cancer.montefioreeinstein.org
- Montefiore Medical Center -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 07:7b:27:c9:4c:1f:76:86:94:8e:c7:48:33:ff:f2:3e was issued on by DigiCert Inc.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Montefiore Medical Center
Organization:
Montefiore Medical Center
State / Province:
New York
Locality: The Bronx
Country: US
Locality: The Bronx
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:7b:27:c9:4c:1f:76:86:94:8e:c7:48:33:ff:f2:3eSerial Number (int): 9944055446488299859557966415535272510
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 5b:af:3d:d5:cb:75:24:01:37:b7:47:c0:b8:15:db:c9:7d:94:2f:9f
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): b5:12:6a:02:55:4e:07:c4:4a:bb:33:df:eb:a0:f2:fa:2d:e2:43:4a
Fingerprint (sha256): d4:8b:4f:fb:5c:7a:3c:76:02:1f:3f:1f:61:61:c8:26:61:09:cd:ac:11:25:0a:7b:aa:e5:28:8d:85:60:02:8f
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate cancer.montefioreeinstein.org
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cancer.montefioreeinstein.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cancer.montefioreeinstein.org
cancer-content.montefioreeinstein.org
dev-cancer.montefioreeinstein.org
dev-cancer-content.montefioreeinstein.org
qa-cancer.montefioreeinstein.org
qa-cancer-content.montefioreeinstein.org
uat-cancer.montefioreeinstein.org
uat-cancer-content.montefioreeinstein.org
stage-cancer.montefioreeinstein.org
stage-cancer-content.montefioreeinstein.org
cancer-content.montefioreeinstein.org
dev-cancer.montefioreeinstein.org
dev-cancer-content.montefioreeinstein.org
qa-cancer.montefioreeinstein.org
qa-cancer-content.montefioreeinstein.org
uat-cancer.montefioreeinstein.org
uat-cancer-content.montefioreeinstein.org
stage-cancer.montefioreeinstein.org
stage-cancer-content.montefioreeinstein.org
Other certificates including the domain name montefioreeinstein.org
(limited to 100 certificates)
san-12-s10.tlsprovisioning.exacttarget.com
montefioreeinstein.org
stroke.montefioreeinstein.org
montefioreeinstein.org
san-12-s10.tlsprovisioning.exacttarget.com
san-12-s10.tlsprovisioning.exacttarget.com
montefioreeinstein.org
montefioreeinstein.org
san-12-s10.tlsprovisioning.exacttarget.com
san-12-s10.tlsprovisioning.exacttarget.com
cancer.montefioreeinstein.org
cancer.montefioreeinstein.org
san-12-s10.tlsprovisioning.exacttarget.com
montefioreeinstein.org
stroke.montefioreeinstein.org
montefioreeinstein.org
san-12-s10.tlsprovisioning.exacttarget.com
san-12-s10.tlsprovisioning.exacttarget.com
montefioreeinstein.org
montefioreeinstein.org
san-12-s10.tlsprovisioning.exacttarget.com
san-12-s10.tlsprovisioning.exacttarget.com
cancer.montefioreeinstein.org
cancer.montefioreeinstein.org
san-12-s10.tlsprovisioning.exacttarget.com
Certificate
The complete raw certificate details for cancer.montefioreeinstein.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIZDCCB0ygAwIBAgIQB3snyUwfdoaUjsdIM//yPjANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjMw NzI4MDAwMDAwWhcNMjQwODI3MjM1OTU5WjCBgDELMAkGA1UEBhMCVVMxETAPBgNV BAgTCE5ldyBZb3JrMRIwEAYDVQQHEwlUaGUgQnJvbngxIjAgBgNVBAoTGU1vbnRl ZmlvcmUgTWVkaWNhbCBDZW50ZXIxJjAkBgNVBAMTHWNhbmNlci5tb250ZWZpb3Jl ZWluc3RlaW4ub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1q3 dl57dB/qxg60M6zgXXRtQDeHJiTfV3m7x8ziez+iGfKtxFSY9UEsdcOlozv3N6Ly lsJzW23dJ3oCwJnlggjm7fWm5exUaYxgexdugBM5oBS0fXg9kdClQtHSgRCVW0bD GrQBmdV4hU1aE7bwpMwOiQXe1RxmUgsvQXd8rURD2f+5zHbe6+hYYbrIc4Qenmxp xeRyIwG9k17toaUlMmWmqs78R5brqUooL4Damp0M9HLbbrP0pllI12DEbNGan9j1 U2pkMvLQdqcfbY2+zjF4Wkq4ShLfKK9lSHRjgelTC3eu6E7ucTanIBYPdD3pLJA+ lZ6MVivO6/uzxi0FkQIDAQABo4IE/jCCBPowHwYDVR0jBBgwFoAUdIWAwGbH3zfe z70pN6oDHb7tzRcwHQYDVR0OBBYEFFuvPdXLdSQBN7dHwLgV28l9lC+fMIIBjQYD VR0RBIIBhDCCAYCCHWNhbmNlci5tb250ZWZpb3JlZWluc3RlaW4ub3JngiVjYW5j ZXItY29udGVudC5tb250ZWZpb3JlZWluc3RlaW4ub3JngiFkZXYtY2FuY2VyLm1v bnRlZmlvcmVlaW5zdGVpbi5vcmeCKWRldi1jYW5jZXItY29udGVudC5tb250ZWZp b3JlZWluc3RlaW4ub3JngiBxYS1jYW5jZXIubW9udGVmaW9yZWVpbnN0ZWluLm9y Z4IocWEtY2FuY2VyLWNvbnRlbnQubW9udGVmaW9yZWVpbnN0ZWluLm9yZ4IhdWF0 LWNhbmNlci5tb250ZWZpb3JlZWluc3RlaW4ub3Jngil1YXQtY2FuY2VyLWNvbnRl bnQubW9udGVmaW9yZWVpbnN0ZWluLm9yZ4Ijc3RhZ2UtY2FuY2VyLm1vbnRlZmlv cmVlaW5zdGVpbi5vcmeCK3N0YWdlLWNhbmNlci1jb250ZW50Lm1vbnRlZmlvcmVl aW5zdGVpbi5vcmcwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjCBnwYDVR0fBIGXMIGUMEigRqBEhkJodHRwOi8vY3JsMy5kaWdp Y2VydC5jb20vRGlnaUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5j cmwwSKBGoESGQmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2Jh bEcyVExTUlNBU0hBMjU2MjAyMENBMS0xLmNybDA+BgNVHSAENzA1MDMGBmeBDAEC AjApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwgYcG CCsGAQUFBwEBBHsweTAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQu Y29tMFEGCCsGAQUFBzAChkVodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGln aUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcnQwCQYDVR0TBAIw ADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHYA7s3QZNXbGs7FXLedtM0TojKH Rny87N7DUUhZRnEftZsAAAGJniBPYQAABAMARzBFAiEA5reRuHNYHcHqhQznpUVT 52aHtBn+HAplm/dW4yLMGfMCIFK+/eVRlen+87RDwpTnoAOg2fbObRbzsnVZ52Va U21IAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGJniBPmAAA BAMASDBGAiEA1f9SH8FQZ3MyqFHNZS4F+STtgHB5WtfzBB57qyipS3ICIQCuSGvR rAV4V3oyg8XpoacMADM8/RfDb38EYKnjzfXDwAB2ANq2v2s/tbYin5vCu1xr6HCR cWy7UYSFNL2kPTBI1/urAAABiZ4gT8QAAAQDAEcwRQIgP4w5bdUz5Yxxep2SESBf XTQGTzx0hEfLHy6YM1te9qwCIQDqM/UQXonEEakG3L5z85E7L8EuB913ni3/1SW2 7gfIJTANBgkqhkiG9w0BAQsFAAOCAQEAOsWUX2F2pGELPSyNAsr1PJts0QgruVuN XoXK7Trt4MT1suj2xBZVW7an5c2oxKnwiUiDDfLkTdhgEC/stKOfPig4ocvjrD9S OhXngYSsFx1lc2b7IbObV32+09EAJ0ItaLPt5HWE0Vsd6hF58lfu7NbRL6ftOr+l OYR7tP4tBinbaorQAZ+t1ltaXkIfg8TUdOAqRwtonco/QtsngnOGmXukn9ozXmgK 04k+Zklc0kUqlTEGSR0hZDAQNfUNYDo1iGGeKRC+RTFbG27zb+njo4QT+IOeNS2e AJtY+FXrohmNgnm4PsNUDE+wG08vonkoU6nzC2eiMEEftl0N+5wd0w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1q3dl57dB/qxg60M6zg XXRtQDeHJiTfV3m7x8ziez+iGfKtxFSY9UEsdcOlozv3N6LylsJzW23dJ3oCwJnl ggjm7fWm5exUaYxgexdugBM5oBS0fXg9kdClQtHSgRCVW0bDGrQBmdV4hU1aE7bw pMwOiQXe1RxmUgsvQXd8rURD2f+5zHbe6+hYYbrIc4QenmxpxeRyIwG9k17toaUl MmWmqs78R5brqUooL4Damp0M9HLbbrP0pllI12DEbNGan9j1U2pkMvLQdqcfbY2+ zjF4Wkq4ShLfKK9lSHRjgelTC3eu6E7ucTanIBYPdD3pLJA+lZ6MVivO6/uzxi0F kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9944055446488299859557966415535272510 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Bronx' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montefiore Medical Center' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cancer.montefioreeinstein.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25166156735581348394035197706480717270944255645856399006216723638469186864293631789045042548254075420188415223958612536306622869361073012314375179630722171747717246538583252564644961373099556027567341761680008995194693838845595129131689889544841100352585565662293509300792626126193191414660719877275948532196752356931540191560437994688037800076248433534165965427334107269259874439541166987265822643585512415967931027910493626345556039316825653053492062826957152583849920487186743359693405033851410155647825231817728402067264020429223643511065206762884608710709887033523628263278840556460548598666342012608457464415633 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5baf3dd5cb75240137b747c0b815dbc97d942f9f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (388 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cancer.montefioreeinstein.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cancer-content.montefioreeinstein.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-cancer.montefioreeinstein.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-cancer-content.montefioreeinstein.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-cancer.montefioreeinstein.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-cancer-content.montefioreeinstein.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-cancer.montefioreeinstein.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-cancer-content.montefioreeinstein.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage-cancer.montefioreeinstein.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage-cancer-content.montefioreeinstein.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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