www.nb21.newyorklife.com
- New York Life Insurance Company -
Issued by VeriSign Class 3 International Server CA - G3
About this certificate
This digital certificate with serial number 28:80:cc:b5:2a:98:2d:09:e9:aa:96:64:8f:2b:db:12 was issued on by VeriSign, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
New York Life Insurance Company
Organization:
New York Life Insurance Company
Organization unit: NetSec
Organization unit: NetSec
State / Province:
New York
Locality: New York
Country: US
Locality: New York
Country: US
VeriSign, Inc.
Organization:
VeriSign, Inc.
Organization unit: VeriSign Trust Network
Organization unit: Terms of use at https://www.verisign.com/rpa (c)10
Organization unit: VeriSign Trust Network
Organization unit: Terms of use at https://www.verisign.com/rpa (c)10
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 28:80:cc:b5:2a:98:2d:09:e9:aa:96:64:8f:2b:db:12Serial Number (int): 53837885794327992701643553446008970002
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d7:9b:7c:d8:22:a0:15:f7:dd:ad:5f:ce:29:9b:58:c3:bc:46:00:b5
Fingerprint (sha1): e4:e3:76:1a:49:40:5c:54:d0:68:60:09:68:c9:ca:22:91:85:60:14
Fingerprint (sha256): ce:09:ea:4a:65:b7:f7:bd:d6:eb:ee:cc:f3:7a:19:81:2f:91:16:f3:d1:44:7e:c1:83:51:46:7a:e5:e3:6f:3d
Issuing Certificate URL: http://se.symcb.com/se.crt
Revocation information
OCSP Server: http://se.symcd.comCRL Distribution Point: http://se.symcb.com/se.crl
Check the revocation status for certificate www.nb21.newyorklife.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.nb21.newyorklife.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Netscape Server-Gated Cryptography
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
WWW.NB21.NEWYORKLIFE.COM
Other certificates including the domain name newyorklife.com
(limited to 100 certificates)
www.amnsiu.newyorklife.com
nyio-model-5.nylaarp.newyorklife.com
www.vsc3.newyorklife.com
int.pcsws.newyorklife.com
www.lwaservices.newyorklife.com
www.nb21-qcs.ws.newyorklife.com
www.authaa.newyorklife.com
www.miskyc.ws.newyorklife.com
www.atomsphereapi.ws.newyorklife.com
WWW.PRODUCERINFORMATION.NEWYORKLIFE.COM
Hybftprod1.newyorklife.com
www.eFidelity.ws.newyorklife.com
int.ecps.newyorklife.com
mdl.authaa.newyorklife.com
int.fieldinfo.newyorklife.com
MDL.PCSSYNCH.NEWYORKLIFE.COM
int.tami.newyorklife.com
vsp.newyorklife.com
MDL.VSC3.NEWYORKLIFE.COM
vhnylep2ai05.stl.hec.newyorklife.com
owa.ftmod.newyorklife.com
dev.sci.newyorklife.com
www.newbpmportal.newyorklife.com
mysappreprod.newyorklife.com
prodtravc.newyorklife.com
mdl.secadmin.newyorklife.com
mdl.sa.newyorklife.com
vhnylgp2ci.stl.hec.newyorklife.com
mdl.mulesf.ws.newyorklife.com
int.agentcontracting.newyorklife.com
www.betamynylcorp.newyorklife.com
www.idmgmt.ws.newyorklife.com
int.mynylcorp.newyorklife.com
vhnylbp2ai02.stl.hec.newyorklife.com
www.eis-nb21.ws.newyorklife.com
PRE.IWFACWS.NEWYORKLIFE.COM
WWW.NYLIS.NEWYORKLIFE.COM
WWW.NB21.NEWYORKLIFE.COM
mdl.nb.elife.newyorklife.com
NYP-RDSTWEB2-CJ.hq.nt.NEWYORKLIFE.COM
www.ltcg-letters.newyorklife.com
readsoft.newyorklife.com
EdgePoolCNJ.ftmail.dist.us.newyorklife.com
bi.newyorklife.com
mdlnylrae-at1.newyorklife.com
www.crmsforcesp.ws.newyorklife.com
www.edp.newyorklife.com
MDL.VSC3.NEWYORKLIFE.COM
www.nylamnebvalues.newyorklife.com
akamaisecure2.qualtrics.com
mdl.mynylcorp.newyorklife.com
mdlnylrae.newyorklife.com
www.internalbetamynyl.newyorklife.com
www.mynyl.newyorklife.com
if20p51dp.newyorklife.com
nylcsc-model.nylaarp.newyorklife.com
mdl.icn.newyorklife.com
mdl.macsweb.newyorklife.com
int.frameworks.newyorklife.com
mdleroom.newyorklife.com
mdl.meetingplay.ws.newyorklife.com
mdl.cam.newyorklife.com
int.icn305.newyorklife.com
MDL.CLTTOTWILIO.WS.NEWYORKLIFE.COM
mdl.qcs-nb21.ws.newyorklife.com
mdl.CCC-DNC.ws.newyorklife.com
mdl.suitability.newyorklife.com
nylaarp-cms-model-5.nylaarp.newyorklife.com
STG.LWA.WS.NEWYORKLIFE.COM
sra.newyorklife.com
WWW.PCSSPELLCHECKER.NEWYORKLIFE.COM
mdl.projects.newyorklife.com
mdl.clt.newyorklife.com
mdl.whitepages.newyorklife.com
www.corporateaccounting.newyorklife.com
ep2.stl.hec.newyorklife.com
dev.magnummajesco.client.newyorklife.com
dev.agencyportal.newyorklife.com
WWW.CLIENTSHARE.NEWYORKLIFE.COM
www.aasm.newyorklife.com
dev.elab.ws.newyorklife.com
www.pfed.newyorklife.com
EdgePoolCNJ.ftmailmod.distmod.us.newyorklife.com
nylaarp-model-4.nylaarp.newyorklife.com
san-38-s12.tlsprovisioning.exacttarget.com
www.mynyl.newyorklife.com
www.ftisweb.newyorklife.com
www.auth.newyorklife.com
www.newyorklife.com
mdl.sm.newyorklife.com
nylraisolated.newyorklife.com
www.ct1035.newyorklife.com
trn-sd.nylaarp.newyorklife.com
WWW.NEWBPMPORTAL.NEWYORKLIFE.COM
www.fdslearningtech.newyorklife.com
MYLIFENOW.NEWYORKLIFE.COM
WWW.EAPPLIFES.WS.NEWYORKLIFE.COM
mdl.nylsv.newyorklife.com
int.sm.newyorklife.com
mdl.holdorder.newyorklife.com
nyio-model-5.nylaarp.newyorklife.com
www.vsc3.newyorklife.com
int.pcsws.newyorklife.com
www.lwaservices.newyorklife.com
www.nb21-qcs.ws.newyorklife.com
www.authaa.newyorklife.com
www.miskyc.ws.newyorklife.com
www.atomsphereapi.ws.newyorklife.com
WWW.PRODUCERINFORMATION.NEWYORKLIFE.COM
Hybftprod1.newyorklife.com
www.eFidelity.ws.newyorklife.com
int.ecps.newyorklife.com
mdl.authaa.newyorklife.com
int.fieldinfo.newyorklife.com
MDL.PCSSYNCH.NEWYORKLIFE.COM
int.tami.newyorklife.com
vsp.newyorklife.com
MDL.VSC3.NEWYORKLIFE.COM
vhnylep2ai05.stl.hec.newyorklife.com
owa.ftmod.newyorklife.com
dev.sci.newyorklife.com
www.newbpmportal.newyorklife.com
mysappreprod.newyorklife.com
prodtravc.newyorklife.com
mdl.secadmin.newyorklife.com
mdl.sa.newyorklife.com
vhnylgp2ci.stl.hec.newyorklife.com
mdl.mulesf.ws.newyorklife.com
int.agentcontracting.newyorklife.com
www.betamynylcorp.newyorklife.com
www.idmgmt.ws.newyorklife.com
int.mynylcorp.newyorklife.com
vhnylbp2ai02.stl.hec.newyorklife.com
www.eis-nb21.ws.newyorklife.com
PRE.IWFACWS.NEWYORKLIFE.COM
WWW.NYLIS.NEWYORKLIFE.COM
WWW.NB21.NEWYORKLIFE.COM
mdl.nb.elife.newyorklife.com
NYP-RDSTWEB2-CJ.hq.nt.NEWYORKLIFE.COM
www.ltcg-letters.newyorklife.com
readsoft.newyorklife.com
EdgePoolCNJ.ftmail.dist.us.newyorklife.com
bi.newyorklife.com
mdlnylrae-at1.newyorklife.com
www.crmsforcesp.ws.newyorklife.com
www.edp.newyorklife.com
MDL.VSC3.NEWYORKLIFE.COM
www.nylamnebvalues.newyorklife.com
akamaisecure2.qualtrics.com
mdl.mynylcorp.newyorklife.com
mdlnylrae.newyorklife.com
www.internalbetamynyl.newyorklife.com
www.mynyl.newyorklife.com
if20p51dp.newyorklife.com
nylcsc-model.nylaarp.newyorklife.com
mdl.icn.newyorklife.com
mdl.macsweb.newyorklife.com
int.frameworks.newyorklife.com
mdleroom.newyorklife.com
mdl.meetingplay.ws.newyorklife.com
mdl.cam.newyorklife.com
int.icn305.newyorklife.com
MDL.CLTTOTWILIO.WS.NEWYORKLIFE.COM
mdl.qcs-nb21.ws.newyorklife.com
mdl.CCC-DNC.ws.newyorklife.com
mdl.suitability.newyorklife.com
nylaarp-cms-model-5.nylaarp.newyorklife.com
STG.LWA.WS.NEWYORKLIFE.COM
sra.newyorklife.com
WWW.PCSSPELLCHECKER.NEWYORKLIFE.COM
mdl.projects.newyorklife.com
mdl.clt.newyorklife.com
mdl.whitepages.newyorklife.com
www.corporateaccounting.newyorklife.com
ep2.stl.hec.newyorklife.com
dev.magnummajesco.client.newyorklife.com
dev.agencyportal.newyorklife.com
WWW.CLIENTSHARE.NEWYORKLIFE.COM
www.aasm.newyorklife.com
dev.elab.ws.newyorklife.com
www.pfed.newyorklife.com
EdgePoolCNJ.ftmailmod.distmod.us.newyorklife.com
nylaarp-model-4.nylaarp.newyorklife.com
san-38-s12.tlsprovisioning.exacttarget.com
www.mynyl.newyorklife.com
www.ftisweb.newyorklife.com
www.auth.newyorklife.com
www.newyorklife.com
mdl.sm.newyorklife.com
nylraisolated.newyorklife.com
www.ct1035.newyorklife.com
trn-sd.nylaarp.newyorklife.com
WWW.NEWBPMPORTAL.NEWYORKLIFE.COM
www.fdslearningtech.newyorklife.com
MYLIFENOW.NEWYORKLIFE.COM
WWW.EAPPLIFES.WS.NEWYORKLIFE.COM
mdl.nylsv.newyorklife.com
int.sm.newyorklife.com
mdl.holdorder.newyorklife.com
Certificate
The complete raw certificate details for www.nb21.newyorklife.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgIQKIDMtSqYLQnpqpZkjyvbEjANBgkqhkiG9w0BAQUFADCB vDELMAkGA1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMR8wHQYDVQQL ExZWZXJpU2lnbiBUcnVzdCBOZXR3b3JrMTswOQYDVQQLEzJUZXJtcyBvZiB1c2Ug YXQgaHR0cHM6Ly93d3cudmVyaXNpZ24uY29tL3JwYSAoYykxMDE2MDQGA1UEAxMt VmVyaVNpZ24gQ2xhc3MgMyBJbnRlcm5hdGlvbmFsIFNlcnZlciBDQSAtIEczMB4X DTE0MDkyMzAwMDAwMFoXDTE1MTAwMzIzNTk1OVowgZExCzAJBgNVBAYTAlVTMREw DwYDVQQIEwhOZXcgWW9yazERMA8GA1UEBxQITmV3IFlvcmsxKDAmBgNVBAoUH05l dyBZb3JrIExpZmUgSW5zdXJhbmNlIENvbXBhbnkxDzANBgNVBAsUBk5ldFNlYzEh MB8GA1UEAxQYd3d3Lm5iMjEubmV3eW9ya2xpZmUuY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAvB+hVeC+SBPrPSXMxqc57YpSzUuIZ3dn6+8KeQ8V SHdbR4h55saCU93t2Tr5cYqYqu5A3xdlXgS8qx6iQwMVaosCIxTCzQ5L7lkSFK9o yV0tXTcoE500H/egRw4Cul1AoCIl6FWxwJJCDCxCY2sCMpj9uwcRihLE94PV7afK qbQs3C0c+QPgS2t8YIR2UwGvly4DUeiAQ32T5mHEaM5vXYsxHsyvnXda2L/NakhX wxhbRTLROq7dlIIq44z10QGpZEsuQre80JaijkVdtPi3+ZGinmiTw5LiYXZZZIRn RmRZc8tbsEd+m7mT3wGHJ57ToSRXj01aYdkgKbUrPqODtQIDAQABo4IBfDCCAXgw IwYDVR0RBBwwGoIYV1dXLk5CMjEuTkVXWU9SS0xJRkUuQ09NMAkGA1UdEwQCMAAw DgYDVR0PAQH/BAQDAgWgMCgGA1UdJQQhMB8GCCsGAQUFBwMBBggrBgEFBQcDAgYJ YIZIAYb4QgQBMGUGA1UdIAReMFwwWgYKYIZIAYb4RQEHNjBMMCMGCCsGAQUFBwIB FhdodHRwczovL2Quc3ltY2IuY29tL2NwczAlBggrBgEFBQcCAjAZGhdodHRwczov L2Quc3ltY2IuY29tL3JwYTAfBgNVHSMEGDAWgBTXm3zYIqAV992tX84pm1jDvEYA tTArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vc2Uuc3ltY2IuY29tL3NlLmNybDBX BggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9zZS5zeW1jZC5jb20w JgYIKwYBBQUHMAKGGmh0dHA6Ly9zZS5zeW1jYi5jb20vc2UuY3J0MA0GCSqGSIb3 DQEBBQUAA4IBAQBsUCTf1Nsp8u0n2dgvc0C/RfPZ6CrOg3iJs/KW8sRhgM53Gwx7 T8HwxHW9aAvLJ1HAR0oNF1glbTRcNHkkFACFscE86RV/BpQaJCEdhvPqpYte4Lel qoezP+sYfExaFBstL067t19HHSPJCQTsrjxN7W6VSNIiFfBfIrrRxg9sAxGPw8aL rOjbqbY9d+zE1VF9DveNb3aBCwz4d7/yLGbxyd0Kb+korvIDVnYjTdX6F5wQp/tu 5qJryUGxyHvaXhneKnJZLC9/+Brajy0OJ2xVVhtCbPVqrz2afw0VduqGHaSIzua4 SRjHzoULaQQs1jV0viKvjOds6kZvJHoZ6OOp -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvB+hVeC+SBPrPSXMxqc5 7YpSzUuIZ3dn6+8KeQ8VSHdbR4h55saCU93t2Tr5cYqYqu5A3xdlXgS8qx6iQwMV aosCIxTCzQ5L7lkSFK9oyV0tXTcoE500H/egRw4Cul1AoCIl6FWxwJJCDCxCY2sC Mpj9uwcRihLE94PV7afKqbQs3C0c+QPgS2t8YIR2UwGvly4DUeiAQ32T5mHEaM5v XYsxHsyvnXda2L/NakhXwxhbRTLROq7dlIIq44z10QGpZEsuQre80JaijkVdtPi3 +ZGinmiTw5LiYXZZZIRnRmRZc8tbsEd+m7mT3wGHJ57ToSRXj01aYdkgKbUrPqOD tQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 53837885794327992701643553446008970002 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'VeriSign, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'VeriSign Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Terms of use at https://www.verisign.com/rpa (c)10' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'VeriSign Class 3 International Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-09-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-10-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'New York Life Insurance Company' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'NetSec' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'www.nb21.newyorklife.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23748398774770185328903735827482870022811967332509579344040362827442713136399590920436768512621734059309879677137031089737944499369269769848324640392274902133243818048350557203728558804863954501543369670619898206807818493124624754704258754816247269582975805661169897318465709362062498299979032020716041159734585638382951896154140938192709031810448433736785416646081783008477152325010741183601283266410578044462557193437019263025826857195641996195812379982037777189629559680374625711784872044671536371714453794668567337951884056239901632016369283410307711526593096867256538427530370943527326384794748098957528166269877 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'WWW.NB21.NEWYORKLIFE.COM' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.4.1 (serverGatedCrypto) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [104 116 116 112 115 58 47 47 100 46 115 121 109 99 98 46 99 111 109 47 114 112 97] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d79b7cd822a015f7ddad5fce299b58c3bc4600b5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://se.symcb.com/se.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://se.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://se.symcb.com/se.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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