www.banksanjuans.com
- Glacier Bank -
Issued by GeoTrust EV RSA CA G2
About this certificate
This digital certificate with serial number 0d:a6:f9:99:d9:67:ed:e8:89:81:48:5e:34:57:bd:c5 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Glacier Bank
Company registration number:
D093435
Organization: Glacier Bank
Organization: Glacier Bank
State / Province:
Montana
Locality: Kalispell
Country: US
Locality: Kalispell
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:a6:f9:99:d9:67:ed:e8:89:81:48:5e:34:57:bd:c5Serial Number (int): 18146947732904751663526301001527573957
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 48:3c:90:c7:09:c3:c7:3a:2d:bb:3a:4f:f3:b3:f5:69:bc:22:42:a8
AuthorityKeyId: 28:d2:cf:ee:09:84:75:dd:b5:b2:b5:bf:3c:d5:a0:c6:73:88:5d:1f
Fingerprint (sha1): 3f:3d:6e:9d:9a:08:83:c2:d4:a9:07:af:a7:84:76:e1:25:2f:aa:ed
Fingerprint (sha256): c1:1e:a9:d8:20:7a:df:96:b0:2e:fd:9a:a8:7b:2a:60:e9:97:0c:17:2d:71:91:c9:f9:cd:e5:6f:8d:5b:cd:cb
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustEVRSACAG2.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustEVRSACAG2.crl
Check the revocation status for certificate www.banksanjuans.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.banksanjuans.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA512 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.banksanjuans.com
banksanjuans.com
banksanjuans.com
Other certificates including the domain name banksanjuans.com
(limited to 100 certificates)
www.banksanjuans.com
mortgage.1stbmt.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
www.banksanjuans.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
mortgage.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.banksanjuans.com
mortgage.gofirstbank.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.gofirstbank.com
mortgage.1stbmt.com
mortgage.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
banksanjuans.com
mortgage.banksanjuans.com
mortgage.1stbmt.com
www.banksanjuans.com
mortgage.valleybankhelena.com.roostify.com
mortgage.banksanjuans.com
mortgage.fsbwy.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
www.banksanjuans.com
mortgage.1stbmt.com
www.banksanjuans.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.fcbutah.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.collegiatepeaksbank.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.banksanjuans.com
banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.quickapply.banksanjuans.com
mortgage.collegiatepeaksbank.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
banksanjuans.com
mortgage.1stbmt.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
www.banksanjuans.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
mortgage.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.banksanjuans.com
mortgage.gofirstbank.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.gofirstbank.com
mortgage.1stbmt.com
mortgage.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
banksanjuans.com
mortgage.banksanjuans.com
mortgage.1stbmt.com
www.banksanjuans.com
mortgage.valleybankhelena.com.roostify.com
mortgage.banksanjuans.com
mortgage.fsbwy.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
www.banksanjuans.com
www.banksanjuans.com
mortgage.1stbmt.com
www.banksanjuans.com
www.banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.fcbutah.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.collegiatepeaksbank.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.banksanjuans.com
banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.quickapply.banksanjuans.com
mortgage.collegiatepeaksbank.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
banksanjuans.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
banksanjuans.com
Certificate
The complete raw certificate details for www.banksanjuans.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHCjCCBfKgAwIBAgIQDab5mdln7eiJgUheNFe9xTANBgkqhkiG9w0BAQ0FADBE MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMR4wHAYDVQQDExVH ZW9UcnVzdCBFViBSU0EgQ0EgRzIwHhcNMjMxMDE3MDAwMDAwWhcNMjQxMDE2MjM1 OTU5WjCByTETMBEGCysGAQQBgjc8AgEDEwJVUzEYMBYGCysGAQQBgjc8AgECEwdN b250YW5hMR0wGwYDVQQPDBRQcml2YXRlIE9yZ2FuaXphdGlvbjEQMA4GA1UEBRMH RDA5MzQzNTELMAkGA1UEBhMCVVMxEDAOBgNVBAgTB01vbnRhbmExEjAQBgNVBAcT CUthbGlzcGVsbDEVMBMGA1UEChMMR2xhY2llciBCYW5rMR0wGwYDVQQDExR3d3cu YmFua3Nhbmp1YW5zLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMDc+5LpTj+jqO9c8JNlzyzJpGVL5HFRQG0SoqrTubkB1bowlrzO+Oi4imQ0ufp4 z8Z3GDvJrDtonTZXmlBGoUhN3TMfLPVagwK8dcu865WPo6TqGZuvlsNFNIxwdRC1 NacOJVFnZ+faP46DMLXJVFhLb5DMco6FnV2Ojx9a8sXMpD1loEqHmY0v95HWZh6v hdzevENl8gybsjUqVJU8wPc+H/OAuzT9T3qyp3aoJz6Ck5/XldvPLUsTkKa/NQea Eob6ghwFKdw5+tlEn59gj3brlRrYr5mkcyg+Duk3hdQZFSzblVNSKu4oVZmfMlcw wmeHWbK66RokjJK+u/UIvqcCAwEAAaOCA3AwggNsMB8GA1UdIwQYMBaAFCjSz+4J hHXdtbK1vzzVoMZziF0fMB0GA1UdDgQWBBRIPJDHCcPHOi27Ok/zs/VpvCJCqDAx BgNVHREEKjAoghR3d3cuYmFua3Nhbmp1YW5zLmNvbYIQYmFua3Nhbmp1YW5zLmNv bTBKBgNVHSAEQzBBMAsGCWCGSAGG/WwCATAyBgVngQwBATApMCcGCCsGAQUFBwIB FhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNVHR8EbjBsMDSgMqAwhi5o dHRwOi8vY3JsMy5kaWdpY2VydC5jb20vR2VvVHJ1c3RFVlJTQUNBRzIuY3JsMDSg MqAwhi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vR2VvVHJ1c3RFVlJTQUNBRzIu Y3JsMHMGCCsGAQUFBwEBBGcwZTAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGln aWNlcnQuY29tMD0GCCsGAQUFBzAChjFodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5j b20vR2VvVHJ1c3RFVlJTQUNBRzIuY3J0MAwGA1UdEwEB/wQCMAAwggGABgorBgEE AdZ5AgQCBIIBcASCAWwBagB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdM Wjp0AAABiz94I8MAAAQDAEgwRgIhAJSjuK9WEAWDpDN3a2Hx8jo4oUN0UJ1z4BsG 5GI1clzFAiEA+axbJjxPxaOA3LCLESZ+uKSEfkgGoUkfuuN265iprf8AdgBIsONr 2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYs/eCPBAAAEAwBHMEUCID2n yU3Y/hrKi5lhy5LtzDET/ur/C4fSwUyUAReQccAAAiEAljh3byvMGgZDa90mtxr/ TavXaZ5dhELpeiLCdRdbwagAdwDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0w SNf7qwAAAYs/eCOdAAAEAwBIMEYCIQDUgwx8ZXdTblFbdwL420baYKeEzkOHUuLz xTwk/2NKlwIhAMXRwZL64sGv23tUE+hTLfnaKNoGnlRGtLJV3s45ijFGMA0GCSqG SIb3DQEBDQUAA4IBAQBEJEz54j051Ho+YCVISomrFOQBgn6o7gIXBJX6RnlvNIFS eMi4QV/y3bs84dxnwp+MmlbloKAIg4JerukH0ee619pqW80tgYKaBIW2Eau6nv0Z Z8xL0PuUctKkBXGMrTdIhOL1s5bFMl4znh84ROCef1c4mmcxYdaN06H3+I4x9OzQ GZ0HKCTU4Nwj9+YM9R64dktZXoiP5pqoh2BKNA2HfJkJkGUe8Zo00LZ0Lm1E0UU2 9JpZT5haFmvWiuJQCuarcU3O3tojiwjR+W0RlrmtWbTb7MHU4VeVnfDPt4Q7wwQx v6bty6kTi3lL4I0QAu+VWeRrHYrj2KfB/3DJhFDn -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNz7kulOP6Oo71zwk2XP LMmkZUvkcVFAbRKiqtO5uQHVujCWvM746LiKZDS5+njPxncYO8msO2idNleaUEah SE3dMx8s9VqDArx1y7zrlY+jpOoZm6+Ww0U0jHB1ELU1pw4lUWdn59o/joMwtclU WEtvkMxyjoWdXY6PH1ryxcykPWWgSoeZjS/3kdZmHq+F3N68Q2XyDJuyNSpUlTzA 9z4f84C7NP1PerKndqgnPoKTn9eV288tSxOQpr81B5oShvqCHAUp3Dn62USfn2CP duuVGtivmaRzKD4O6TeF1BkVLNuVU1Iq7ihVmZ8yVzDCZ4dZsrrpGiSMkr679Qi+ pwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18146947732904751663526301001527573957 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust EV RSA CA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montana' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'D093435' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montana' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kalispell' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Glacier Bank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.banksanjuans.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24346725189392095663664369374069257549171839670327371631698727867941778528850816067205072168215450571046713652843049086795100593763728531266587541083567806994866061733313143065575135493940499259220347344991260001024319375960980469760077954234005189523428112125358123154304103826914949950824144585160415763314028536987949017022075165866833025352596245451554462451245619622630809535365556711873315861219905768598046049130450718788909758182006732997352506128116526629234402768075954438092058954147713661504264665884247125103728102483411629866147876454932379512237235123371547150944916757651102186364182164377247098125991 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 28d2cfee098475ddb5b2b5bf3cd5a0c673885d1f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 483c90c709c3c73a2dbb3a4ff3b3f569bc2242a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.banksanjuans.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'banksanjuans.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustEVRSACAG2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustEVRSACAG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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