apps.clemis.org
- Oakland County -
Issued by Sectigo RSA Extended Validation Secure Server CA
About this certificate
This digital certificate with serial number 58:0a:52:2f:92:c4:17:ba:69:38:68:d7:31:fa:cd:94 was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Oakland County
Company registration number:
1819-01-12
Organization: Oakland County
Organization unit: Information Technology
Organization unit: Hosted by Oakland County
Organization unit: COMODO EV Multi-Domain SSL
Organization: Oakland County
Organization unit: Information Technology
Organization unit: Hosted by Oakland County
Organization unit: COMODO EV Multi-Domain SSL
Address:
1200 N. Telegraph
Postal code: 48341
State / Province: Michigan
Locality: Pontiac
Country: US
Postal code: 48341
State / Province: Michigan
Locality: Pontiac
Country: US
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 58:0a:52:2f:92:c4:17:ba:69:38:68:d7:31:fa:cd:94Serial Number (int): 117025653524390955646885233149154610580
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 9c:d7:f9:41:44:05:3d:c2:b3:36:90:b2:11:e0:87:f0:11:28:5d:88
AuthorityKeyId: 2c:69:ff:80:c9:87:90:ae:34:e1:b4:e7:4c:93:85:99:40:e9:a7:b2
Fingerprint (sha1): 8c:2a:26:03:a9:9e:ff:46:e0:ec:14:d7:c1:96:a3:6a:bb:9c:cc:c7
Fingerprint (sha256): b4:5b:f7:08:14:30:b8:8b:48:37:fe:7b:8d:67:cb:85:70:d3:37:4b:dc:d2:e3:26:15:d9:53:ed:f6:0e:fc:ed
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl
Check the revocation status for certificate apps.clemis.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for apps.clemis.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
apps.clemis.org
payments.clemis.org
payments.clemis.org
Other certificates including the domain name clemis.org
(limited to 100 certificates)
apps.clemis.org
qasecure.clemis.org
apps.clemis.org
apps.clemis.org
imperva.com
clemislite.clemis.org
clemisweb.clemis.org
clmsupp.clemis.org
apps.clemis.org
tamauth.clemis.org
imperva.com
apps.clemis.org
qasecure.clemis.org
picturelink.clemis.org
secure.clemis.org
apps2.clemis.org
clmsupp.clemis.org
APPS.CLEMIS.ORG
auth.clemis.org
auth.clemis.org
download.clemis.org
auth.clemis.org
clemisweb.clemis.org
auth.clemis.org
clmnm122.clemis.org
secure.clemis.org
apps.clemis.org
auth.clemis.org
picturelink.clemis.org
imperva.com
download.clemis.org
auth.clemis.org
download.clemis.org
apps.clemis.org
cvdb.clemis.org
clemis.org
clmsupp.clemis.org
clemisweb.clemis.org
download.clemis.org
picturelink.clemis.org
apps.clemis.org
auth.clemis.org
apps.clemis.org
picturelink.clemis.org
auth.clemis.org
apps2.clemis.org
appssandbox.clemis.org
apps.clemis.org
picturelink.clemis.org
gisappsd.clemis.org
apps2.clemis.org
oakvideo.clemis.org
clmsupp.clemis.org
maps.clemis.org
maps.clemis.org
apps.clemis.org
clmnm121.clemis.org
cvdb.clemis.org
apps.clemis.org
picturelink.clemis.org
apps.clemis.org
oakgov.com
picturelink.clemis.org
qasecure.clemis.org
apps.clemis.org
apps.clemis.org
imperva.com
clemislite.clemis.org
clemisweb.clemis.org
clmsupp.clemis.org
apps.clemis.org
tamauth.clemis.org
imperva.com
apps.clemis.org
qasecure.clemis.org
picturelink.clemis.org
secure.clemis.org
apps2.clemis.org
clmsupp.clemis.org
APPS.CLEMIS.ORG
auth.clemis.org
auth.clemis.org
download.clemis.org
auth.clemis.org
clemisweb.clemis.org
auth.clemis.org
clmnm122.clemis.org
secure.clemis.org
apps.clemis.org
auth.clemis.org
picturelink.clemis.org
imperva.com
download.clemis.org
auth.clemis.org
download.clemis.org
apps.clemis.org
cvdb.clemis.org
clemis.org
clmsupp.clemis.org
clemisweb.clemis.org
download.clemis.org
picturelink.clemis.org
apps.clemis.org
auth.clemis.org
apps.clemis.org
picturelink.clemis.org
auth.clemis.org
apps2.clemis.org
appssandbox.clemis.org
apps.clemis.org
picturelink.clemis.org
gisappsd.clemis.org
apps2.clemis.org
oakvideo.clemis.org
clmsupp.clemis.org
maps.clemis.org
maps.clemis.org
apps.clemis.org
clmnm121.clemis.org
cvdb.clemis.org
apps.clemis.org
picturelink.clemis.org
apps.clemis.org
oakgov.com
picturelink.clemis.org
Certificate
The complete raw certificate details for apps.clemis.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHwjCCBqqgAwIBAgIQWApSL5LEF7ppOGjXMfrNlDANBgkqhkiG9w0BAQsFADCB kTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTkwNwYDVQQD EzBTZWN0aWdvIFJTQSBFeHRlbmRlZCBWYWxpZGF0aW9uIFNlY3VyZSBTZXJ2ZXIg Q0EwHhcNMTkwMTI0MDAwMDAwWhcNMjEwMjIyMjM1OTU5WjCCAUAxEzARBgNVBAUT CjE4MTktMDEtMTIxEzARBgsrBgEEAYI3PAIBAxMCVVMxGjAYBgNVBA8TEUdvdmVy bm1lbnQgRW50aXR5MQswCQYDVQQGEwJVUzEOMAwGA1UEERMFNDgzNDExETAPBgNV BAgTCE1pY2hpZ2FuMRAwDgYDVQQHEwdQb250aWFjMRowGAYDVQQJExExMjAwIE4u IFRlbGVncmFwaDEXMBUGA1UEChMOT2FrbGFuZCBDb3VudHkxHzAdBgNVBAsTFklu Zm9ybWF0aW9uIFRlY2hub2xvZ3kxITAfBgNVBAsTGEhvc3RlZCBieSBPYWtsYW5k IENvdW50eTEjMCEGA1UECxMaQ09NT0RPIEVWIE11bHRpLURvbWFpbiBTU0wxGDAW BgNVBAMTD2FwcHMuY2xlbWlzLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBALl0PDIFTIT2zP5keyBTfM/SMxOjYixfsE249K5KnW8MO0wn/GrWlPCT pZ1/IgSiQO5KMSz/35/21V8Nn554EEzHmhfl5EgJ5whrU6rQ7r5j0PCD6eJo1FS2 85o4OdFJg4LT+lQGiJlamN7LswnwibEjEk0gn3Uql0/hnbg+b/QShrts1Z09s75l 9CAHs96Ga4dBr0ouCJPiQDx1aICP+QqCmEMxW/rwAKGBVxqfAn5F7qm6tswJ2UDE amAx98yVaL6yl26Zl2HXiv7F8X31BAGbU2wsCmAYUCW9AEaakSebcCLQJdBhHp5m PeciOy0dlU/KgPV6Wr7QzZyJ3xehQOMCAwEAAaOCA2IwggNeMB8GA1UdIwQYMBaA FCxp/4DJh5CuNOG050yThZlA6aeyMB0GA1UdDgQWBBSc1/lBRAU9wrM2kLIR4Ifw EShdiDAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwSQYDVR0gBEIwQDA1BgwrBgEEAbIxAQIBBQEwJTAj BggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwBwYFZ4EMAQEwVgYD VR0fBE8wTTBLoEmgR4ZFaHR0cDovL2NybC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNB RXh0ZW5kZWRWYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3JsMIGGBggrBgEFBQcB AQR6MHgwUQYIKwYBBQUHMAKGRWh0dHA6Ly9jcnQuc2VjdGlnby5jb20vU2VjdGln b1JTQUV4dGVuZGVkVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNydDAjBggrBgEF BQcwAYYXaHR0cDovL29jc3Auc2VjdGlnby5jb20wLwYDVR0RBCgwJoIPYXBwcy5j bGVtaXMub3JnghNwYXltZW50cy5jbGVtaXMub3JnMIIBgAYKKwYBBAHWeQIEAgSC AXAEggFsAWoAdgDuS723dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAWiB ImmgAAAEAwBHMEUCIQD9AMWrSyEUpV1KODP7Lrgdf2Ni609GEEU1CiYn6jDXKQIg BRLErferidFHWB7A7GNyxPmxd0SqOA2Zv2g9ljEWGrsAdwBvU3asMfAxGdiZAKRR Ff93FRwR2QLBACkGjbIImjfZEwAAAWiBImmiAAAEAwBIMEYCIQCAN3g7kj2k6G7b O6zrR8kL/Ny4PfxvpPwkHjIC34Ht4wIhAKraaKaokaE4w8t63VJE+e2yIAVFBrmY 64bgAhLgg8IXAHcAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFo gSJpoAAABAMASDBGAiEAv6qo/KO7Ue+HOAJU9yhWIobsBDQNsbOXgTIEV1NXZw0C IQCk7Oqoy2L5lKlyZWiSGnF5A13JgbDyQdQUDwECeIVKqzANBgkqhkiG9w0BAQsF AAOCAQEAN/MqncDPFkCxFymb9BxOLkR+2pLRW7Kk2O8qjPwyfkazGJe+10G+LE8v /xUJwLm6PBPPOVlPaC80SeDDCrQ3JeCMdZSNpNrGhj6g1CYk+A49PXhr18c73pUB UhAfZLHLSy3v5B3W0Gz5TEgJQRGnBkSnFMA+GNqXy8IyN4iBnyZa0Ry4BhFk+9B/ o0UYSyzZ4U1rM5QkmnJZWJTI3pKWSmo7+l3gb0+XzCuYg7XEqVfv69eVn0orl0PD OyNgEUzuPbpM1OfBZypGcjoZnDBc89/UHga4Nk8+4EjmqJl8oWTOU/k34/iV/+D/ H1b/fqFjXuCJzyKz9yOS/pvmAD/n5Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXQ8MgVMhPbM/mR7IFN8 z9IzE6NiLF+wTbj0rkqdbww7TCf8ataU8JOlnX8iBKJA7koxLP/fn/bVXw2fnngQ TMeaF+XkSAnnCGtTqtDuvmPQ8IPp4mjUVLbzmjg50UmDgtP6VAaImVqY3suzCfCJ sSMSTSCfdSqXT+GduD5v9BKGu2zVnT2zvmX0IAez3oZrh0GvSi4Ik+JAPHVogI/5 CoKYQzFb+vAAoYFXGp8CfkXuqbq2zAnZQMRqYDH3zJVovrKXbpmXYdeK/sXxffUE AZtTbCwKYBhQJb0ARpqRJ5twItAl0GEenmY95yI7LR2VT8qA9XpavtDNnInfF6FA 4wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 117025653524390955646885233149154610580 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Extended Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1819-01-12' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '48341' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Michigan' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pontiac' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1200 N. Telegraph' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Oakland County' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by Oakland County' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO EV Multi-Domain SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'apps.clemis.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23411404101653827893565171643202193788018255878157286420589451024610131001260388801678347169306666739872347185630249392343856977231810143141868951564981529392999830156200503811244956192273011674163922468688370987688985207726892518651179278708487629717924154968122193163015925772055012835193052375400589357595715088519987294188022138475421566550488348495267443190717647168809887425503668937560115259131959561450374891530527158850918774286488428370269186772320094711056212404071429690502573459944493433761305895367459219658156460408725772996547908562755387717768656784088041290705685725472365351625407456493025376682211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2c69ff80c98790ae34e1b4e74c93859940e9a7b2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9cd7f94144053dc2b33690b211e087f011285d88 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.5.1 (Comodo EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (122 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.clemis.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'payments.clemis.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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