apps.clemis.org
- Oakland County -
Issued by Sectigo RSA Extended Validation Secure Server CA
About this certificate
This digital certificate with serial number 45:3d:5c:22:6d:02:67:c8:31:83:4a:3c:4b:2a:43:ff was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Oakland County
Company registration number:
Government Entity
Organization: Oakland County
Organization unit: Information Technology
Organization unit: Hosted by Oakland County
Organization unit: COMODO EV Multi-Domain SSL
Organization: Oakland County
Organization unit: Information Technology
Organization unit: Hosted by Oakland County
Organization unit: COMODO EV Multi-Domain SSL
Address:
1200 N. Telegraph
Postal code: 48341
State / Province: Michigan
Locality: Pontiac
Country: US
Postal code: 48341
State / Province: Michigan
Locality: Pontiac
Country: US
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 45:3d:5c:22:6d:02:67:c8:31:83:4a:3c:4b:2a:43:ffSerial Number (int): 92035330526707655173199697780383826943
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 8d:76:9f:bc:16:29:04:d6:25:6c:f4:41:e2:99:5f:48:70:6d:e0:51
AuthorityKeyId: 2c:69:ff:80:c9:87:90:ae:34:e1:b4:e7:4c:93:85:99:40:e9:a7:b2
Fingerprint (sha1): 3b:15:6e:44:73:4f:f1:eb:d7:fc:27:3a:62:e6:9d:eb:66:3e:ac:5e
Fingerprint (sha256): c7:80:e1:23:94:77:6b:2a:97:d7:97:7d:3d:6d:70:42:db:ac:33:31:20:8d:51:44:43:77:04:8a:ee:62:53:8d
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl
Check the revocation status for certificate apps.clemis.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for apps.clemis.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
apps.clemis.org
payments.clemis.org
payments.clemis.org
Other certificates including the domain name clemis.org
(limited to 100 certificates)
apps.clemis.org
qasecure.clemis.org
apps.clemis.org
apps.clemis.org
imperva.com
clemislite.clemis.org
clemisweb.clemis.org
clmsupp.clemis.org
apps.clemis.org
tamauth.clemis.org
imperva.com
apps.clemis.org
qasecure.clemis.org
picturelink.clemis.org
secure.clemis.org
apps2.clemis.org
clmsupp.clemis.org
APPS.CLEMIS.ORG
auth.clemis.org
auth.clemis.org
download.clemis.org
auth.clemis.org
clemisweb.clemis.org
auth.clemis.org
clmnm122.clemis.org
secure.clemis.org
apps.clemis.org
auth.clemis.org
picturelink.clemis.org
imperva.com
download.clemis.org
auth.clemis.org
download.clemis.org
apps.clemis.org
cvdb.clemis.org
clemis.org
clmsupp.clemis.org
clemisweb.clemis.org
download.clemis.org
picturelink.clemis.org
apps.clemis.org
auth.clemis.org
apps.clemis.org
picturelink.clemis.org
auth.clemis.org
apps2.clemis.org
appssandbox.clemis.org
apps.clemis.org
picturelink.clemis.org
gisappsd.clemis.org
apps2.clemis.org
oakvideo.clemis.org
clmsupp.clemis.org
maps.clemis.org
maps.clemis.org
apps.clemis.org
clmnm121.clemis.org
cvdb.clemis.org
apps.clemis.org
picturelink.clemis.org
apps.clemis.org
oakgov.com
picturelink.clemis.org
qasecure.clemis.org
apps.clemis.org
apps.clemis.org
imperva.com
clemislite.clemis.org
clemisweb.clemis.org
clmsupp.clemis.org
apps.clemis.org
tamauth.clemis.org
imperva.com
apps.clemis.org
qasecure.clemis.org
picturelink.clemis.org
secure.clemis.org
apps2.clemis.org
clmsupp.clemis.org
APPS.CLEMIS.ORG
auth.clemis.org
auth.clemis.org
download.clemis.org
auth.clemis.org
clemisweb.clemis.org
auth.clemis.org
clmnm122.clemis.org
secure.clemis.org
apps.clemis.org
auth.clemis.org
picturelink.clemis.org
imperva.com
download.clemis.org
auth.clemis.org
download.clemis.org
apps.clemis.org
cvdb.clemis.org
clemis.org
clmsupp.clemis.org
clemisweb.clemis.org
download.clemis.org
picturelink.clemis.org
apps.clemis.org
auth.clemis.org
apps.clemis.org
picturelink.clemis.org
auth.clemis.org
apps2.clemis.org
appssandbox.clemis.org
apps.clemis.org
picturelink.clemis.org
gisappsd.clemis.org
apps2.clemis.org
oakvideo.clemis.org
clmsupp.clemis.org
maps.clemis.org
maps.clemis.org
apps.clemis.org
clmnm121.clemis.org
cvdb.clemis.org
apps.clemis.org
picturelink.clemis.org
apps.clemis.org
oakgov.com
picturelink.clemis.org
Certificate
The complete raw certificate details for apps.clemis.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH5DCCBsygAwIBAgIQRT1cIm0CZ8gxg0o8SypD/zANBgkqhkiG9w0BAQsFADCB kTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTkwNwYDVQQD EzBTZWN0aWdvIFJTQSBFeHRlbmRlZCBWYWxpZGF0aW9uIFNlY3VyZSBTZXJ2ZXIg Q0EwHhcNMTkxMjA2MDAwMDAwWhcNMjExMjA1MjM1OTU5WjCCAWIxGjAYBgNVBAUT EUdvdmVybm1lbnQgRW50aXR5MRMwEQYLKwYBBAGCNzwCAQMTAlVTMRkwFwYLKwYB BAGCNzwCAQITCE1pY2hpZ2FuMRowGAYDVQQPExFHb3Zlcm5tZW50IEVudGl0eTEL MAkGA1UEBhMCVVMxDjAMBgNVBBETBTQ4MzQxMREwDwYDVQQIEwhNaWNoaWdhbjEQ MA4GA1UEBxMHUG9udGlhYzEaMBgGA1UECRMRMTIwMCBOLiBUZWxlZ3JhcGgxFzAV BgNVBAoTDk9ha2xhbmQgQ291bnR5MR8wHQYDVQQLExZJbmZvcm1hdGlvbiBUZWNo bm9sb2d5MSEwHwYDVQQLExhIb3N0ZWQgYnkgT2FrbGFuZCBDb3VudHkxIzAhBgNV BAsTGkNPTU9ETyBFViBNdWx0aS1Eb21haW4gU1NMMRgwFgYDVQQDEw9hcHBzLmNs ZW1pcy5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCI141aWoKo eux2MUaHtsGbhmOVJlmXcB70h/ny5LpIC4+lYODFimI1ijY50is1QdsZRMJagRHl JKp6G4I4w9iR9zXtPQhVWWx1F9EeniDPFYnoi04/QRl0c8D81IABUbyAXn8fr1v2 nzTgveqS784rAUQi82+LJKTIllGHMkxKX2DM4XOFceuCcB2QxL8BochmiKf3nnTs tDhDUlNHSpoLxnM1vzRnIWNSj1UWE46vzoK4kAVa3OORpcVOhp2Sr3Lij5CwDXnk RXZ3wbYmJGYvVEF+sL7CjfL40UVADo1aM3mxMeCakt4fHTmWjPhWHCqmYFYu+RGH 9xP9Mtg6JoWXAgMBAAGjggNiMIIDXjAfBgNVHSMEGDAWgBQsaf+AyYeQrjThtOdM k4WZQOmnsjAdBgNVHQ4EFgQUjXafvBYpBNYlbPRB4plfSHBt4FEwDgYDVR0PAQH/ BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMEkGA1UdIARCMEAwNQYMKwYBBAGyMQECAQUBMCUwIwYIKwYBBQUHAgEWF2h0 dHBzOi8vc2VjdGlnby5jb20vQ1BTMAcGBWeBDAEBMFYGA1UdHwRPME0wS6BJoEeG RWh0dHA6Ly9jcmwuc2VjdGlnby5jb20vU2VjdGlnb1JTQUV4dGVuZGVkVmFsaWRh dGlvblNlY3VyZVNlcnZlckNBLmNybDCBhgYIKwYBBQUHAQEEejB4MFEGCCsGAQUF BzAChkVodHRwOi8vY3J0LnNlY3RpZ28uY29tL1NlY3RpZ29SU0FFeHRlbmRlZFZh bGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9v Y3NwLnNlY3RpZ28uY29tMC8GA1UdEQQoMCaCD2FwcHMuY2xlbWlzLm9yZ4ITcGF5 bWVudHMuY2xlbWlzLm9yZzCCAYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHcApLkJ kLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFu24qgTgAABAMASDBGAiEA 8QzYT6mhgrsDP4+MLcasL+a9jD8eXTuo/ZctwJewZA0CIQCYuHGCmSGfTWoKWHSk NsFULpyZz3qaAfzsgNMIbsfdowB3AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaN sgiaN9kTAAABbtuKoMwAAAQDAEgwRgIhAONaRmgo92f86bWs3Jb4eLGBfZ7AZYWl MsfT0heliV5RAiEAtQG8Qs25K6HkVT6Rg8Rc189XoB5s77YFODmKLr2qmlIAdgC7 2d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAW7biqBQAAAEAwBHMEUC IQCKBmuKha8lggww8ceczA3tt8UQ0tgyBH421cVcBHOPMAIgNDTjG+lnDhkOxWpa pVmQzaZKJ2XNTHi0X1CudjZe/KowDQYJKoZIhvcNAQELBQADggEBAGU2W7sk2144 X+rG3I4I871puE2VMKCA6CAOQ/YyRNfoN284Y9favU3pcRC/EwVIoMQr/ofMU7XU tsC/XTwK+fe5cfgldrPJMrMeJOlBX/ryDiDgCftkCbs4tw4WY9hU/nERFPtc4BnR PR+1yB8tzDF3oEpeo6D8LcTkmIZid5VzmTChtAiBg7lUeuPYwI2tr0qU+OSz7FFz 0tSfuQy2tdoDUM2JxZJ/fRKb/41MmiadRxNVTtt2bKPg3N5QkeH1zHpHORIOMbbx YAfIkwVEpgDW7pmZAwPkcXw8lrb0RW3kPC1zytpFeG49Q7xBCRZTyhZp85Z5OYuJ +PQ2WiXRrbA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiNeNWlqCqHrsdjFGh7bB m4ZjlSZZl3Ae9If58uS6SAuPpWDgxYpiNYo2OdIrNUHbGUTCWoER5SSqehuCOMPY kfc17T0IVVlsdRfRHp4gzxWJ6ItOP0EZdHPA/NSAAVG8gF5/H69b9p804L3qku/O KwFEIvNviySkyJZRhzJMSl9gzOFzhXHrgnAdkMS/AaHIZoin95507LQ4Q1JTR0qa C8ZzNb80ZyFjUo9VFhOOr86CuJAFWtzjkaXFToadkq9y4o+QsA155EV2d8G2JiRm L1RBfrC+wo3y+NFFQA6NWjN5sTHgmpLeHx05loz4VhwqpmBWLvkRh/cT/TLYOiaF lwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 92035330526707655173199697780383826943 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Extended Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Michigan' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '48341' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Michigan' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pontiac' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1200 N. Telegraph' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Oakland County' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by Oakland County' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO EV Multi-Domain SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'apps.clemis.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17274702207032703449868998790406727083922739585417383276831010162308179979537805572214112135985821227381411476237826467773873006562614574451816415061664406475453354108601847179663591453430893971480172026878716349801682487348073620414081563778724534265193212059825734949210728404161416188050964690209533224196412164279291739420200492173099890966588585375859767040757510458292155269184560880110519082331502019146878131661756693959341421381962003384085952349992290842076632479776292483748468813851780641589229545918992302443390057540845867381426404389513357514170211280749152819690574503132916888578073213439779556197783 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2c69ff80c98790ae34e1b4e74c93859940e9a7b2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8d769fbc162904d6256cf441e2995f48706de051 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.5.1 (Comodo EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (122 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.clemis.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'payments.clemis.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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