mail.aoa.org
- American Optometric Association -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 0e:f1:40:2a:85:4a:79:fc:26:f5:19:dc:d5:46:88:4a was issued on by DigiCert Inc.
With 31 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
American Optometric Association
Company registration number:
50965
Organization: American Optometric Association
Organization: American Optometric Association
State / Province:
Missouri
Locality: St. Louis
Country: US
Locality: St. Louis
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:f1:40:2a:85:4a:79:fc:26:f5:19:dc:d5:46:88:4aSerial Number (int): 19861836926944717859759948892394129482
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 25:e1:9e:d6:61:cc:e6:d0:cd:16:c5:96:36:a3:38:d0:96:21:93:3c
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 58:dc:d8:a9:c1:22:3d:9b:0e:52:74:34:9f:5b:1f:5a:b8:f9:f2:c9
Fingerprint (sha256): c5:c3:8b:a8:d8:1a:bc:fe:3c:94:be:55:1a:8e:01:30:33:95:af:30:19:63:b5:a6:b7:19:3a:d0:e9:e2:d7:be
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate mail.aoa.org
31
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mail.aoa.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.aoa.org
autodiscover.aoa.org
dev.aoa.org
hybrid.aoa.org
mail.aoa.org
netapps.aoa.org
stage.aoa.org
store.aoa.org
alabama.aoa.org
alabama.stage.aoa.org
colorado.aoa.org
colorado.stage.aoa.org
idaho.aoa.org
idaho.stage.aoa.org
kansas.aoa.org
kansas.stage.aoa.org
maine.aoa.org
maine.stage.aoa.org
minnesota.aoa.org
minnesota.stage.aoa.org
nebraska.aoa.org
nebraska.stage.aoa.org
ohio.aoa.org
ohio.stage.aoa.org
pennsylvania.aoa.org
pennsylvania.stage.aoa.org
rhodeisland.aoa.org
rhodeisland.stage.aoa.org
texas.aoa.org
texas.stage.aoa.org
texasv9.aoa.org
autodiscover.aoa.org
dev.aoa.org
hybrid.aoa.org
mail.aoa.org
netapps.aoa.org
stage.aoa.org
store.aoa.org
alabama.aoa.org
alabama.stage.aoa.org
colorado.aoa.org
colorado.stage.aoa.org
idaho.aoa.org
idaho.stage.aoa.org
kansas.aoa.org
kansas.stage.aoa.org
maine.aoa.org
maine.stage.aoa.org
minnesota.aoa.org
minnesota.stage.aoa.org
nebraska.aoa.org
nebraska.stage.aoa.org
ohio.aoa.org
ohio.stage.aoa.org
pennsylvania.aoa.org
pennsylvania.stage.aoa.org
rhodeisland.aoa.org
rhodeisland.stage.aoa.org
texas.aoa.org
texas.stage.aoa.org
texasv9.aoa.org
Other certificates including the domain name aoa.org
(limited to 100 certificates)
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
dg-0035-c25fe2a.client-tls.adestra.com
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
aoa.org
cordialclick.aoa.org
www.aoa.org
*.aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
cordialdata.aoa.org
*.aoa.org
*.stage.aoa.org
*.aoa.org
www.aoa.org
dg-0035-c25fe2a.client-tls.adestra.com
*.aoa.org
www.aoa.org
secure.aoa.org
secure.aoa.org
www.aoa.org
cordialdata.aoa.org
api.card.aoa.org
www.aoa.org
aoa.org
secure.aoa.org
*.aoa.org
aoa.org
about.card.aoa.org
ithelp.patchi.com
aoa.mercantile.cards
aafprs.mercantile.cards
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
cordialclick.aoa.org
auth.card.aoa.org
cordialdata.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
*.aoa.org
aafprs.mercantile.cards
*.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
aoa.org
www.aoa.org
mail.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
soporte.iobot.chat
help.dealers.energy
*.aoa.org
secure.aoa.org
stage.aoa.org
mail.aoa.org
*.aoa.org
stage.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
dg-0035-c25fe2a.client-tls.adestra.com
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
aoa.org
cordialclick.aoa.org
www.aoa.org
*.aoa.org
cordialclick.aoa.org
*.aoa.org
www.aoa.org
www.aoa.org
*.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
cordialdata.aoa.org
*.aoa.org
*.stage.aoa.org
*.aoa.org
www.aoa.org
dg-0035-c25fe2a.client-tls.adestra.com
*.aoa.org
www.aoa.org
secure.aoa.org
secure.aoa.org
www.aoa.org
cordialdata.aoa.org
api.card.aoa.org
www.aoa.org
aoa.org
secure.aoa.org
*.aoa.org
aoa.org
about.card.aoa.org
ithelp.patchi.com
aoa.mercantile.cards
aafprs.mercantile.cards
www.aoa.org
www.aoa.org
*.aoa.org
*.aoa.org
*.aoa.org
www.aoa.org
cordialclick.aoa.org
auth.card.aoa.org
cordialdata.aoa.org
www.aoa.org
aafprs.mercantile.cards
www.aoa.org
aafprs.mercantile.cards
*.aoa.org
aafprs.mercantile.cards
*.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
aoa.org
www.aoa.org
mail.aoa.org
www.aoa.org
cordialdata.aoa.org
aafprs.mercantile.cards
aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
www.aoa.org
soporte.iobot.chat
help.dealers.energy
*.aoa.org
secure.aoa.org
stage.aoa.org
mail.aoa.org
*.aoa.org
stage.aoa.org
*.aoa.org
Certificate
The complete raw certificate details for mail.aoa.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJ+TCCCOGgAwIBAgIQDvFAKoVKefwm9Rnc1UaISjANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE3MTIyMDAwMDAwMFoXDTIwMDIwNDEy MDAwMFowgdAxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlVTMRUwEwYLKwYBBAGCNzwCAQITBE9oaW8xDjAMBgNVBAUTBTUw OTY1MQswCQYDVQQGEwJVUzERMA8GA1UECBMITWlzc291cmkxEjAQBgNVBAcTCVN0 LiBMb3VpczEoMCYGA1UEChMfQW1lcmljYW4gT3B0b21ldHJpYyBBc3NvY2lhdGlv bjEVMBMGA1UEAxMMbWFpbC5hb2Eub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAwfFJGXZKlWCme4jgggtRl8JMOXRZ48sqm1tkGbkWebMbnZ8vmJLi Nhxtk3gfX3+cOYDZJDIlVqfc5AM5FLJ9MpRAscRLk8W8zfBqTxECilKUghuc2dAF Ys/L4R2V493CG6Ink/fWFCyfvy6VVz6Zvp1Rjs15i7xLxlROL/6u8J12sl/Jr113 2cbJxdtbEsvuWFgo7ZwFlNBZr/ICEX5LgugA3EC6PMMbHYYso5egsIlDWEBs5i9x F3iHNlHBSvEOBJHFJplOG4oE4SzawSVv1eAgFCYB3cy3uoVKSQHgIklUYrwBbuDQ ZC6aO7I6G8sHY3pgyqu+DfomUQQMJWzWjwIDAQABo4IGJzCCBiMwHwYDVR0jBBgw FoAUPdNQpdagre7zSmAKZdMh1Pj41g8wHQYDVR0OBBYEFCXhntZhzObQzRbFljaj ONCWIZM8MIICWQYDVR0RBIICUDCCAkyCC3d3dy5hb2Eub3JnghRhdXRvZGlzY292 ZXIuYW9hLm9yZ4ILZGV2LmFvYS5vcmeCDmh5YnJpZC5hb2Eub3JnggxtYWlsLmFv YS5vcmeCD25ldGFwcHMuYW9hLm9yZ4INc3RhZ2UuYW9hLm9yZ4INc3RvcmUuYW9h Lm9yZ4IPYWxhYmFtYS5hb2Eub3JnghVhbGFiYW1hLnN0YWdlLmFvYS5vcmeCEGNv bG9yYWRvLmFvYS5vcmeCFmNvbG9yYWRvLnN0YWdlLmFvYS5vcmeCDWlkYWhvLmFv YS5vcmeCE2lkYWhvLnN0YWdlLmFvYS5vcmeCDmthbnNhcy5hb2Eub3JnghRrYW5z YXMuc3RhZ2UuYW9hLm9yZ4INbWFpbmUuYW9hLm9yZ4ITbWFpbmUuc3RhZ2UuYW9h Lm9yZ4IRbWlubmVzb3RhLmFvYS5vcmeCF21pbm5lc290YS5zdGFnZS5hb2Eub3Jn ghBuZWJyYXNrYS5hb2Eub3JnghZuZWJyYXNrYS5zdGFnZS5hb2Eub3JnggxvaGlv LmFvYS5vcmeCEm9oaW8uc3RhZ2UuYW9hLm9yZ4IUcGVubnN5bHZhbmlhLmFvYS5v cmeCGnBlbm5zeWx2YW5pYS5zdGFnZS5hb2Eub3JnghNyaG9kZWlzbGFuZC5hb2Eu b3JnghlyaG9kZWlzbGFuZC5zdGFnZS5hb2Eub3Jngg10ZXhhcy5hb2Eub3JnghN0 ZXhhcy5zdGFnZS5hb2Eub3Jngg90ZXhhc3Y5LmFvYS5vcmcwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNVHR8EbjBsMDSg MqAwhi5odHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXItZzIu Y3JsMDSgMqAwhi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2 ZXItZzIuY3JsMEsGA1UdIAREMEIwNwYJYIZIAYb9bAIBMCowKAYIKwYBBQUHAgEW HGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwBwYFZ4EMAQEwgYgGCCsGAQUF BwEBBHwwejAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMFIG CCsGAQUFBzAChkZodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRT SEEyRXh0ZW5kZWRWYWxpZGF0aW9uU2VydmVyQ0EuY3J0MAwGA1UdEwEB/wQCMAAw ggH2BgorBgEEAdZ5AgQCBIIB5gSCAeIB4AB1AKS5CZC0GFgUh7sTosxncAo8NZgE +RvfuON3zQ7IDdwQAAABYHY3TboAAAQDAEYwRAIgfnxLAg7vcE4Y3ltkhBMKhI9C lp0HK/SsxaJYxwSFKbYCIHGTFLW5QZskmsLUAXAvGEeVWuY9U2Wx8RJZ3eiv42u6 AHYAVhQGmi/XwuzT9eG9RLI+x0Z2ubyZEVzA75SYVdaJ0N0AAAFgdjdOqgAABAMA RzBFAiBmDSZ5mGVuxRtr5xHLlVIZsLNECXCE1vovkKy1JmaORQIhAIPL1ZIRa13i BOaQvmb909ngqDVyua6h4aHS9z03ti1MAHYA7ku9t3XOYLrhQmkfq+GeZqMPfl+w ctiDAMR7iXqo/csAAAFgdjdQtQAABAMARzBFAiAxYq97giAsAGmibIzc+kQyRXzg M5AAJlMcN7/i/9m5tAIhAN8zY4sLbZ7MV2lW8p81hFbc0WZDaaD6SJfUIqTheLWC AHcAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFgdjdOdQAABAMA SDBGAiEAz0izlOqU6rLmSzBM6DHABhqDCh+gnR4S8iXahN53gjsCIQDEKH3tM4ek AnEBTbJAPuE3RHrXD6e2+ogx3pKG5/6ahDANBgkqhkiG9w0BAQsFAAOCAQEAG276 zHBZQCTAJHR7fUi6K33YPvbqA5Ab5JUhoKclkL+XD5k3zJ+26Mic3WFuBpDpWIxU BEu6f+HaLjs3p2wJ34+aCXDyCIk16gMK8UTSJZGo4MyNx9Eap6wGZL6ekk/1Axlh 4VdBd9P4wOKVLH9NopJWBCisheP24+tgMUOOW4uKuhcrRxdfYhl6ej9C9TzVf7tW sDNnQTFq9JgiGjCNCdBwvXRl2m+TaRzTtslA2wQjTXUz7JADNodXoNe8kenJFexX k4Y4nroZfEx3gvBEpgG8ELM8eySoUsYGqr1hdM7w1mFWv5Gky0U+rlm32FnNcYyc wi9pcAJ3yJdDTFmtOA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfFJGXZKlWCme4jgggtR l8JMOXRZ48sqm1tkGbkWebMbnZ8vmJLiNhxtk3gfX3+cOYDZJDIlVqfc5AM5FLJ9 MpRAscRLk8W8zfBqTxECilKUghuc2dAFYs/L4R2V493CG6Ink/fWFCyfvy6VVz6Z vp1Rjs15i7xLxlROL/6u8J12sl/Jr1132cbJxdtbEsvuWFgo7ZwFlNBZr/ICEX5L gugA3EC6PMMbHYYso5egsIlDWEBs5i9xF3iHNlHBSvEOBJHFJplOG4oE4SzawSVv 1eAgFCYB3cy3uoVKSQHgIklUYrwBbuDQZC6aO7I6G8sHY3pgyqu+DfomUQQMJWzW jwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19861836926944717859759948892394129482 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-04 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ohio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '50965' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Missouri' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'St. Louis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'American Optometric Association' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mail.aoa.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24482975195108034380290659172149683482404478929232589269263239392853207475747925218253039328073611857560194207634370521411050018963106218517914244052933436966197773203893549156693276680189278540307133476095642838408343068464950963828705126885915327094021393559529590406778010123933173368507873554955158836274007739279900215584595977773452055215984490421743119287677110053560713285715371486041128736929470715161861560085420536373651044563029845656832406832692397406048255912097949028242755155297872700594168460519994621471343721220130263477046471543619697875852664363525279718064835054486571228733036874560051950179983 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 25e19ed661cce6d0cd16c59636a338d09621933c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (592 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hybrid.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'netapps.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alabama.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alabama.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colorado.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colorado.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idaho.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idaho.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kansas.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kansas.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maine.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maine.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minnesota.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'minnesota.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nebraska.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nebraska.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ohio.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ohio.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennsylvania.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennsylvania.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rhodeisland.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rhodeisland.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'texas.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'texas.stage.aoa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'texasv9.aoa.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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