firstniagara.com
- Key Bank -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 05:1a:9c:4d:78:28:fa:9f:80:10:4e:37:4f:16:f2:9d was issued on by DigiCert Inc.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Key Bank
Organization:
Key Bank
State / Province:
Ohio
Locality: Cleveland
Country: US
Locality: Cleveland
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:1a:9c:4d:78:28:fa:9f:80:10:4e:37:4f:16:f2:9dSerial Number (int): 6784309890900909887027938861069562525
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: ea:58:f7:62:1f:91:29:d1:30:c0:55:d9:b7:fd:40:a6:2c:5b:b7:26
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): e5:47:5b:3a:c9:df:3a:ce:84:72:e8:9a:83:44:c2:6b:c5:51:e2:52
Fingerprint (sha256): e4:94:99:d6:ea:da:49:8b:e4:64:45:9f:16:f7:00:89:20:28:eb:3d:aa:76:9e:04:9d:26:7a:ce:c1:41:a6:cf
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-2.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-2.crl
Check the revocation status for certificate firstniagara.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for firstniagara.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fnfg.com
www.fnfg.com
www.firstniagara.com
www.temp.firstniagara.com
temp.firstniagara.com
firstniagara.com
www.fnfg.com
www.firstniagara.com
www.temp.firstniagara.com
temp.firstniagara.com
firstniagara.com
Other certificates including the domain name firstniagara.com
(limited to 100 certificates)
Onlinebanking.FirstNiagara.com
cmm.firstniagara.com
firstniagara.com
qa-bolbwpl.fnfg.com
ebenefitsbilling.firstniagara.com
www.firstniagara.com
ebenefitsbilling.firstniagara.com
firstniagara.com
firstniagara.com
firstniagara.com
mft.firstniagara.com
fundstransfer.firstniagara.com
myfilegateway.firstniagara.com
firstniagara.keybank.com
firstniagara.com
firstniagara.com
firstniagara.com
apply.firstniagara.com
stage2.firstniagara.com
firstniagara.com
ebenefitsbilling.firstniagara.com
abl.firstniagara.com
stage2.firstniagara.com
www.firstniagara.com
mobile.firstniagara.com
www.firstniagara.com
firstniagara.com
firstniagara.com
mobile.firstniagara.com
richchannel02.firstniagara.com
dmyfilegateway.firstniagara.com
onlineservices.firstniagara.com
firstniagara.com
myfilegateway.firstniagara.com
abl.firstniagara.com
mobile.firstniagara.com
test-fundstransfer.firstniagara.com
abl.firstniagara.com
apply.firstniagara.com
richchannel02.firstniagara.com
richchannel02.firstniagara.com
firstniagara.com
abl.firstniagara.com
abl.firstniagara.com
qmyfilegateway.firstniagara.com
cmm.firstniagara.com
firstniagara.com
qa-bolbwpl.fnfg.com
ebenefitsbilling.firstniagara.com
www.firstniagara.com
ebenefitsbilling.firstniagara.com
firstniagara.com
firstniagara.com
firstniagara.com
mft.firstniagara.com
fundstransfer.firstniagara.com
myfilegateway.firstniagara.com
firstniagara.keybank.com
firstniagara.com
firstniagara.com
firstniagara.com
apply.firstniagara.com
stage2.firstniagara.com
firstniagara.com
ebenefitsbilling.firstniagara.com
abl.firstniagara.com
stage2.firstniagara.com
www.firstniagara.com
mobile.firstniagara.com
www.firstniagara.com
firstniagara.com
firstniagara.com
mobile.firstniagara.com
richchannel02.firstniagara.com
dmyfilegateway.firstniagara.com
onlineservices.firstniagara.com
firstniagara.com
myfilegateway.firstniagara.com
abl.firstniagara.com
mobile.firstniagara.com
test-fundstransfer.firstniagara.com
abl.firstniagara.com
apply.firstniagara.com
richchannel02.firstniagara.com
richchannel02.firstniagara.com
firstniagara.com
abl.firstniagara.com
abl.firstniagara.com
qmyfilegateway.firstniagara.com
Certificate
The complete raw certificate details for firstniagara.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHLjCCBhagAwIBAgIQBRqcTXgo+p+AEE43TxbynTANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjEx MTE4MDAwMDAwWhcNMjIxMjEzMjM1OTU5WjBeMQswCQYDVQQGEwJVUzENMAsGA1UE CBMET2hpbzESMBAGA1UEBxMJQ2xldmVsYW5kMREwDwYDVQQKEwhLZXkgQmFuazEZ MBcGA1UEAxMQZmlyc3RuaWFnYXJhLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJ6+7lVZX1/s4KZM4z9NMfgZEG62f3RsCrgVqoAhBqeS4J93ATNi Fl1aXIXxtlW1jTS9dBDnp/8lznnnCJQeNZfCMASJh2xL3BGoJGgk2aFaT4Xn4psu 8NzvR6sU2Iuj2s7GXMEYuQXDlk0nnyOTRJ8DlF9ZFesoEUS1Thvly5/AhqJ02OwH ywqZHB+lLjKskKGpWkZCTGiXL+xXK4dPPOS+kjAdKl4wBu/UCnA8P7rxuE33UWzM Ufvu+QmQwGbwrysVYTHh8tgusmMYO76MOASgqT/3U5zNakaarS/MAKqwCR1icfwO tDrGfcwcJSd4Vdb+Uc9P3Jtbq2T2IluJuskCAwEAAaOCA+swggPnMB8GA1UdIwQY MBaAFHSFgMBmx9833s+9KTeqAx2+7c0XMB0GA1UdDgQWBBTqWPdiH5Ep0TDAVdm3 /UCmLFu3JjB7BgNVHREEdDBygghmbmZnLmNvbYIMd3d3LmZuZmcuY29tghR3d3cu Zmlyc3RuaWFnYXJhLmNvbYIZd3d3LnRlbXAuZmlyc3RuaWFnYXJhLmNvbYIVdGVt cC5maXJzdG5pYWdhcmEuY29tghBmaXJzdG5pYWdhcmEuY29tMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCB lDBIoEagRIZCaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFs RzJUTFNSU0FTSEEyNTYyMDIwQ0ExLTIuY3JsMEigRqBEhkJodHRwOi8vY3JsNC5k aWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEt Mi5jcmwwPgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDov L3d3dy5kaWdpY2VydC5jb20vQ1BTMIGFBggrBgEFBQcBAQR5MHcwJAYIKwYBBQUH MAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBPBggrBgEFBQcwAoZDaHR0cDov L2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEy NTYyMDIwQ0ExLmNydDAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8E ggFrAWkAdgBGpVXrdfqRIDC1oolp9PN9ESxBdL79SbiFq/L8cP5tRwAAAX004RIS AAAEAwBHMEUCIAKC7x5KnrrgZaSsMjU+xtEVfISAtIfO6e9//XFpqUoQAiEAzdZg 07DPfKmMgQ72MYoc5x6BP48qKZNXipyCHIWgkYMAdgBByMqx3yJGShDGoToJQode TjGLGwPr60vHaPCQYpYG9gAAAX004RHcAAAEAwBHMEUCICJf4NG7lBe+7P9+w9iL v32qx2w7DWM5vipFsb3VCeF/AiEA+3MAeWPYixlIx4XmolIk5YvA+k2M9vxVoYrQ FHLJTysAdwDfpV6raIJPH2yt7rhfTj5a6s2iEqRqXo47EsAgRFwqcwAAAX004RIV AAAEAwBIMEYCIQCNLxaZcBPBen8cJHgSN1+j0X86JAISxUG587yvTi2I8gIhAPdw NAeBkKj9pSeInioHmbt193MbwHDMdonpRjUOlBxUMA0GCSqGSIb3DQEBCwUAA4IB AQB7b00hgZ5drwagrrTxzdNKGa/T1tjrMPH11k5yiPiKdeiXU9QnyJiCgnDojuK9 6kcq/p/xYOr5egbTWX0rHp4CuyWTKHT2dGf7zBRiF8mT+spVhr+xPRpPCb0W2Way Qg+DJSYD7/WJtCoxTf0uaMHQ70+JbIuqlZfh7lZZ8B//K1Jay3/nRZq5roXjWFaj 2zO22/WCGMGq/j5xYN4r/MOBjfSy9kphneDwCWOudx5FlSpBkSmOzkfNJGXAr+PM x+yLyFC1d53waSmbiBtdsX8Sgc8v55UpFCYYT9Xx/Gg23IU9Xqwt0YWmnurgkkM4 O8pcuURjdczfK+aJpESRe5oO -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnr7uVVlfX+zgpkzjP00x +BkQbrZ/dGwKuBWqgCEGp5Lgn3cBM2IWXVpchfG2VbWNNL10EOen/yXOeecIlB41 l8IwBImHbEvcEagkaCTZoVpPhefimy7w3O9HqxTYi6PazsZcwRi5BcOWTSefI5NE nwOUX1kV6ygRRLVOG+XLn8CGonTY7AfLCpkcH6UuMqyQoalaRkJMaJcv7Fcrh088 5L6SMB0qXjAG79QKcDw/uvG4TfdRbMxR++75CZDAZvCvKxVhMeHy2C6yYxg7vow4 BKCpP/dTnM1qRpqtL8wAqrAJHWJx/A60OsZ9zBwlJ3hV1v5Rz0/cm1urZPYiW4m6 yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6784309890900909887027938861069562525 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ohio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cleveland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Key Bank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'firstniagara.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20039803764796968921006099579206688810090171330696741439057666056792889348118865625245929959935311961288359269741414301369519512760323676832434115373119562744254990779461874515874939661522518988306826985761702555205912235701841603213725180297144216406367392009599700607770151644724994711634027963427966708802741213308348512093282838908288705093064676576045715081856806286816424628710304586523543865471765843336119875346704326189695794730330158474575077172867323820767259584101511209530729105197609880975448896300403076489776132490618981337193895891974155658833861616203395024272244296705029083263718148287969721170633 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ea58f7621f9129d130c055d9b7fd40a62c5bb726 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fnfg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fnfg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.firstniagara.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.temp.firstniagara.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'temp.firstniagara.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'firstniagara.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 016900760046a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d470000017d34e11212000004030047304502200282ef1e4a9ebae065a4ac32353ec6d1157c8480b487cee9ef7ffd7169a94a10022100cdd660d3b0cf7ca98c810ef6318a1ce71e813f8f2a2993578a9c821c85a0918300760041c8cab1df22464a10c6a13a0942875e4e318b1b03ebeb4bc768f090629606f60000017d34e111dc00000403004730450220225fe0d1bb9417beecff7ec3d88bbf7daac76c3b0d6339be2a45b1bdd509e17f022100fb73007963d88b1948c785e6a25224e58bc0fa4d8cf6fc55a18ad01472c94f2b007700dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a730000017d34e1121500000403004830460221008d2f16997013c17a7f1c247812375fa3d17f3a240212c541b9f3bcaf4e2d88f2022100f77034078190a8fda527889e2a0799bb75f7731bc070cc7689e946350e941c54 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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