llsportalswa-qa.patientadvocate.org
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 06:f0:95:02:3f:dc:87:b8:74:a8:c8:7c:a2:39:c4:46 was issued on by DigiCert, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=llsportalswa-qa.patientadvocate.org
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:f0:95:02:3f:dc:87:b8:74:a8:c8:7c:a2:39:c4:46Serial Number (int): 9224541478009283216834248663092544582
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 5e:1f:21:2a:7d:76:6a:2f:01:f2:3c:9c:10:d0:55:82:af:b5:30:69
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 64:76:be:de:73:5f:f2:98:99:30:bb:08:f5:c1:d0:eb:e6:13:98:7f
Fingerprint (sha256): cb:fc:24:c6:8d:f7:ae:6d:6c:a2:ae:a8:9e:f5:af:24:71:f9:b3:40:3b:de:83:78:34:e2:f1:27:77:16:ff:20
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate llsportalswa-qa.patientadvocate.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for llsportalswa-qa.patientadvocate.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
llsportalswa-qa.patientadvocate.org
Other certificates including the domain name patientadvocate.org
(limited to 100 certificates)
*.patientadvocate.org
*.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
impact.patientadvocate.org
mask17.classy.org
*.patientadvocate.org
mask17.classy.org
*.patientadvocate.org
mask17.classy.org
mask17.classy.org
pafw.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
impact.patientadvocate.org
impact.patientadvocate.org
*.patientadvocate.org
impact.patientadvocate.org
*.patientadvocate.org
mask17.classy.org
mask17.classy.org
*.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
impact.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
impact.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
paf.patientadvocate.org
mask17.classy.org
llsportalswa-qa.patientadvocate.org
mask17.classy.org
mask17.classy.org
*.patientadvocate.org
impact.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
paf.patientadvocate.org
impact.patientadvocate.org
mask17.classy.org
*.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
impact.patientadvocate.org
mask17.classy.org
*.patientadvocate.org
mask17.classy.org
*.patientadvocate.org
mask17.classy.org
mask17.classy.org
pafw.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
impact.patientadvocate.org
impact.patientadvocate.org
*.patientadvocate.org
impact.patientadvocate.org
*.patientadvocate.org
mask17.classy.org
mask17.classy.org
*.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
impact.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
impact.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
paf.patientadvocate.org
mask17.classy.org
llsportalswa-qa.patientadvocate.org
mask17.classy.org
mask17.classy.org
*.patientadvocate.org
impact.patientadvocate.org
mask17.classy.org
mask17.classy.org
mask17.classy.org
paf.patientadvocate.org
impact.patientadvocate.org
mask17.classy.org
Certificate
The complete raw certificate details for llsportalswa-qa.patientadvocate.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHtTCCBZ2gAwIBAgIQBvCVAj/ch7h0qMh8ojnERjANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjQwNDI0MDAwMDAwWhcNMjQxMDI0MjM1OTU5WjAuMSwwKgYDVQQDEyNsbHNwb3J0 YWxzd2EtcWEucGF0aWVudGFkdm9jYXRlLm9yZzCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOVqsWvDk3AzAFCgKsLVwmfmXNFxcMhpCwcPDkw28zI9CJNx NKOZ48RsFJxA8JSrzAdr7HQoe1fxW0ZpzVb/vzG8JNdhNWKnRaDvLbFd9KdweEqM 5yj7uwjc6/bTFivAFj6td0nMpwBb/8r5OvEYRECAV0enWTFrB6BSOZg6jEBaTFdR fpPK1apHeUH0plfZnx/ryfUaAm/+npmF+WlG2PlKdMD26DN0kwmfANK5TrH88Gh1 rWaq5ZlKnxZp8/B3ST4b1bemkZ7O8UgqaG9btX1iG11jlKCySZg9LfkiC8O9NXfz jpjdnt+bLqZYpr0CwdUxfz/yDAOIeKOPOomlG9kCAwEAAaOCA58wggObMB8GA1Ud IwQYMBaAFKW01us2xOdrpt/EZAsBKiAEuGYjMB0GA1UdDgQWBBReHyEqfXZqLwHy PJwQ0FWCr7UwaTAuBgNVHREEJzAlgiNsbHNwb3J0YWxzd2EtcWEucGF0aWVudGFk dm9jYXRlLm9yZzA+BgNVHSAENzA1MDMGBmeBDAECATApMCcGCCsGAQUFBwIBFhto dHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBnwYDVR0fBIGXMIGUMEigRqBEhkJo dHRwOi8vY3JsMy5kaWdpY2VydC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2 U0hBMjU2MjAyMkNBMS5jcmwwSKBGoESGQmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNv bS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNybDCBhwYI KwYBBQUHAQEEezB5MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5j b20wUQYIKwYBBQUHMAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9HZW9U cnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNydDAMBgNVHRMBAf8E AjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgDuzdBk1dsazsVct520zROi ModGfLzs3sNRSFlGcR+1mwAAAY8SP4c6AAAEAwBHMEUCIGQrHZw3ZcSYmULCXdN5 +4pUBsKN+2Ox2VcuFE8NYKl9AiEAvxLTYxmD5pMo+5EkLFpflgzzdcVT3oL5ykbe 9L4xsqoAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY8SP4dz AAAEAwBHMEUCIH2cJsa1w4KlODKdx/iTLxwZAvMFccqzvn83yGkA3aQEAiEA83kL NvcRq7TQ/OEqQk8EalW5/56MW+GtaS9XGE8xsRUAdgDatr9rP7W2Ip+bwrtca+hw kXFsu1GEhTS9pD0wSNf7qwAAAY8SP4dZAAAEAwBHMEUCIG084TmaSvNLN8WQnnG5 mrFY0x0CpXofb8+f1YO6Si20AiEA5CsEGGtcguq2WeOqZSZFltM9sruhGZi0GvLz 4e90w/EwDQYJKoZIhvcNAQELBQADggIBABNy8jiPrQ+b+xv3k0fN4tcX+F0/GJ2c bXgaOn2mnogabfpWuHiG/RO0s2CDZsdgEijr0I+L/ccVEgc1fo9rEYEGVtNqFTaN i4CiMVRbLaaJj/hqPX8rUV+Day6Gz6v/0J4nfDuNwgNV2IDtllMNblWRmLgVKoyD EuPtoYndyUH/Q/U2UiNsmwv27ZeW8AmvFVYXaKo5fsGtywjU058v96lY/qjCljg4 bigsglEX9OC5Y3kbs/+S1yQpo2vW5XQPDF8mETxCgL3rH2Mm64BJKLVueileOKAg sNIEDT1CGu+NHCRCM6uI9PAT2qFUSjHBzUcAAQ2GmxvpPnsFulNQ+vkW7XzbyYaY i6x+9nH7+Hmgqr7o9MTD7k14liuHYk5OOHEc2Cl4S46Po87iY6sBSrUCDg/nzzeJ L26zftj8fFwFfzSdgdpYhwAd/KRIngenk35Dqy65/uD2JqiSLPVCpzVTCJsDSaGR 3lvAObfrlJl9BUqxEzYyTSpP98qTA5wc7QnM+eHgqiWMSpGzvnTJOYtYcxEh5odR bpHE9G6B2oHkEPcU+EjNm6blkPEanuk0JoUvzIq+YRGCTY6UjRaVAZoCUKQ7gBfj mepJhbr/5OAwUKk4jtMLeCeMfqDvM/ME+MWKvEXbc59roKyszIDipmVw9g4NVM78 M0MiUq4ZfCkV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Wqxa8OTcDMAUKAqwtXC Z+Zc0XFwyGkLBw8OTDbzMj0Ik3E0o5njxGwUnEDwlKvMB2vsdCh7V/FbRmnNVv+/ Mbwk12E1YqdFoO8tsV30p3B4SoznKPu7CNzr9tMWK8AWPq13ScynAFv/yvk68RhE QIBXR6dZMWsHoFI5mDqMQFpMV1F+k8rVqkd5QfSmV9mfH+vJ9RoCb/6emYX5aUbY +Up0wPboM3STCZ8A0rlOsfzwaHWtZqrlmUqfFmnz8HdJPhvVt6aRns7xSCpob1u1 fWIbXWOUoLJJmD0t+SILw701d/OOmN2e35suplimvQLB1TF/P/IMA4h4o486iaUb 2QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9224541478009283216834248663092544582 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'llsportalswa-qa.patientadvocate.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28961184141364561126977398808625212353127357469053308752447972344623626904949646023034295997354286613280016897254510860504623812928923381270679221532054823933267597967449304982636240423095104766551057008308645751651089192661068705947062711346913669109403713217423134192008364844862870871158042989363174616244400574409318240977412973225884768052080868763500122564776892701326173516400644162833654480159412080530555093858304597887691216024616208169007665490734984572101361074101937213905824172167242996081555224861120052899681030902185939687283847309400284827738384644990497917832561350700587380332915720830857756613593 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5e1f212a7d766a2f01f23c9c10d05582afb53069 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'llsportalswa-qa.patientadvocate.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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