*.avivaservices.co.uk
- Aviva PLC -
Issued by COMODO RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 99:35:8f:c4:70:2b:60:2e:d7:42:9e:d8:44:71:45:20 was issued on by COMODO CA Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Aviva PLC
Organization:
Aviva PLC
Organization unit: Friends Life
Organization unit: Hosted by AVIVA CENTRAL SERVICES UK LIMITED
Organization unit: Enterprise SSL Pro Wildcard
Organization unit: Friends Life
Organization unit: Hosted by AVIVA CENTRAL SERVICES UK LIMITED
Organization unit: Enterprise SSL Pro Wildcard
Address:
1 Undershaft
Address: St Helens
Postal code: EC3P 3DQ
State / Province: London
Locality: London
Country: GB
Address: St Helens
Postal code: EC3P 3DQ
State / Province: London
Locality: London
Country: GB
COMODO CA Limited
Organization:
COMODO CA Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 99:35:8f:c4:70:2b:60:2e:d7:42:9e:d8:44:71:45:20Serial Number (int): 203649991036602408524753183666473092384
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 87:91:3b:7b:f6:38:3a:01:cb:11:e6:46:75:92:37:fc:c4:9e:0f:8a
AuthorityKeyId: 9a:f3:2b:da:cf:ad:4f:b6:2f:bb:2a:48:48:2a:12:b7:1b:42:c1:24
Fingerprint (sha1): 54:94:1d:52:08:ff:c8:c0:5d:6b:dd:eb:0e:76:55:9f:7f:9f:6e:f3
Fingerprint (sha256): ce:d0:89:a6:32:08:f0:a6:87:12:ce:56:0f:d1:6d:73:e4:b1:ea:82:24:c1:74:61:be:79:25:d1:95:0c:c8:86
Issuing Certificate URL: http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.comodoca.comCRL Distribution Point: http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate *.avivaservices.co.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.avivaservices.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.avivaservices.co.uk
avivaservices.co.uk
avivaservices.co.uk
Other certificates including the domain name avivaservices.co.uk
(limited to 100 certificates)
www.eserve.avivaservices.co.uk
cert02.uk.aviva.com
cert10.uk.aviva.com
cert10.uk.aviva.com
cert01.tmp.aviva.com
cert10.uk.aviva.com
cert01.tmp.aviva.com
cert10.uk.aviva.com
cert02.uk.aviva.com
avivaservices.co.uk
cert10.uk.aviva.com
cert01.tmp.aviva.com
cert01.tmp.aviva.com
np-cert01.uk.aviva.com
cert01.tmp.aviva.com
regs.avivaservices.co.uk
cert01.tmp.aviva.com
cert01.tmp.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
*.avivaservices.co.uk
cert02.uk.aviva.com
cert01.tmp.aviva.com
adviser.avivaservices.co.uk
cert02.uk.aviva.com
cert01.tmp.aviva.com
np-cert01.uk.aviva.com
np-cert02.uk.aviva.com
clientauth.aviva.co.uk
cert01.tmp.aviva.com
cert01.tmp.aviva.com
np-cert01.uk.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
cert02.uk.aviva.com
np-cert01.uk.aviva.com
cert02.uk.aviva.com
cert05.uk.aviva.com
np-cert01.uk.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
clientauth.aviva.co.uk
cert01.tmp.aviva.com
cert02.uk.aviva.com
clientauth.aviva.co.uk
cert05.uk.aviva.com
cert01.tmp.aviva.com
www43.avivaservices.co.uk
cert02.uk.aviva.com
insights.avivainvestors.com
clientauth.aviva.co.uk
cert01.tmp.aviva.com
cert02.uk.aviva.com
cert05.uk.aviva.com
cert02.uk.aviva.com
clientauth.aviva.co.uk
cert01.tmp.aviva.com
cert01.tmp.aviva.com
eserve.avivaservices.co.uk
np-cert01.uk.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
member.avivaservices.co.uk
cert01.tmp.aviva.com
cert01.tmp.aviva.com
cert10.uk.aviva.com
np-cert01.uk.aviva.com
clientauth.aviva.co.uk
clientauth.aviva.co.uk
clientauth.aviva.co.uk
cert01.tmp.aviva.com
cert10.uk.aviva.com
cert02.uk.aviva.com
cert02.uk.aviva.com
login.avivainvestors.com
cert05.uk.aviva.com
cert02.uk.aviva.com
np-cert02.uk.aviva.com
cert02.uk.aviva.com
np-cert01.uk.aviva.com
np-cert01.uk.aviva.com
cert01.tmp.aviva.com
np-cert01.uk.aviva.com
cert10.uk.aviva.com
cert01.tmp.aviva.com
cert10.uk.aviva.com
cert01.tmp.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
cert02.uk.aviva.com
www.friendslife.com
online.avivaservices.co.uk
cert02.uk.aviva.com
www.avivainvestors.be
cert02.uk.aviva.com
clientauth.aviva.co.uk
*.avivaservices.co.uk
cert02.uk.aviva.com
cert10.uk.aviva.com
cert10.uk.aviva.com
cert01.tmp.aviva.com
cert10.uk.aviva.com
cert01.tmp.aviva.com
cert10.uk.aviva.com
cert02.uk.aviva.com
avivaservices.co.uk
cert10.uk.aviva.com
cert01.tmp.aviva.com
cert01.tmp.aviva.com
np-cert01.uk.aviva.com
cert01.tmp.aviva.com
regs.avivaservices.co.uk
cert01.tmp.aviva.com
cert01.tmp.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
*.avivaservices.co.uk
cert02.uk.aviva.com
cert01.tmp.aviva.com
adviser.avivaservices.co.uk
cert02.uk.aviva.com
cert01.tmp.aviva.com
np-cert01.uk.aviva.com
np-cert02.uk.aviva.com
clientauth.aviva.co.uk
cert01.tmp.aviva.com
cert01.tmp.aviva.com
np-cert01.uk.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
cert02.uk.aviva.com
np-cert01.uk.aviva.com
cert02.uk.aviva.com
cert05.uk.aviva.com
np-cert01.uk.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
clientauth.aviva.co.uk
cert01.tmp.aviva.com
cert02.uk.aviva.com
clientauth.aviva.co.uk
cert05.uk.aviva.com
cert01.tmp.aviva.com
www43.avivaservices.co.uk
cert02.uk.aviva.com
insights.avivainvestors.com
clientauth.aviva.co.uk
cert01.tmp.aviva.com
cert02.uk.aviva.com
cert05.uk.aviva.com
cert02.uk.aviva.com
clientauth.aviva.co.uk
cert01.tmp.aviva.com
cert01.tmp.aviva.com
eserve.avivaservices.co.uk
np-cert01.uk.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
member.avivaservices.co.uk
cert01.tmp.aviva.com
cert01.tmp.aviva.com
cert10.uk.aviva.com
np-cert01.uk.aviva.com
clientauth.aviva.co.uk
clientauth.aviva.co.uk
clientauth.aviva.co.uk
cert01.tmp.aviva.com
cert10.uk.aviva.com
cert02.uk.aviva.com
cert02.uk.aviva.com
login.avivainvestors.com
cert05.uk.aviva.com
cert02.uk.aviva.com
np-cert02.uk.aviva.com
cert02.uk.aviva.com
np-cert01.uk.aviva.com
np-cert01.uk.aviva.com
cert01.tmp.aviva.com
np-cert01.uk.aviva.com
cert10.uk.aviva.com
cert01.tmp.aviva.com
cert10.uk.aviva.com
cert01.tmp.aviva.com
cert02.uk.aviva.com
cert01.tmp.aviva.com
cert02.uk.aviva.com
www.friendslife.com
online.avivaservices.co.uk
cert02.uk.aviva.com
www.avivainvestors.be
cert02.uk.aviva.com
clientauth.aviva.co.uk
*.avivaservices.co.uk
Certificate
The complete raw certificate details for *.avivaservices.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHNzCCBh+gAwIBAgIRAJk1j8RwK2Au10Ke2ERxRSAwDQYJKoZIhvcNAQELBQAw gZYxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMTwwOgYD VQQDEzNDT01PRE8gUlNBIE9yZ2FuaXphdGlvbiBWYWxpZGF0aW9uIFNlY3VyZSBT ZXJ2ZXIgQ0EwHhcNMTgwODAyMDAwMDAwWhcNMTkwODAyMjM1OTU5WjCCARQxCzAJ BgNVBAYTAkdCMREwDwYDVQQREwhFQzNQIDNEUTEPMA0GA1UECBMGTG9uZG9uMQ8w DQYDVQQHEwZMb25kb24xFTATBgNVBAkTDDEgVW5kZXJzaGFmdDESMBAGA1UECRMJ U3QgSGVsZW5zMRIwEAYDVQQKEwlBdml2YSBQTEMxFTATBgNVBAsTDEZyaWVuZHMg TGlmZTE0MDIGA1UECxMrSG9zdGVkIGJ5IEFWSVZBIENFTlRSQUwgU0VSVklDRVMg VUsgTElNSVRFRDEkMCIGA1UECxMbRW50ZXJwcmlzZSBTU0wgUHJvIFdpbGRjYXJk MR4wHAYDVQQDDBUqLmF2aXZhc2VydmljZXMuY28udWswggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQDbG+gqnFlbwhNfNOSGOKj13Sn+PzXO+GnIfRNVRH3X iYytx19A/YgJTI0f/p38Fi6/hLumX28cODlcptvdgRc8XUGS6JcvqFgvVSLI4w0M 0qBL1uBYooNLUNus3fqpjEvgPhYaCrM+GDiiyk6n909AVXx3C/nwHjnakqlQ3War Rt9wLKyYxNHN1n/wBERo7T4jckf4UBhg+I8Qo/EB2jbfJmRQtuJeDedN5ESr/zdQ PtzNEIdtdh5ny3tTqZOpBKzBBs1ED810m6TnfcMpuaQW/8MgGSLLHpPShAfNfX5w unq7NurfBYIEY6rgojKzP1wa1ulsRPQ5+/aWXt41QLy7AgMBAAGjggL9MIIC+TAf BgNVHSMEGDAWgBSa8yvaz61Pti+7KkhIKhK3G0LBJDAdBgNVHQ4EFgQUh5E7e/Y4 OgHLEeZGdZI3/MSeD4owDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFAGA1UdIARJMEcwOwYMKwYBBAGy MQECAQMEMCswKQYIKwYBBQUHAgEWHWh0dHBzOi8vc2VjdXJlLmNvbW9kby5jb20v Q1BTMAgGBmeBDAECAjBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLmNvbW9k b2NhLmNvbS9DT01PRE9SU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2Vy dmVyQ0EuY3JsMIGLBggrBgEFBQcBAQR/MH0wVQYIKwYBBQUHMAKGSWh0dHA6Ly9j cnQuY29tb2RvY2EuY29tL0NPTU9ET1JTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25T ZWN1cmVTZXJ2ZXJDQS5jcnQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9k b2NhLmNvbTA1BgNVHREELjAsghUqLmF2aXZhc2VydmljZXMuY28udWuCE2F2aXZh c2VydmljZXMuY28udWswggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDuS723dc5g uuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAWT7D/+YAAAEAwBHMEUCIE/JfJen XUIYhky/Umn46fCTCF90ANC4UswL3bpgvf2AAiEApN2ejQIBtKG88xTNOGVcQWu1 i7RINt4s/RbhhOcQ2k8AdwB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvM VgAAAWT7D//iAAAEAwBIMEYCIQCwk4vqnYCj2dLfRPAXoQDDBpEFo25j/OfY1/wp TmCQKQIhANg0hrPoi2OGQL+UXv2OJU+7Ms9kDTO5FJfIby9I7YOlMA0GCSqGSIb3 DQEBCwUAA4IBAQCs4CuoJkjOwU4tmU9T4FxEL9q+sZ3ireh8wzeaDrkfadYOMeUZ w8aWyZ7U3XToRjKbcjAEQdmD6Lgv0722Az9rbyoPiktbjXEobMrqVEBtoecXsmkp NFPg3omZe0ONGBHx+VjvgFgJ0Duy5erXRa32gO47NU75HUGq6IM0pnLaMwEu7Wsr ahId5099Bmr6mmc2JDX2KHaEn0b8LF1cBJN5iyuQ2UcROT+swBew2IO/UC5cw67J DTxBrT7C77y88i+tH5is66OzJbRNSTzdEC13bIOnX0fQMQmhRA4oUL8zHxIgtd31 xJdqu0UXmQn9Dm0+RSQUvkrUMyTRbpHV+qCm -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xvoKpxZW8ITXzTkhjio 9d0p/j81zvhpyH0TVUR914mMrcdfQP2ICUyNH/6d/BYuv4S7pl9vHDg5XKbb3YEX PF1BkuiXL6hYL1UiyOMNDNKgS9bgWKKDS1DbrN36qYxL4D4WGgqzPhg4ospOp/dP QFV8dwv58B452pKpUN1mq0bfcCysmMTRzdZ/8AREaO0+I3JH+FAYYPiPEKPxAdo2 3yZkULbiXg3nTeREq/83UD7czRCHbXYeZ8t7U6mTqQSswQbNRA/NdJuk533DKbmk Fv/DIBkiyx6T0oQHzX1+cLp6uzbq3wWCBGOq4KIysz9cGtbpbET0Ofv2ll7eNUC8 uwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 203649991036602408524753183666473092384 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'EC3P 3DQ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1 Undershaft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'St Helens' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aviva PLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Friends Life' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by AVIVA CENTRAL SERVICES UK LIMITED' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Enterprise SSL Pro Wildcard' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.avivaservices.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27659950192944276798729497130847947343261248943993618204614421235816743324266348001776341359661946751248092118289668058011527436916561067769224099168326307255952731111409364935805529742230028761740639561333175960598739533230793157506775762966347576621783455118845070805080166383551794294392487553985408686246451715110420766332096206922338360075346038479762668541717154710361568748991921753358709773554192374907874328066257747801724650028347665794818551588165772070038482310990837806023432418091465849871697003137838929855034382878612146452466286390111986607538532787511338389631177705998990518221345772496270900903099 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9af32bdacfad4fb62fbb2a48482a12b71b42c124 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 87913b7bf6383a01cb11e646759237fcc49e0f8a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (127 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avivaservices.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avivaservices.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb00000164fb0fff98000004030047304502204fc97c97a75d4218864cbf5269f8e9f093085f7400d0b852cc0bddba60bdfd80022100a4dd9e8d0201b4a1bcf314cd38655c416bb58bb44836de2cfd16e184e710da4f007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000164fb0fffe20000040300483046022100b0938bea9d80a3d9d2df44f017a100c3069105a36e63fce7d8d7fc294e609029022100d83486b3e88b638640bf945efd8e254fbb32cf640d33b91497c86f2f48ed83a5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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