www.aoa.org
- American Optometric Association -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 05:7b:36:71:ba:6a:9d:64:0c:b7:db:c8:7b:2b:c5:dd was issued on by DigiCert Inc.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
American Optometric Association
Company registration number:
50965
Organization: American Optometric Association
Organization: American Optometric Association
Address:
243 N. Lindbergh Blvd., Flr. 1
Postal code: 63141-7881
State / Province: Missouri
Locality: St. Louis
Country: US
Postal code: 63141-7881
State / Province: Missouri
Locality: St. Louis
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:7b:36:71:ba:6a:9d:64:0c:b7:db:c8:7b:2b:c5:ddSerial Number (int): 7285896753118425685679321655813064157
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 6d:1d:2b:8e:c3:a9:6e:d1:d1:a1:3f:41:ec:fe:be:5e:b8:28:38:72
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): ec:b8:b1:97:ad:0a:3d:88:5c:69:0a:e1:94:69:b8:23:40:ed:54:b3
Fingerprint (sha256): b1:a8:3d:14:f0:75:c2:17:36:42:47:ac:2b:94:62:b2:65:8f:c4:53:b5:46:d7:ba:21:f0:7c:f6:23:3e:99:c8
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g1.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g1.crl
Check the revocation status for certificate www.aoa.org
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.aoa.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.aoa.org
dev.aoa.org
netapps.aoa.org
stage.aoa.org
minnesota.aoa.org
store.aoa.org
nebraska.aoa.org
dev.aoa.org
netapps.aoa.org
stage.aoa.org
minnesota.aoa.org
store.aoa.org
nebraska.aoa.org
Other certificates including the domain name aoa.org
(limited to 100 certificates)
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
dg-0035-c25fe2a.client-tls.adestra.com
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
aoa.org
cordialclick.aoa.org
www.aoa.org
*.aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
cordialdata.aoa.org
*.aoa.org
*.stage.aoa.org
*.aoa.org
www.aoa.org
dg-0035-c25fe2a.client-tls.adestra.com
*.aoa.org
www.aoa.org
secure.aoa.org
secure.aoa.org
www.aoa.org
cordialdata.aoa.org
api.card.aoa.org
www.aoa.org
aoa.org
secure.aoa.org
*.aoa.org
aoa.org
about.card.aoa.org
ithelp.patchi.com
aoa.mercantile.cards
aafprs.mercantile.cards
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
cordialclick.aoa.org
auth.card.aoa.org
cordialdata.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
*.aoa.org
aafprs.mercantile.cards
*.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
aoa.org
www.aoa.org
mail.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
soporte.iobot.chat
help.dealers.energy
*.aoa.org
secure.aoa.org
stage.aoa.org
mail.aoa.org
*.aoa.org
stage.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
dg-0035-c25fe2a.client-tls.adestra.com
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
aoa.org
cordialclick.aoa.org
www.aoa.org
*.aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
cordialdata.aoa.org
*.aoa.org
*.stage.aoa.org
*.aoa.org
www.aoa.org
dg-0035-c25fe2a.client-tls.adestra.com
*.aoa.org
www.aoa.org
secure.aoa.org
secure.aoa.org
www.aoa.org
cordialdata.aoa.org
api.card.aoa.org
www.aoa.org
aoa.org
secure.aoa.org
*.aoa.org
aoa.org
about.card.aoa.org
ithelp.patchi.com
aoa.mercantile.cards
aafprs.mercantile.cards
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
cordialclick.aoa.org
auth.card.aoa.org
cordialdata.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
*.aoa.org
aafprs.mercantile.cards
*.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
aoa.org
www.aoa.org
mail.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
soporte.iobot.chat
help.dealers.energy
*.aoa.org
secure.aoa.org
stage.aoa.org
mail.aoa.org
*.aoa.org
stage.aoa.org
*.aoa.org
Certificate
The complete raw certificate details for www.aoa.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH3DCCBsSgAwIBAgIQBXs2cbpqnWQMt9vIeyvF3TANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE1MTIwMzAwMDAwMFoXDTE2MTIwNzEy MDAwMFowggENMR0wGwYDVQQPDBRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysG AQQBgjc8AgEDEwJVUzEVMBMGCysGAQQBgjc8AgECEwRPaGlvMQ4wDAYDVQQFEwU1 MDk2NTEnMCUGA1UECRMeMjQzIE4uIExpbmRiZXJnaCBCbHZkLiwgRmxyLiAxMRMw EQYDVQQREwo2MzE0MS03ODgxMQswCQYDVQQGEwJVUzERMA8GA1UECBMITWlzc291 cmkxEjAQBgNVBAcTCVN0LiBMb3VpczEoMCYGA1UEChMfQW1lcmljYW4gT3B0b21l dHJpYyBBc3NvY2lhdGlvbjEUMBIGA1UEAxMLd3d3LmFvYS5vcmcwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGc7rL66irQW1OHuogThmjo8IHxnYW95bg OiAUWA4lcdvO+OPxllzujJmi4WfQcN9HL8ypPI+M2GcguIZu38k6rMBOFV20wwpv 5DodXWynQBtmX6hspI0+ZMVJA3BAviNRUG+sLwXual2f7FPc3SUH4mFZhUSmEWMU Foz4TWzeApha6YAOQ4821r9CLQWoNHPfT+DqpYHxiS4qVDLJp2FH1yJgnQDXREhS 8C42DzXMur9ZYHBPvTZBicBtjDgMRN7lGWnO01DjczWkCuEQ1ucCQAzfENvsMT0n CrFmj9xE7UrLRaapqAgQPadQJW3muaSvUCWQLaZ13u5VyIen7oczAgMBAAGjggPM MIIDyDAfBgNVHSMEGDAWgBQ901Cl1qCt7vNKYApl0yHU+PjWDzAdBgNVHQ4EFgQU bR0rjsOpbtHRoT9B7P6+XrgoOHIwdwYDVR0RBHAwboILd3d3LmFvYS5vcmeCC2Rl di5hb2Eub3Jngg9uZXRhcHBzLmFvYS5vcmeCDXN0YWdlLmFvYS5vcmeCEW1pbm5l c290YS5hb2Eub3Jngg1zdG9yZS5hb2Eub3JnghBuZWJyYXNrYS5hb2Eub3JnMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwdQYD VR0fBG4wbDA0oDKgMIYuaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3NoYTItZXYt c2VydmVyLWcxLmNybDA0oDKgMIYuaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3No YTItZXYtc2VydmVyLWcxLmNybDBLBgNVHSAERDBCMDcGCWCGSAGG/WwCATAqMCgG CCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAcGBWeBDAEB MIGIBggrBgEFBQcBAQR8MHowJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2lj ZXJ0LmNvbTBSBggrBgEFBQcwAoZGaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29t L0RpZ2lDZXJ0U0hBMkV4dGVuZGVkVmFsaWRhdGlvblNlcnZlckNBLmNydDAMBgNV HRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgCkuQmQtBhYFIe7 E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAVaARL59AAAEAwBHMEUCIQCpVvznIHkK ylL2ag0ddArKo2Wd85xe5rHZyKEnOUFfHgIgBIhNkD1ta/7GAHUXmNiL6pI8X9g7 WcI88dbJMQyqCnAAdgBo9pj4H2SCvjqM7rkoHUz8cVFdZ5PURNEKZ6y7T0/7xAAA AVaARL5GAAAEAwBHMEUCIFDpXbqFVfkgH1xYSsXUfFRgDYVaI1l9jHDwACFp6/Ox AiEAysNw4s0PA534yglT3MRvgXRmSGnEYDHd7clYwb06i7EAdwBWFAaaL9fC7NP1 4b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAVaARL65AAAEAwBIMEYCIQC39oMSvhsw oTeC2Uzf8n/090dpFpATLrP7UMlgImgWnAIhAP3e5cHnNRBknX2Jng9tg8A/EJ79 VJ7+KRGtJ8BAHaQcMA0GCSqGSIb3DQEBCwUAA4IBAQCzpWdgrfxCipjSS/Fbcp1n +b0N6yK5a/MouKkHf6M+N6Z3i693vTN59bHWctvXFzBrBSskeNbPt36+wzjtJQny ophvq/Magtqtsr+63Rfn1OplyR8qD+gtvFlk/EHVEBfRanM2d8mGNDwjbFrrWUIY UuDqKuqJZdhZTEWOqyy78g3fO6KHfKRAzQmn95SFaba4myIw11lNeQCrkSKfn2Ga ruLQlTPOSUaEAT9tFGOTKWy3VD+eb0Nxqmbtf4GoT995XPUn8cAhZGPEzsLd1J9R YyuKtlro0brr9krZ32+1pJ3ZePB2Z+ZvrfMLh2rn+d7F1Ls82BxTy8ky4EmuQHQ6 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnO6y+uoq0FtTh7qIE4Z o6PCB8Z2FveW4DogFFgOJXHbzvjj8ZZc7oyZouFn0HDfRy/MqTyPjNhnILiGbt/J OqzAThVdtMMKb+Q6HV1sp0AbZl+obKSNPmTFSQNwQL4jUVBvrC8F7mpdn+xT3N0l B+JhWYVEphFjFBaM+E1s3gKYWumADkOPNta/Qi0FqDRz30/g6qWB8YkuKlQyyadh R9ciYJ0A10RIUvAuNg81zLq/WWBwT702QYnAbYw4DETe5RlpztNQ43M1pArhENbn AkAM3xDb7DE9JwqxZo/cRO1Ky0WmqagIED2nUCVt5rmkr1AlkC2mdd7uVciHp+6H MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7285896753118425685679321655813064157 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-07 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ohio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '50965' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '243 N. Lindbergh Blvd., Flr. 1' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '63141-7881' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Missouri' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'St. Louis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'American Optometric Association' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.aoa.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25052252812538209146064371532775431202734192263642317135828674339993500854691983480931347060814562603715185079102751267022142329513320433308583507004963056566639400017925414939807258935333777704013838120070847919173122671177059073741479770138935004670496331535840073302971549579113722766607106998244939622500144463680747441323642124166797752326064200857127918419845752525003495046106383573815031833569570233524207910239118750158196604442293354329007763164269532655823135365920913260790466975902723922343664583225260117423812800112242580817864861948871059547318992712781880795558407289680632106091239019926186510681907 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6d1d2b8ec3a96ed1d1a13f41ecfebe5eb8283872 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'netapps.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minnesota.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nebraska.aoa.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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