ci.int.onvio.us

- Thomson Reuters Inc -

Issued by COMODO RSA Organization Validation Secure Server CA

About this certificate

This digital certificate with serial number c1:45:72:79:59:c2:61:a8:cc:cc:e0:6e:24:6a:d4:18 was issued on by COMODO CA Limited.

With 25 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Thomson Reuters Inc

Organization: Thomson Reuters Inc
Address: 3 Times Square
Postal code: 10036
State / Province: NY
Locality: New York
Country: US

COMODO CA Limited

Organization: COMODO CA Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): c1:45:72:79:59:c2:61:a8:cc:cc:e0:6e:24:6a:d4:18
Serial Number (int): 256901593478809305759680754444124476440
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 6b:f6:fe:88:b6:ae:cf:bc:58:fe:21:1f:d2:78:f9:26:e6:69:e7:46
AuthorityKeyId: 9a:f3:2b:da:cf:ad:4f:b6:2f:bb:2a:48:48:2a:12:b7:1b:42:c1:24

Fingerprint (sha1): 67:06:39:74:72:83:96:64:78:e8:52:18:45:1c:69:5b:fd:51:b4:f8
Fingerprint (sha256): b8:f9:51:99:6b:80:ce:b9:ca:9a:71:d1:13:c8:9a:85:9b:3a:5d:68:be:b6:98:73:e9:b7:5c:5a:e2:a0:14:c7

Issuing Certificate URL: http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.comodoca.com
CRL Distribution Point: http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl

Check the revocation status for certificate ci.int.onvio.us

25

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ci.int.onvio.us

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ci.int.onvio.us
ci.int.auth.onvio.us
ci.int.bankfeeds.thomsonreuters.com
ci.int.cs-user.thomsonreuters.com
ci.int.identity.tax.thomsonreuters.com
ci.int.mfa.onvio.us
ci.int.onbalance.thomsonreuters.ca
ci.int.onbalance.thomsonreuters.co.uk
ci.int.onbalance.thomsonreuters.com.ar
ci.int.onbalance.thomsonreuters.com.au
ci.int.onbalance.thomsonreuters.com.br
ci.int.onbalance.thomsonreuters.nl
ci.int.onboard.tax.thomsonreuters.com
ci.int.onboarding.mypaysolutions.com
ci.int.onvio.ca
ci.int.onvio.co.uk
ci.int.onvio.com.ar
ci.int.onvio.com.au
ci.int.onvio.com.br
ci.int.onvio.thomsonreuters.nl
ci.int.renew.tax.thomsonreuters.com
ci.int.samba.onvio.com.ar
ci.int.samba.onvio.com.br
ci.int.samba.onvio.us
ci.int.samba.thomsonreuters.com

Other certificates including the domain name onvio.us

(limited to 100 certificates)
coreservices.int.demo.onvio.us
qed.onvio.us
qed.onvio.us
ci.onvio.us

demo.onvio.us
onvio.us
demo.onvio.us
ci.int.onvio.us
qed.api.onvio.us
taxcenter.int.demo.onvio.us
demo.int.onvio.us
qed.onvio.us
demo.int.onvio.us
onvio.us
internaloperations.int.onvio.us
www.onvio.us
es.ci.int.onvio.us
demo.api.onvio.us
tools.int.demo.onvio.us
onvio.us
onvio.us
qed.onvio.us
qed.onvio.us
es.demo.int.onvio.us
onvio.us
ci.api.onvio.us
ci.onvio.us
ci.int.onvio.us
qed.onvio.us
demo.onvio.us
onvio.us
qed.onvio.us
demo.onvio.us
internaloperations.int.demo.onvio.us
onvio.us
onvio.us
onvio.us
demo.onvio.us
ci.onvio.us
qed.onvio.us
onvio.us
*.onvio.us
demo.int.onvio.us
demo.onvio.us
onvio.us
api.onvio.us
uds.int.demo.onvio.us
internaloperations.int.onvio.us
*.platform.int.onvio.us
es.ci.int.onvio.us
ci.onvio.us
ci.onvio.us
es.demo.int.onvio.us
onvio.us
int.onviosamba.xyz

ci.int.onvio.us
onvio.us
demo.int.onvio.us
ci.int.onvio.us
ci.int.onvio.us
ci.onvio.us
demo.onvio.us
ci.int.onvio.us
ci.onvio.us
ci.onvio.us
onvio.us
ci.int.onvio.us
es.int.onvio.us
*.platform.int.onvio.us
demo.onvio.us
demo.onvio.us
onvio.us
ci.int.onvio.us
demo.int.onvio.us
ci.onvio.us
int.onviosamba.xyz
qed.onvio.us
ci.onvio.us
demo.onvio.us
qed.onvio.us

Certificate

The complete raw certificate details for ci.int.onvio.us in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIJ+DCCCOCgAwIBAgIRAMFFcnlZwmGozMzgbiRq1BgwDQYJKoZIhvcNAQELBQAw
gZYxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO
BgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMTwwOgYD
VQQDEzNDT01PRE8gUlNBIE9yZ2FuaXphdGlvbiBWYWxpZGF0aW9uIFNlY3VyZSBT
ZXJ2ZXIgQ0EwHhcNMTgxMTE1MDAwMDAwWhcNMjAxMTE0MjM1OTU5WjCBjjELMAkG
A1UEBhMCVVMxDjAMBgNVBBETBTEwMDM2MQswCQYDVQQIEwJOWTERMA8GA1UEBxMI
TmV3IFlvcmsxFzAVBgNVBAkTDjMgVGltZXMgU3F1YXJlMRwwGgYDVQQKExNUaG9t
c29uIFJldXRlcnMgSW5jMRgwFgYDVQQDEw9jaS5pbnQub252aW8udXMwggEiMA0G
CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk4TmWFyeebW+xwnClV/ip2Vnt12Z2
TYuLHYL4QGaSIDtW4JIpF9MKL+NoYShQBPnYOT/wU2/rmZbfXVLyEthFazjDau5G
uiq6hQi1z9IxfWWKq/YLkwBtasyLMtkNocp3HQCnbjNqmWW5kHEmkTL25wq9JTN+
3cijROvEs8v4mCWYI9s3N+9msj/Opt/R2z7mBRSYu4vwow1//xMmHZibSxCyNDxr
NgefpprUv/o/BVZmclyraFU45U3U1xf+tGBiBPxSKj2IQGXYcMxttNMF584xrPPV
uBxHotW0ggRk9lqfU96BFCtmOAJXFVXBxJ95UugncUYoZD5IadfVCzXXAgMBAAGj
ggZFMIIGQTAfBgNVHSMEGDAWgBSa8yvaz61Pti+7KkhIKhK3G0LBJDAdBgNVHQ4E
FgQUa/b+iLauz7xY/iEf0nj5JuZp50YwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB
/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFAGA1UdIARJMEcw
OwYMKwYBBAGyMQECAQMEMCswKQYIKwYBBQUHAgEWHWh0dHBzOi8vc2VjdXJlLmNv
bW9kby5jb20vQ1BTMAgGBmeBDAECAjBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8v
Y3JsLmNvbW9kb2NhLmNvbS9DT01PRE9SU0FPcmdhbml6YXRpb25WYWxpZGF0aW9u
U2VjdXJlU2VydmVyQ0EuY3JsMIGLBggrBgEFBQcBAQR/MH0wVQYIKwYBBQUHMAKG
SWh0dHA6Ly9jcnQuY29tb2RvY2EuY29tL0NPTU9ET1JTQU9yZ2FuaXphdGlvblZh
bGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9v
Y3NwLmNvbW9kb2NhLmNvbTCCAwQGA1UdEQSCAvswggL3gg9jaS5pbnQub252aW8u
dXOCFGNpLmludC5hdXRoLm9udmlvLnVzgiNjaS5pbnQuYmFua2ZlZWRzLnRob21z
b25yZXV0ZXJzLmNvbYIhY2kuaW50LmNzLXVzZXIudGhvbXNvbnJldXRlcnMuY29t
giZjaS5pbnQuaWRlbnRpdHkudGF4LnRob21zb25yZXV0ZXJzLmNvbYITY2kuaW50
Lm1mYS5vbnZpby51c4IiY2kuaW50Lm9uYmFsYW5jZS50aG9tc29ucmV1dGVycy5j
YYIlY2kuaW50Lm9uYmFsYW5jZS50aG9tc29ucmV1dGVycy5jby51a4ImY2kuaW50
Lm9uYmFsYW5jZS50aG9tc29ucmV1dGVycy5jb20uYXKCJmNpLmludC5vbmJhbGFu
Y2UudGhvbXNvbnJldXRlcnMuY29tLmF1giZjaS5pbnQub25iYWxhbmNlLnRob21z
b25yZXV0ZXJzLmNvbS5icoIiY2kuaW50Lm9uYmFsYW5jZS50aG9tc29ucmV1dGVy
cy5ubIIlY2kuaW50Lm9uYm9hcmQudGF4LnRob21zb25yZXV0ZXJzLmNvbYIkY2ku
aW50Lm9uYm9hcmRpbmcubXlwYXlzb2x1dGlvbnMuY29tgg9jaS5pbnQub252aW8u
Y2GCEmNpLmludC5vbnZpby5jby51a4ITY2kuaW50Lm9udmlvLmNvbS5hcoITY2ku
aW50Lm9udmlvLmNvbS5hdYITY2kuaW50Lm9udmlvLmNvbS5icoIeY2kuaW50Lm9u
dmlvLnRob21zb25yZXV0ZXJzLm5sgiNjaS5pbnQucmVuZXcudGF4LnRob21zb25y
ZXV0ZXJzLmNvbYIZY2kuaW50LnNhbWJhLm9udmlvLmNvbS5hcoIZY2kuaW50LnNh
bWJhLm9udmlvLmNvbS5icoIVY2kuaW50LnNhbWJhLm9udmlvLnVzgh9jaS5pbnQu
c2FtYmEudGhvbXNvbnJldXRlcnMuY29tMIIBfAYKKwYBBAHWeQIEAgSCAWwEggFo
AWYAdQDuS723dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAWcYclqXAAAE
AwBGMEQCIAso4BI7w7PU/817aR9uxff8rn0JjNo6aVyTgys1TWRmAiBgwnJsv6zN
QezkehTml7HzbhaT37Sn54wqnS4LnmHtJAB2AF6nc/nfVsDntTZIfdBJ4DJ6kZoM
hKESEoQYdZaBcUVYAAABZxhyWt0AAAQDAEcwRQIhAIzrnhgmz3Akaq3IrKjOiQJR
2OVulKYArAnReZwcdmaQAiA/65GobnCEw4dOd/a2qXZhAyZvIWLj06BMZxkNJBFX
DwB1APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiqjrJzAAABZxhyWt0AAAQD
AEYwRAIgSiCjVoF7cpwuCprHhsa5PjFJw6buo/YpH/+eqiapnF8CIE/xJkdlcLZZ
bDjnu7WNKViZzmvq9UzSjqZ8I4qR4QXcMA0GCSqGSIb3DQEBCwUAA4IBAQA3+RBc
tqIRaASLxfFlIDzgNuTMMVIFIFVc4tjWRXRJrKhJahCh7x/LFUi7fzwXLBsIAhUz
uAf9Qe8nG4TyUfOPkd1gt2sCZyIwq6j2zwVDzmHmo7bpbjDEuEO+yu2Xx7BngfA9
qLkXaHUq5EJSXGAOP32hZxOOc7f55dQUix+9NxS21z08mjWiZOF4miRfEGFKDdZg
Z6WbYFUF+RgY18B9AT6TKLNT3jrDJKlsTcVbsIMCchic1tT/OTbiBkJYv5SE6UKh
jO6giY7bDzFjDxU6mAduDQu7MqKbeNkEmnuQJiYVL0SRtbYlwmkXK89UDvea+ai0
SPFtykcnV7gbs3Xq
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOE5lhcnnm1vscJwpVf4
qdlZ7ddmdk2Lix2C+EBmkiA7VuCSKRfTCi/jaGEoUAT52Dk/8FNv65mW311S8hLY
RWs4w2ruRroquoUItc/SMX1liqv2C5MAbWrMizLZDaHKdx0Ap24zaplluZBxJpEy
9ucKvSUzft3Io0TrxLPL+JglmCPbNzfvZrI/zqbf0ds+5gUUmLuL8KMNf/8TJh2Y
m0sQsjQ8azYHn6aa1L/6PwVWZnJcq2hVOOVN1NcX/rRgYgT8Uio9iEBl2HDMbbTT
BefOMazz1bgcR6LVtIIEZPZan1PegRQrZjgCVxVVwcSfeVLoJ3FGKGQ+SGnX1Qs1
1wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 256901593478809305759680754444124476440
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO RSA Organization Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-15 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-14 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '10036'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NY'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '3 Times Square'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thomson Reuters Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ci.int.onvio.us'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20814144574885679635584655925784870066969430268647964802824110663606237483458668104392928730653560510558661271139070591105571632911800067344758723329824493205403321016139574433100735016554087306323115805737718990454185544133387566361626576300352148955812577019925483666267504549479520943880961831345986385284612932262017279954063738901629044011934816748813308936843617240822508577741889323389524630938903473380020754190355434512895588850935686972264320071413046490802348358344771674053573297579884882861528726991012561170460736895196338159081796436841386861307976296123325366327899329401662808300302241782654755878359
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9af32bdacfad4fb62fbb2a48482a12b71b42c124
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6bf6fe88b6aecfbc58fe211fd278f926e669e746
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (127 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (763 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onvio.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.auth.onvio.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.bankfeeds.thomsonreuters.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.cs-user.thomsonreuters.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.identity.tax.thomsonreuters.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.mfa.onvio.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onbalance.thomsonreuters.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onbalance.thomsonreuters.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onbalance.thomsonreuters.com.ar'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onbalance.thomsonreuters.com.au'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onbalance.thomsonreuters.com.br'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onbalance.thomsonreuters.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onboard.tax.thomsonreuters.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onboarding.mypaysolutions.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onvio.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onvio.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onvio.com.ar'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onvio.com.au'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onvio.com.br'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.onvio.thomsonreuters.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.renew.tax.thomsonreuters.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.samba.onvio.com.ar'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.samba.onvio.com.br'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.samba.onvio.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.int.samba.thomsonreuters.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes)
							0166007500ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000016718725a97000004030046304402200b28e0123bc3b3d4ffcd7b691f6ec5f7fcae7d098cda3a695c93832b354d6466022060c2726cbfaccd41ece47a14e697b1f36e1693dfb4a7e78c2a9d2e0b9e61ed240076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016718725add00000403004730450221008ceb9e1826cf70246aadc8aca8ce890251d8e56e94a600ac09d1799c1c76669002203feb91a86e7084c3874e77f6b6a9766103266f2162e3d3a04c67190d2411570f007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016718725add000004030046304402204a20a356817b729c2e0a9ac786c6b93e3149c3a6eea3f6291fff9eaa26a99c5f02204ff126476570b6596c38e7bbb58d295899ce6beaf54cd28ea67c238a91e105dc
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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