sit1.occ.o360.cloud
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 07:44:e9:c6:e4:a9:ee:e4:24:5b:fb:54:32:7a:75:74 was issued on by DigiCert, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sit1.occ.o360.cloud
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:44:e9:c6:e4:a9:ee:e4:24:5b:fb:54:32:7a:75:74Serial Number (int): 9662413716256626887096430132004025716
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 63:e3:4d:09:77:4b:fc:b6:ec:2a:e4:9e:9d:cd:fd:d0:9e:be:69:57
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 4a:c9:76:8a:c6:82:b2:b1:49:eb:74:22:16:ee:71:b7:64:a2:7c:ec
Fingerprint (sha256): df:01:48:0e:42:f5:52:22:41:a7:a0:79:03:22:06:5c:46:e8:29:31:e9:87:03:b8:0a:47:74:ba:ec:06:45:55
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate sit1.occ.o360.cloud
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sit1.occ.o360.cloud
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sit1.occ.o360.cloud
Other certificates including the domain name o360.cloud
(limited to 100 certificates)
epro.dev-eastus2.cs-np.o360.cloud
qa-patients.caseadvisor-np.o360.cloud
sb-patients.caseadvisor-np.o360.cloud
stg-patients.caseadvisor-np.o360.cloud
prod.occ.o360.cloud
eproprd-az.optum.com
epro.tst-eastus2.cs-np.o360.cloud
qa.cta.o360.cloud
splunk-dev.o360.cloud
sit1-blue.occ.o360.cloud
occ-np.o360.cloud
eprostg-az.optum.com
eproprd-az.optum.com
sb-patients.caseadvisor-np.o360.cloud
rulesenginepreview.efrbilling.o360.cloud
prod-green.occ.o360.cloud
sbgit-patients.caseadvisor-np.o360.cloud
occ-np.o360.cloud
caseadvisor.o360.cloud
dev.cta.o360.cloud
caseadvisor-np.o360.cloud
dev-main.caseadvisor-np.o360.cloud
stg-patients.caseadvisor-np.o360.cloud
occ.o360.cloud
dev-patients.caseadvisor-np.o360.cloud
epro.prd-eastus2.cs.o360.cloud
eproprd-az.optum.com
dev-main.caseadvisor-np.o360.cloud
dev-patients.caseadvisor-np.o360.cloud
eproprd-az.optum.com
api-dev.cta.o360.cloud
asc.prd-eastus2.cs.o360.cloud
kc.o360.cloud
sb-patients.caseadvisor-np.o360.cloud
cta.o360.cloud
caseadvisor-np.o360.cloud
stg-patients.caseadvisor-np.o360.cloud
api-brc.cta.o360.cloud
qa-patients.caseadvisor-np.o360.cloud
pcac.o360.cloud
dojo.o360.cloud
dojo.o360.cloud
caseadvisor.o360.cloud
occ-np.o360.cloud
man.cta.o360.cloud
occ.o360.cloud
occ.o360.cloud
api-dev.cta.o360.cloud
api-brc.cta.o360.cloud
cta.o360.cloud
prod.occ.o360.cloud
api-dev.cta.o360.cloud
prd.cta.o360.cloud
sit1.occ.o360.cloud
epro.stg-eastus2.cs.o360.cloud
eproprd-az.optum.com
dev-patients.caseadvisor-np.o360.cloud
fddemo.o360.cloud
rmsnavbar.caseadvisor.o360.cloud
api-qa.cta.o360.cloud
dev-main.caseadvisor-np.o360.cloud
patients.caseadvisor.o360.cloud
cta.o360.cloud
qa-patients.caseadvisor-np.o360.cloud
sb-patients.caseadvisor-np.o360.cloud
stg-patients.caseadvisor-np.o360.cloud
prod.occ.o360.cloud
eproprd-az.optum.com
epro.tst-eastus2.cs-np.o360.cloud
qa.cta.o360.cloud
splunk-dev.o360.cloud
sit1-blue.occ.o360.cloud
occ-np.o360.cloud
eprostg-az.optum.com
eproprd-az.optum.com
sb-patients.caseadvisor-np.o360.cloud
rulesenginepreview.efrbilling.o360.cloud
prod-green.occ.o360.cloud
sbgit-patients.caseadvisor-np.o360.cloud
occ-np.o360.cloud
caseadvisor.o360.cloud
dev.cta.o360.cloud
caseadvisor-np.o360.cloud
dev-main.caseadvisor-np.o360.cloud
stg-patients.caseadvisor-np.o360.cloud
occ.o360.cloud
dev-patients.caseadvisor-np.o360.cloud
epro.prd-eastus2.cs.o360.cloud
eproprd-az.optum.com
dev-main.caseadvisor-np.o360.cloud
dev-patients.caseadvisor-np.o360.cloud
eproprd-az.optum.com
api-dev.cta.o360.cloud
asc.prd-eastus2.cs.o360.cloud
kc.o360.cloud
sb-patients.caseadvisor-np.o360.cloud
cta.o360.cloud
caseadvisor-np.o360.cloud
stg-patients.caseadvisor-np.o360.cloud
api-brc.cta.o360.cloud
qa-patients.caseadvisor-np.o360.cloud
pcac.o360.cloud
dojo.o360.cloud
dojo.o360.cloud
caseadvisor.o360.cloud
occ-np.o360.cloud
man.cta.o360.cloud
occ.o360.cloud
occ.o360.cloud
api-dev.cta.o360.cloud
api-brc.cta.o360.cloud
cta.o360.cloud
prod.occ.o360.cloud
api-dev.cta.o360.cloud
prd.cta.o360.cloud
sit1.occ.o360.cloud
epro.stg-eastus2.cs.o360.cloud
eproprd-az.optum.com
dev-patients.caseadvisor-np.o360.cloud
fddemo.o360.cloud
rmsnavbar.caseadvisor.o360.cloud
api-qa.cta.o360.cloud
dev-main.caseadvisor-np.o360.cloud
patients.caseadvisor.o360.cloud
cta.o360.cloud
Certificate
The complete raw certificate details for sit1.occ.o360.cloud in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHljCCBX6gAwIBAgIQB0TpxuSp7uQkW/tUMnp1dDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMxMjA1MDAwMDAwWhcNMjQwNjA1MjM1OTU5WjAeMRwwGgYDVQQDExNzaXQxLm9j Yy5vMzYwLmNsb3VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzF5 ON+8A7NIIlJpZ1k5VIEMHLYJ4At71s9+9LH2hpr8/DcxWtV7gEwVC6fZpKpgNRVp 11vLSagBN1ODEv6W+iJ2jit+8IGYt/nU3gJL3C12JGmOhlcreQF5Gt1NvDeXCOnp oCcBKA4e8OqCw6IR/tmVYEkJKoFuhRHgyyW/IaAutYfODiDCVtpr3KOR3ek3s78T 8MfrT5KAhGp87jjO/0o/TSO1p1g4b6G3R7iYJ6j0kaKlq1q4QSbh8n0SO90kUju0 LTKQ53KugGVZvrq0TruMdDMNNB77HEx11kX+iZcsA9f2IjLjnNh/pggHBU62TU0N dV0uPEVF400VdZXO8QIDAQABo4IDkDCCA4wwHwYDVR0jBBgwFoAUpbTW6zbE52um 38RkCwEqIAS4ZiMwHQYDVR0OBBYEFGPjTQl3S/y27Crknp3N/dCevmlXMB4GA1Ud EQQXMBWCE3NpdDEub2NjLm8zNjAuY2xvdWQwPgYDVR0gBDcwNTAzBgZngQwBAgEw KTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1Ud HwSBlzCBlDBIoEagRIZCaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0dlb1RydXN0 R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3JsMEigRqBEhkJodHRwOi8v Y3JsNC5kaWdpY2VydC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2 MjAyMkNBMS5jcmwwgYcGCCsGAQUFBwEBBHsweTAkBggrBgEFBQcwAYYYaHR0cDov L29jc3AuZGlnaWNlcnQuY29tMFEGCCsGAQUFBzAChkVodHRwOi8vY2FjZXJ0cy5k aWdpY2VydC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNB MS5jcnQwDAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHcA 7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGMOu8e2gAABAMASDBG AiEA1dMMv4kyMNUjsfvMvclq9z6VXi/r1TCfRYtBDjSBRM4CIQD3m+fnacjPd+AU NwnUReE7GocfMCGzAMEGGSjKxKHyeAB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0s gdm7v6s52IRzAAABjDrvHu4AAAQDAEcwRQIhAID0zJzVMlKKrI41hIhCtz8PnJbh 89/MMEBIt/HTp/1qAiBa+A34mPpwxu4RbGQTX785FP3WeVoV+vdlaP07Ar90FwB2 ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABjDrvHvkAAAQDAEcw RQIgSatIapUvZNU+H09u7Hq+vin9dQIGLlYOjmsMrYfTrpUCIQDsjQMyLo7q2FnO cNKc2zmPz/64D+DHu3M38ZsZjBUx1zANBgkqhkiG9w0BAQsFAAOCAgEAzrEm4xlW ulkNhMmBxDKBw2yrLkC5PRBBRK7ZnqUiz3OeAQ2wEMKQ90uWSRKDPrJvF7M020E1 BLc2QCXE8B7ZPl61dI9X5Wz8cZwvzW4E7PPDn0ztTABI+iKKccvgeOfn8eXxa5N5 +oDnoIY8X9LTAUntPfYojz11C/u1GXDyNhMqu/R2j/B3fTHYqsrln0ZSLjlNrWh/ TBumZ9hJRzFNu0e3ZaNFE8znArvJpOq6KBQ5De7C8lUMAzk+wlkSB51DRNwnYuQn E+UdLvJN/YjK3s3iig3ejW9y7y0ASofVgqgwZ1JUTm4VWNaR2EU2QY6o6ONkzrLC 0ogs9uThHZUnhkL+5KJIB+rxG+DhL8JR/PZHGSOxtyhBDqQgU8tmcj67+0FiC4e/ pGg3ILm9b9nolRz9a/YoapBWKleLPHJ7ueRPdgvXegM21kefH3QX83ChLX9p+8gX nPBpf/0ZsxO6otYi7x0yGWu6nNFFUqpRFNFHkBN3vMVB0P0h0VJFyfpCBUnGkx+6 zXJe07rsSiyj3Yi8Sk5ic6RQOhHt9HvtUEQ5pyMBrghKo5ibv6hKyvCZcjJYWxzs hU48yDQCxfEV/lD6BiHqpxNxATmikLv5szE87fJhto6hAhW4lA7Fn1jSmlzzj88T 2wGBQPg+QiwWo69cMomIR9mYdq7sMysxrH8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzF5ON+8A7NIIlJpZ1k5 VIEMHLYJ4At71s9+9LH2hpr8/DcxWtV7gEwVC6fZpKpgNRVp11vLSagBN1ODEv6W +iJ2jit+8IGYt/nU3gJL3C12JGmOhlcreQF5Gt1NvDeXCOnpoCcBKA4e8OqCw6IR /tmVYEkJKoFuhRHgyyW/IaAutYfODiDCVtpr3KOR3ek3s78T8MfrT5KAhGp87jjO /0o/TSO1p1g4b6G3R7iYJ6j0kaKlq1q4QSbh8n0SO90kUju0LTKQ53KugGVZvrq0 TruMdDMNNB77HEx11kX+iZcsA9f2IjLjnNh/pggHBU62TU0NdV0uPEVF400VdZXO 8QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9662413716256626887096430132004025716 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sit1.occ.o360.cloud' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19086380353860316066070623391485067711233986186142657899647612151792414415667909289742290536694737636783690644544422849107477378019646000472591818533504372899869342430400343157989842253850364551489879666953734096964670977654625751392616073210464651677891935590658555599324393489854058934005835344295160056529282295323392457578185011799678794089268660781279071070486889396873906598702527552837894395991255203817274586349015178379263005431313237082185387091726958898139502327812440282828777945350957822621308574204228643903983680668767516307216656784332245077045912785968369582218224537968377670767777695961858073546481 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 63e34d09774bfcb6ec2ae49e9dcdfdd09ebe6957 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sit1.occ.o360.cloud' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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