www.aldi.co.uk
- ALDI Einkauf GmbH & Co. oHG -
Issued by Trusted Secure Certificate Authority 5
About this certificate
This digital certificate with serial number fb:e0:73:46:1d:fa:27:88:c3:b4:f6:52:33:ec:ce:79 was issued on by Corporation Service Company.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
ALDI Einkauf GmbH & Co. oHG
Organization:
ALDI Einkauf GmbH & Co. oHG
Organization unit: Unified Communications
Organization unit: Unified Communications
Address:
Mintarder Strasse 38-40
Postal code: 45481
State / Province: Nordrhein-Westfalen
Locality: Muelheim an der Ruhr
Country: DE
Postal code: 45481
State / Province: Nordrhein-Westfalen
Locality: Muelheim an der Ruhr
Country: DE
Corporation Service Company
Organization:
Corporation Service Company
State / Province:
DE
Locality: Wilmington
Country: US
Locality: Wilmington
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): fb:e0:73:46:1d:fa:27:88:c3:b4:f6:52:33:ec:ce:79Serial Number (int): 334801639470678964863123646183566528121
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: aa:09:42:3b:b3:93:93:01:3c:ec:7b:0c:61:79:85:30:0d:be:e1:80
AuthorityKeyId: f2:bb:55:ee:fc:8f:cf:d0:3f:14:68:1a:95:7e:79:0e:ab:17:30:f4
Fingerprint (sha1): be:d7:57:3e:98:36:ff:36:33:d8:a3:c4:d9:41:02:3e:fc:3f:b9:11
Fingerprint (sha256): e0:c4:ad:05:6e:7c:da:bb:85:0f:b5:06:08:7b:9a:8a:5f:9a:6c:f2:ab:23:ae:66:a0:66:59:b9:da:64:d2:20
Issuing Certificate URL: http://crt.usertrust.com/TrustedSecureCertificateAuthority5.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/TrustedSecureCertificateAuthority5.crl
Check the revocation status for certificate www.aldi.co.uk
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.aldi.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.aldi.co.uk
aldi.co.uk
aldi.ie
assets.aldi-digital.co.uk
assets.aldi-digital.ie
assets.aldi.co.uk
assets.aldi.ie
preview.aldi.ie
prod-ws.aldi.co.uk
prod-ws.aldi.ie
www.aldi.ie
www.preview.aldi.ie
aldi.co.uk
aldi.ie
assets.aldi-digital.co.uk
assets.aldi-digital.ie
assets.aldi.co.uk
assets.aldi.ie
preview.aldi.ie
prod-ws.aldi.co.uk
prod-ws.aldi.ie
www.aldi.ie
www.preview.aldi.ie
Other certificates including the domain name aldi.co.uk
(limited to 100 certificates)
sslcertificate3.queue-it.net
www.dr-admin.aldi.co.uk
stage-ptp.aldi.co.uk
www.aldi-sued.com
ameportal.aldi.co.uk
customerservice.aldi.co.uk
ppe-store.aldi.co.uk
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
staging.store.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.ppe-store.aldi.co.uk
ame.aldi.co.uk
www.aldi.co.uk
sslcertificate3.queue-it.net
ppe-admin.aldi.co.uk
the-aldi-testers-club.aldi.co.uk
www.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
fit-admin.aldi.co.uk
www.aldi.co.uk
www.aldi-sued.com
www.ppe-store.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
customerservice.aldi.co.uk
www.def-store.aldi.co.uk
ameportal.aldi.co.uk
live-admin.aldi.co.uk
product.prd.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.fit-store.aldi.co.uk
clocks.wfm.aldi.co.uk
test-ptp.aldi-international.com
www.aldi.co.uk
www.aldi-sued.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
mia.aldi.co.uk
stage-ptp.aldi.co.uk
sit-store.aldi.co.uk
live-admin.aldi.co.uk
masterdata.prd.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
www.aldi.co.uk
imperva.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
def-admin.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
dev-block.ukcsd-order.aldi.co.uk
sslcertificate3.queue-it.net
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
staging.checkout.dev.shopandgo.aldi.co.uk
staff.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
backoffice.dev.shopandgo.aldi.co.uk
groceries.aldi.co.uk
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
leaflets.aldi.co.uk
shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
leaflets.aldi.co.uk
sslcertificate3.queue-it.net
imperva.com
www.aldi-sued.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
gateway-test.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
mia.aldi.co.uk
masterdata.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
www.dr-admin.aldi.co.uk
stage-ptp.aldi.co.uk
www.aldi-sued.com
ameportal.aldi.co.uk
customerservice.aldi.co.uk
ppe-store.aldi.co.uk
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
staging.store.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.ppe-store.aldi.co.uk
ame.aldi.co.uk
www.aldi.co.uk
sslcertificate3.queue-it.net
ppe-admin.aldi.co.uk
the-aldi-testers-club.aldi.co.uk
www.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
fit-admin.aldi.co.uk
www.aldi.co.uk
www.aldi-sued.com
www.ppe-store.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
customerservice.aldi.co.uk
www.def-store.aldi.co.uk
ameportal.aldi.co.uk
live-admin.aldi.co.uk
product.prd.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.fit-store.aldi.co.uk
clocks.wfm.aldi.co.uk
test-ptp.aldi-international.com
www.aldi.co.uk
www.aldi-sued.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
mia.aldi.co.uk
stage-ptp.aldi.co.uk
sit-store.aldi.co.uk
live-admin.aldi.co.uk
masterdata.prd.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
www.aldi.co.uk
imperva.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
def-admin.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
dev-block.ukcsd-order.aldi.co.uk
sslcertificate3.queue-it.net
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
staging.checkout.dev.shopandgo.aldi.co.uk
staff.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
backoffice.dev.shopandgo.aldi.co.uk
groceries.aldi.co.uk
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
leaflets.aldi.co.uk
shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
leaflets.aldi.co.uk
sslcertificate3.queue-it.net
imperva.com
www.aldi-sued.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
gateway-test.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
mia.aldi.co.uk
masterdata.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
Certificate
The complete raw certificate details for www.aldi.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGdzCCBV+gAwIBAgIRAPvgc0Yd+ieIw7T2UjPsznkwDQYJKoZIhvcNAQELBQAw gYYxCzAJBgNVBAYTAlVTMQswCQYDVQQIEwJERTETMBEGA1UEBxMKV2lsbWluZ3Rv bjEkMCIGA1UEChMbQ29ycG9yYXRpb24gU2VydmljZSBDb21wYW55MS8wLQYDVQQD EyZUcnVzdGVkIFNlY3VyZSBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkgNTAeFw0xNzAx MTkwMDAwMDBaFw0xODAxMTkyMzU5NTlaMIHcMQswCQYDVQQGEwJERTEOMAwGA1UE ERMFNDU0ODExHDAaBgNVBAgTE05vcmRyaGVpbi1XZXN0ZmFsZW4xHTAbBgNVBAcT FE11ZWxoZWltIGFuIGRlciBSdWhyMSAwHgYDVQQJExdNaW50YXJkZXIgU3RyYXNz ZSAzOC00MDEkMCIGA1UECgwbQUxESSBFaW5rYXVmIEdtYkggJiBDby4gb0hHMR8w HQYDVQQLExZVbmlmaWVkIENvbW11bmljYXRpb25zMRcwFQYDVQQDEw53d3cuYWxk aS5jby51azCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALomf0iwqeyM Agb0ZOmQ2Gf296SCxRa10DMA91PpTXInyiPBkK0YVzhRB8ofMmjEg2yucivM4dg3 Tj3nGZrtNTjzMU3sw+7/qJp1mNgcenDqXl7xn5qNFjne8fm4YhzHY15xjl/McY9P +x8OsdkmEP9AQl3RIlFCJAEl3pDRPD7bexeHkAS9F5er3UtDGvn+AEwNN9fHc2NI c8HVEwCeauwiiZuqEh5YgdL1QoJTtUbCnGXgH9+5rVbxxzBaear0PSZ45p4vGTcn ryCIDyRznSc1wT/hH2ka9xPr1q/+l/V3GIt9zMN2Dk7le+hriF/qP+T08zxnZ2tU mieyxd9H3e8CAwEAAaOCAoYwggKCMB8GA1UdIwQYMBaAFPK7Ve78j8/QPxRoGpV+ eQ6rFzD0MB0GA1UdDgQWBBSqCUI7s5OTATzsewxheYUwDb7hgDAOBgNVHQ8BAf8E BAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwSwYDVR0gBEQwQjA2BgsrBgEEAbIxAQICCDAnMCUGCCsGAQUFBwIBFhlodHRw czovL2Nwcy51c2VydHJ1c3QuY29tMAgGBmeBDAECAjBQBgNVHR8ESTBHMEWgQ6BB hj9odHRwOi8vY3JsLnVzZXJ0cnVzdC5jb20vVHJ1c3RlZFNlY3VyZUNlcnRpZmlj YXRlQXV0aG9yaXR5NS5jcmwwgYIGCCsGAQUFBwEBBHYwdDBLBggrBgEFBQcwAoY/ aHR0cDovL2NydC51c2VydHJ1c3QuY29tL1RydXN0ZWRTZWN1cmVDZXJ0aWZpY2F0 ZUF1dGhvcml0eTUuY3J0MCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC51c2VydHJ1 c3QuY29tMIHeBgNVHREEgdYwgdOCDnd3dy5hbGRpLmNvLnVrggphbGRpLmNvLnVr ggdhbGRpLmllghlhc3NldHMuYWxkaS1kaWdpdGFsLmNvLnVrghZhc3NldHMuYWxk aS1kaWdpdGFsLmllghFhc3NldHMuYWxkaS5jby51a4IOYXNzZXRzLmFsZGkuaWWC D3ByZXZpZXcuYWxkaS5pZYIScHJvZC13cy5hbGRpLmNvLnVrgg9wcm9kLXdzLmFs ZGkuaWWCC3d3dy5hbGRpLmllghN3d3cucHJldmlldy5hbGRpLmllMA0GCSqGSIb3 DQEBCwUAA4IBAQBs1nZZGOZg0iYoHYO4+8S41h4WZiYjp4AHSP+u7ZYVbW0KjBFe dQ+mbpzCnmBAYg/u6Bm3zcjxTgZuc4CWkpvRaTNmLDKg8IlQXoCKATdvDhlS3n95 886FLr6ueqsZK1vwIP0ER5y34q0K7SznbV7y2wyVi0JbYiWhNcY+57gK6dfuDuqh ZwLqiJHT181XTU32fbo//Vjc2N2Cdde0DzBHTqYPentrS/54WULNWAVeEXHMOh0E q/Jnip8PidGCw5rkQk9tHOkCIuYUImoA83mhjhqD5FIKKJgn0Lgaqs/9FSEUc2vt HtDevtASrBthJrBD5oa2p8uHbL3T67Fv+wbU -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuiZ/SLCp7IwCBvRk6ZDY Z/b3pILFFrXQMwD3U+lNcifKI8GQrRhXOFEHyh8yaMSDbK5yK8zh2DdOPecZmu01 OPMxTezD7v+omnWY2Bx6cOpeXvGfmo0WOd7x+bhiHMdjXnGOX8xxj0/7Hw6x2SYQ /0BCXdEiUUIkASXekNE8Ptt7F4eQBL0Xl6vdS0Ma+f4ATA0318dzY0hzwdUTAJ5q 7CKJm6oSHliB0vVCglO1RsKcZeAf37mtVvHHMFp5qvQ9Jnjmni8ZNyevIIgPJHOd JzXBP+EfaRr3E+vWr/6X9XcYi33Mw3YOTuV76GuIX+o/5PTzPGdna1SaJ7LF30fd 7wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 334801639470678964863123646183566528121 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wilmington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Corporation Service Company' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trusted Secure Certificate Authority 5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '45481' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Muelheim an der Ruhr' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mintarder Strasse 38-40' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ALDI Einkauf GmbH & Co. oHG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Unified Communications' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.aldi.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23499308401974581342791356728425429616437634934957966498984439119650755958845621243226371076370720355262120614513049671566312650860774359509283109332657238840223722893198739052637014518391787521712028494519587658296969857213060822080812690064741059969972394966811322861079524949801670436790144975915904347249744964915787202222303670788632414087072085998527085762758920437860885942979177407221026140094723386445394244870532510486012411710799129896121042786433306757205611133819886516932347724927143933084460575527751693518286487133554669507275635148663747391153992778277049504808996434496649495168149876035240388451823 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f2bb55eefc8fcfd03f14681a957e790eab1730f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aa09423bb39393013cec7b0c617985300dbee180 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/TrustedSecureCertificateAuthority5.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/TrustedSecureCertificateAuthority5.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (214 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aldi.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aldi.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aldi.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.aldi-digital.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.aldi-digital.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.aldi.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.aldi.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preview.aldi.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod-ws.aldi.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod-ws.aldi.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aldi.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.preview.aldi.ie' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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