inc.
Organization unit: http://certs.starfieldtech.com/repository/
Organization unit: http://certs.starfieldtech.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): f1:73:86:2d:e4:e4:fa:21Serial Number (int): 17398397317134219809
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: 1d:73:77:cd:dc:cc:78:ad:c7:e2:87:9a:ea:0d:9f:fb:e2:b2:fc:ec
AuthorityKeyId: 25:45:81:68:50:26:38:3d:3b:2d:2c:be:cd:6a:d9:b6:3d:b3:66:63
Fingerprint (sha1): ce:d4:74:9e:44:b7:91:75:c7:8d:d7:4b:b9:fc:f6:34:2e:26:1a:b6
Fingerprint (sha256): ab:a5:93:90:16:f8:a1:bf:ad:e9:4b:f6:6b:b4:2f:d9:1c:55:66:b4:3a:8c:c9:7d:db:10:7b:8a:3b:1f:a6:0e
Issuing Certificate URL: http://certificates.starfieldtech.com/repository/sfig2.crt
Revocation information
OCSP Server: http://ocsp.starfieldtech.com/CRL Distribution Point: http://crl.starfieldtech.com/sfig2s1-166.crl
Check the revocation status for certificate cmacan.org
17
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cmacan.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cmacan.org
www.cmacan.org
fr.envisioncanada.org
choosechangecanada.org
envisioncanada.org
mynmc.ca
defenddignity.ca
www.allianceassembly.com
testlab.cmacan.org
allianceassembly.com
faithhopeinaction.ca
www.defenddignity.ca
ch.envisioncanada.org
buyingsexisacrime.ca
www.catalogue.faithhopeinaction.ca
www.envisioncanada.org
catalogue.faithhopeinaction.ca
www.cmacan.org
fr.envisioncanada.org
choosechangecanada.org
envisioncanada.org
mynmc.ca
defenddignity.ca
www.allianceassembly.com
testlab.cmacan.org
allianceassembly.com
faithhopeinaction.ca
www.defenddignity.ca
ch.envisioncanada.org
buyingsexisacrime.ca
www.catalogue.faithhopeinaction.ca
www.envisioncanada.org
catalogue.faithhopeinaction.ca
Other certificates including the domain name cmacan.org
(limited to 100 certificates)
extraordinarystories.ca
mail.cmacan.org
testlab.cmacan.org
ssotest.cmacan.org
cmacan.org
extraordinarystories.ca
cmacan.org
cmacan.org
defenddignity.ca
extraordinarystories.ca
cmacan.org
mail.cmacan.org
extraordinarystories.ca
cmacan.org
defenddignity.ca
extraordinarystories.ca
cmacan.org
cmacan.org
cmacan.org
cmacan.org
cmacan.org
reportal.cmacan.org
cmacan.org
cmacan.org
cmacan.org
www.cmacan.org
extraordinarystories.ca
sni.cloudflaressl.com
mail.cmacan.org
mail.cmacan.org
mail.cmacan.org
cmacan.org
cmacan.org
cmacan.org
cmacan.org
*.cmacan.org
cmacan.org
cmacan.org
churchfinder.cmacan.org
mail.cmacan.org
vpn.cmacan.org
defenddignity.ca
mail.cmacan.org
cmacan.org
cmacan.org
cmacan.org
cmacan.org
cmacan.org
mail.cmacan.org
testlab.cmacan.org
ssotest.cmacan.org
cmacan.org
extraordinarystories.ca
cmacan.org
cmacan.org
defenddignity.ca
extraordinarystories.ca
cmacan.org
mail.cmacan.org
extraordinarystories.ca
cmacan.org
defenddignity.ca
extraordinarystories.ca
cmacan.org
cmacan.org
cmacan.org
cmacan.org
cmacan.org
reportal.cmacan.org
cmacan.org
cmacan.org
cmacan.org
www.cmacan.org
extraordinarystories.ca
sni.cloudflaressl.com
mail.cmacan.org
mail.cmacan.org
mail.cmacan.org
cmacan.org
cmacan.org
cmacan.org
cmacan.org
*.cmacan.org
cmacan.org
cmacan.org
churchfinder.cmacan.org
mail.cmacan.org
vpn.cmacan.org
defenddignity.ca
mail.cmacan.org
cmacan.org
cmacan.org
cmacan.org
cmacan.org
cmacan.org
Certificate
The complete raw certificate details for cmacan.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHuTCCBqGgAwIBAgIJAPFzhi3k5PohMA0GCSqGSIb3DQEBCwUAMIHGMQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEl MCMGA1UEChMcU3RhcmZpZWxkIFRlY2hub2xvZ2llcywgSW5jLjEzMDEGA1UECxMq aHR0cDovL2NlcnRzLnN0YXJmaWVsZHRlY2guY29tL3JlcG9zaXRvcnkvMTQwMgYD VQQDEytTdGFyZmllbGQgU2VjdXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcy MB4XDTIwMDEwMzE1NTA0OVoXDTIwMDkyNjE3NDI0NlowODEhMB8GA1UECxMYRG9t YWluIENvbnRyb2wgVmFsaWRhdGVkMRMwEQYDVQQDEwpjbWFjYW4ub3JnMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCatQcoBGohe0tLqomstBWjLK2Ao VASWph6wBI/yGH0ZQfkwRrCFMO3azhx1FqMtF3WxpYiCwW4H2SxGwUnY+dTWqZT4 MaSMzEoFblexJQYnCRp8bLCunwg1AJ9wVN1mT5HmzGMh0JkoGUvT1hGYZ2SidBUs Po1Yy6hClDR51vgPkewIVuOMQT0icr/UGIack4xkcrJgsSJBSBiKj+V7ZmJphmaf HKk9IYSk9FNTsr1oyD2Fl83RhcXZBsemS8hEd8SBTwFz0x7+Ruint+hKmwRSo4Oc GKfpPMbEgwaYDy3IIiSfz2pCSUw7DXwfx4xMq1JxYdPIBlaIjNrdK5u3ZwIDAQAB o4IENTCCBDEwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDgYDVR0PAQH/BAQDAgWgMD0GA1UdHwQ2MDQwMqAwoC6GLGh0dHA6Ly9j cmwuc3RhcmZpZWxkdGVjaC5jb20vc2ZpZzJzMS0xNjYuY3JsMGMGA1UdIARcMFow TgYLYIZIAYb9bgEHFwEwPzA9BggrBgEFBQcCARYxaHR0cDovL2NlcnRpZmljYXRl cy5zdGFyZmllbGR0ZWNoLmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwgYIGCCsG AQUFBwEBBHYwdDAqBggrBgEFBQcwAYYeaHR0cDovL29jc3Auc3RhcmZpZWxkdGVj aC5jb20vMEYGCCsGAQUFBzAChjpodHRwOi8vY2VydGlmaWNhdGVzLnN0YXJmaWVs ZHRlY2guY29tL3JlcG9zaXRvcnkvc2ZpZzIuY3J0MB8GA1UdIwQYMBaAFCVFgWhQ Jjg9Oy0svs1q2bY9s2ZjMIIBgQYDVR0RBIIBeDCCAXSCCmNtYWNhbi5vcmeCDnd3 dy5jbWFjYW4ub3JnghVmci5lbnZpc2lvbmNhbmFkYS5vcmeCFmNob29zZWNoYW5n ZWNhbmFkYS5vcmeCEmVudmlzaW9uY2FuYWRhLm9yZ4IIbXlubWMuY2GCEGRlZmVu ZGRpZ25pdHkuY2GCGHd3dy5hbGxpYW5jZWFzc2VtYmx5LmNvbYISdGVzdGxhYi5j bWFjYW4ub3JnghRhbGxpYW5jZWFzc2VtYmx5LmNvbYIUZmFpdGhob3BlaW5hY3Rp b24uY2GCFHd3dy5kZWZlbmRkaWduaXR5LmNhghVjaC5lbnZpc2lvbmNhbmFkYS5v cmeCFGJ1eWluZ3NleGlzYWNyaW1lLmNhgiJ3d3cuY2F0YWxvZ3VlLmZhaXRoaG9w ZWluYWN0aW9uLmNhghZ3d3cuZW52aXNpb25jYW5hZGEub3Jngh5jYXRhbG9ndWUu ZmFpdGhob3BlaW5hY3Rpb24uY2EwHQYDVR0OBBYEFB1zd83czHitx+KHmuoNn/vi svzsMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUApLkJkLQYWBSHuxOizGdwCjw1 mAT5G9+443fNDsgN3BAAAAFvbBojbwAABAMARjBEAiADFPqAL06xEq1UrgV7OftZ 7h32Vt0roF0fFcFyYsVRUgIgKFEB5C+gOejJZxIv21PE6HXc5/yTDL7Pq7GKOzSW 7cMAdQBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW9sGiR1AAAE AwBGMEQCIAoGriScQp8W7szP8wMqDtGaj8Pyx7BVwCrPOsTVPtPFAiB2tz4/b1c+ 9QtkoFHxheNU+GUgx6/Bple0+/znsa9e/jANBgkqhkiG9w0BAQsFAAOCAQEAr2Hd wFWyupv9RSc3zux++Vvt6pRMuYqsdWuL3ggHXw4QctJM9zgWvMttOW17+yCkOVZ7 a0IE4lsgLz74t5/Enz2MjvZRh7XVwFM/xHTtZWh8mqGU44GprIEudyi4DcS6D69S ktUz8Cz4W7JA2GWrCEfiYjVcacQrjRBBmVMV/OQ+uStVmslEbS1BShhL4HRkt+p5 NqUvUXMKEi1VmkXQLrTwRTrhO0QqOc1BGDhHNu2kAiZUBXL7dyIfVrjbNgCNepkf cnhRPEiafK5DuBiptxuh1GaPVsgfD/BeM5GV8SfEAn/FNAPH+cpb8hGnZ2zdOjmq F53No05MuOrTv97ZoA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCatQcoBGohe0tLqomst BWjLK2AoVASWph6wBI/yGH0ZQfkwRrCFMO3azhx1FqMtF3WxpYiCwW4H2SxGwUnY +dTWqZT4MaSMzEoFblexJQYnCRp8bLCunwg1AJ9wVN1mT5HmzGMh0JkoGUvT1hGY Z2SidBUsPo1Yy6hClDR51vgPkewIVuOMQT0icr/UGIack4xkcrJgsSJBSBiKj+V7 ZmJphmafHKk9IYSk9FNTsr1oyD2Fl83RhcXZBsemS8hEd8SBTwFz0x7+Ruint+hK mwRSo4OcGKfpPMbEgwaYDy3IIiSfz2pCSUw7DXwfx4xMq1JxYdPIBlaIjNrdK5u3 ZwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17398397317134219809 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Technologies, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.starfieldtech.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-03 15:50:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-26 17:42:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cmacan.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23246920347325237725732291847042804205202231651860805398504789647512599536331581127315240262905346228980018449414769718776661522571168464337251263251449907105709597532305802034332508140704748390434511375147591057466936338893418568950438890497533462706010958235824700671226572224530638939949120096152520099476703064541471081137895016388738664422929147931261503761910040390953131282414782772028648831222279040788273060827072285597183874155126380474580086718281918161209449570357674902217344255826943716409047756397558724807969634276996617601914754735404247798868380139884882090363865451403354307540942338755443660928871 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.starfieldtech.com/sfig2s1-166.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114414.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.starfieldtech.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.starfieldtech.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.starfieldtech.com/repository/sfig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 254581685026383d3b2d2cbecd6ad9b63db36663 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (376 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmacan.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cmacan.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fr.envisioncanada.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'choosechangecanada.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'envisioncanada.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mynmc.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'defenddignity.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.allianceassembly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'testlab.cmacan.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allianceassembly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'faithhopeinaction.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.defenddignity.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ch.envisioncanada.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'buyingsexisacrime.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.catalogue.faithhopeinaction.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.envisioncanada.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'catalogue.faithhopeinaction.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1d7377cddccc78adc7e2879aea0d9ffbe2b2fcec . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016f6c1a236f000004030046304402200314fa802f4eb112ad54ae057b39fb59ee1df656dd2ba05d1f15c17262c551520220285101e42fa039e8c967122fdb53c4e875dce7fc930cbecfabb18a3b3496edc30075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f6c1a2475000004030046304402200a06ae249c429f16eecccff3032a0ed19a8fc3f2c7b055c02acf3ac4d53ed3c5022076b73e3f6f573ef50b64a051f185e354f86520c7afc1a657b4fbfce7b1af5efe . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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