HIDApproveTest.nemours.org
- Nemours Foundation -
Issued by TrustID Server CA A52
About this certificate
This digital certificate with serial number 40:01:6a:22:12:c8:27:b7:62:38:12:b1:78:cc:5f:4d was issued on by IdenTrust.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Nemours Foundation
Organization:
Nemours Foundation
State / Province:
Florida
Locality: Jacksonville
Country: US
Locality: Jacksonville
Country: US
IdenTrust
Organization:
IdenTrust
Organization unit: TrustID Server
Organization unit: TrustID Server
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 40:01:6a:22:12:c8:27:b7:62:38:12:b1:78:cc:5f:4dSerial Number (int): 85077936662081366151356160788258381645
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 02:fc:75:69:57:36:45:bd:a1:ed:5c:c7:4a:57:a3:ce:d5:a5:9b:f3
AuthorityKeyId: a2:56:24:3c:d0:d4:15:b9:e8:bf:78:a3:13:10:58:48:2e:16:54:e1
Fingerprint (sha1): de:eb:91:f0:b6:8f:95:68:b7:99:d1:92:54:7d:71:42:52:7b:6d:5a
Fingerprint (sha256): e6:b1:b4:4f:f8:93:53:96:4f:2c:1c:74:f7:e3:8b:07:6b:a5:88:4a:46:af:83:98:92:09:d4:af:43:f7:14:79
Issuing Certificate URL: http://validation.identrust.com/certs/trustidcaa52.p7c
Revocation information
OCSP Server: http://commercial.ocsp.identrust.comCRL Distribution Point: http://validation.identrust.com/crl/trustidcaa52.crl
Check the revocation status for certificate HIDApproveTest.nemours.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for HIDApproveTest.nemours.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
HIDApproveTest.nemours.org
Other certificates including the domain name nemours.org
(limited to 100 certificates)
fts.nemours.org
voalte3.ai.nemours.org
nhj.nemours.org
adfs.nemours.org
findaprovider.nemours.org
findaprovider.nemours.org
nemsecdmz001.nemours.org
findaprovider.nemours.org
flguestwifi.nemours.org
*.nemours.org
ereferral.nemours.org
findaprovider.nemours.org
eprescriptiontest.nemours.org
voalte3.nemours.org
healthykidshealthyfuture.nemours.org
givenow.nemours.org
voalte3.nemours.org
findaprovider.nemours.org
adfs.nemours.org
ww2.nemours.org
mobile.nemours.org
webmail.nemours.org
ww2.nemours.org
supplierlink.nemours.org
fts.nemours.org
findaprovider.nemours.org
blog.nemours.org
lawapprove.nemours.org
healthykidshealthyfuture.nemours.org
eprescriptiontest.nemours.org
findaprovider.nemours.org
deguestwifi.nemours.org
findaprovider.nemours.org
timetracker.nemours.org
blog.nemours.org
survey.nemours.org
givenow.nemours.org
nembtatest.nemours.org
credentialing.nemours.org
blog.nemours.org
fts.nemours.org
findaprovider.nemours.org
nemours.org
nemsecdmz001.nemours.org
supplierlink.nemours.org
*.nemours.org
kronosaccess.nemours.org
directory-mobile.nemours.org
eprescriptiontest.nemours.org
iconnect.nemours.org
www.nemours.org
findaprovider.nemours.org
*.nemours.org
nemourslink.nemours.org
careeverywhere.nemours.org
kronosaccess.nemours.org
mynemours.nemours.org
blog.nemours.org
voalte3sb.nemours.org
webmail.nemours.org
flguestwifi.nemours.org
atstaff.nemours.org
careeverywhere.nemours.org
findaprovider.nemours.org
findaprovider.nemours.org
findaprovider.nemours.org
atstaffdev.nemours.org
sipfed.nemours.org
deguestwifi.nemours.org
nembtaprod.nemours.org
portal.nemours.org
careeverywhere.nemours.org
fts.nemours.org
amc.nemours.org
findaprovider.nemours.org
connect2.nemours.org
*.nemours.org
nembtaprod.nemours.org
lawmobile.nemours.org
nembtatest.nemours.org
vidyoportal.nemours.org
supplierlink.nemours.org
*.nemours.org
survey.nemours.org
findaprovider.nemours.org
nemours.org
kronos.nemours.org
www.nemours.org
*.nemours.org
findaprovider.nemours.org
kronosaccess.nemours.org
*.nemours.org
voalte3.ai.nemours.org
airstrip.nemours.org
HIDApproveTest.nemours.org
www.nemours.org
*.nemours.org
adfs.nemours.org
findaprovider.nemours.org
givenow.nemours.org
voalte3.ai.nemours.org
nhj.nemours.org
adfs.nemours.org
findaprovider.nemours.org
findaprovider.nemours.org
nemsecdmz001.nemours.org
findaprovider.nemours.org
flguestwifi.nemours.org
*.nemours.org
ereferral.nemours.org
findaprovider.nemours.org
eprescriptiontest.nemours.org
voalte3.nemours.org
healthykidshealthyfuture.nemours.org
givenow.nemours.org
voalte3.nemours.org
findaprovider.nemours.org
adfs.nemours.org
ww2.nemours.org
mobile.nemours.org
webmail.nemours.org
ww2.nemours.org
supplierlink.nemours.org
fts.nemours.org
findaprovider.nemours.org
blog.nemours.org
lawapprove.nemours.org
healthykidshealthyfuture.nemours.org
eprescriptiontest.nemours.org
findaprovider.nemours.org
deguestwifi.nemours.org
findaprovider.nemours.org
timetracker.nemours.org
blog.nemours.org
survey.nemours.org
givenow.nemours.org
nembtatest.nemours.org
credentialing.nemours.org
blog.nemours.org
fts.nemours.org
findaprovider.nemours.org
nemours.org
nemsecdmz001.nemours.org
supplierlink.nemours.org
*.nemours.org
kronosaccess.nemours.org
directory-mobile.nemours.org
eprescriptiontest.nemours.org
iconnect.nemours.org
www.nemours.org
findaprovider.nemours.org
*.nemours.org
nemourslink.nemours.org
careeverywhere.nemours.org
kronosaccess.nemours.org
mynemours.nemours.org
blog.nemours.org
voalte3sb.nemours.org
webmail.nemours.org
flguestwifi.nemours.org
atstaff.nemours.org
careeverywhere.nemours.org
findaprovider.nemours.org
findaprovider.nemours.org
findaprovider.nemours.org
atstaffdev.nemours.org
sipfed.nemours.org
deguestwifi.nemours.org
nembtaprod.nemours.org
portal.nemours.org
careeverywhere.nemours.org
fts.nemours.org
amc.nemours.org
findaprovider.nemours.org
connect2.nemours.org
*.nemours.org
nembtaprod.nemours.org
lawmobile.nemours.org
nembtatest.nemours.org
vidyoportal.nemours.org
supplierlink.nemours.org
*.nemours.org
survey.nemours.org
findaprovider.nemours.org
nemours.org
kronos.nemours.org
www.nemours.org
*.nemours.org
findaprovider.nemours.org
kronosaccess.nemours.org
*.nemours.org
voalte3.ai.nemours.org
airstrip.nemours.org
HIDApproveTest.nemours.org
www.nemours.org
*.nemours.org
adfs.nemours.org
findaprovider.nemours.org
givenow.nemours.org
Certificate
The complete raw certificate details for HIDApproveTest.nemours.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHBjCCBe6gAwIBAgIQQAFqIhLIJ7diOBKxeMxfTTANBgkqhkiG9w0BAQsFADBa MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSWRlblRydXN0MRcwFQYDVQQLEw5UcnVz dElEIFNlcnZlcjEeMBwGA1UEAxMVVHJ1c3RJRCBTZXJ2ZXIgQ0EgQTUyMB4XDTE5 MDQxNTE3MzY1N1oXDTIwMDQxNDE3MzY1N1oweDEjMCEGA1UEAxMaSElEQXBwcm92 ZVRlc3QubmVtb3Vycy5vcmcxGzAZBgNVBAoTEk5lbW91cnMgRm91bmRhdGlvbjEV MBMGA1UEBxMMSmFja3NvbnZpbGxlMRAwDgYDVQQIEwdGbG9yaWRhMQswCQYDVQQG EwJVUzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALRhsgCuvSp1Dt4H wgJPk3kd2tHjG+Epi70yIyIiiS8P4rI/Tjp7DOK2S2lC7K8Gl6renNeahT3vB6Ud FEJpBw2OhJE0R8O8kSRRqjq7kT6xV9/0FeQEMGvGJyW67fowV6ShoaAQCtRTjve8 kQK1zFg1AkIvePa1gp8zsYebk8lC+uLK6G0K4DRnAZLK2sBybgib/t3hEJFO5ugE bT0Yotc/w2IsVm5lw4a57op8LxNre5cabcEJcGd7Vtb1oEU6nWbgolReZf42o4Hb 8/6BAHCeZOPk40bzzejlO6+xsjjCDfkngI/yfQwJwC8FZjWQ/IzeHowidiW63HRQ YJQKcfMCAwEAAaOCA6gwggOkMA4GA1UdDwEB/wQEAwIFoDCBhAYIKwYBBQUHAQEE eDB2MDAGCCsGAQUFBzABhiRodHRwOi8vY29tbWVyY2lhbC5vY3NwLmlkZW50cnVz dC5jb20wQgYIKwYBBQUHMAKGNmh0dHA6Ly92YWxpZGF0aW9uLmlkZW50cnVzdC5j b20vY2VydHMvdHJ1c3RpZGNhYTUyLnA3YzAfBgNVHSMEGDAWgBSiViQ80NQVuei/ eKMTEFhILhZU4TCCAicGA1UdIASCAh4wggIaMIIBCwYKYIZIAYb5LwAGAzCB/DBA BggrBgEFBQcCARY0aHR0cHM6Ly9zZWN1cmUuaWRlbnRydXN0LmNvbS9jZXJ0aWZp Y2F0ZXMvcG9saWN5L3RzLzCBtwYIKwYBBQUHAgIwgaoMgadUaGlzIFRydXN0SUQg U2VydmVyIENlcnRpZmljYXRlIGhhcyBiZWVuIGlzc3VlZCBpbiBhY2NvcmRhbmNl IHdpdGggSWRlblRydXN0J3MgVHJ1c3RJRCBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91 bmQgYXQgaHR0cHM6Ly9zZWN1cmUuaWRlbnRydXN0LmNvbS9jZXJ0aWZpY2F0ZXMv cG9saWN5L3RzLzCCAQcGBmeBDAECAjCB/DBABggrBgEFBQcCARY0aHR0cHM6Ly9z ZWN1cmUuaWRlbnRydXN0LmNvbS9jZXJ0aWZpY2F0ZXMvcG9saWN5L3RzLzCBtwYI KwYBBQUHAgIwgaoMgadUaGlzIFRydXN0SUQgU2VydmVyIENlcnRpZmljYXRlIGhh cyBiZWVuIGlzc3VlZCBpbiBhY2NvcmRhbmNlIHdpdGggSWRlblRydXN0J3MgVHJ1 c3RJRCBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9zZWN1cmUu aWRlbnRydXN0LmNvbS9jZXJ0aWZpY2F0ZXMvcG9saWN5L3RzLzBFBgNVHR8EPjA8 MDqgOKA2hjRodHRwOi8vdmFsaWRhdGlvbi5pZGVudHJ1c3QuY29tL2NybC90cnVz dGlkY2FhNTIuY3JsMCUGA1UdEQQeMByCGkhJREFwcHJvdmVUZXN0Lm5lbW91cnMu b3JnMB0GA1UdDgQWBBQC/HVpVzZFvaHtXMdKV6PO1aWb8zAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcN AQELBQADggEBAHIYL/jLxMwRUUkHc5YgQB/FxJJ4avIFQmuzCz2OlKpAlZmNArTn loB0UCwgNCloaCofUah2zmCnJUu45nho36Hc6cb3UwL3rakhus88HtLWIjzjMd8g o26PzXuM91Ao8fLxyjTp/3wBljDlR4RZM4vERgTFVLi6rfUbMrO8+Hwor7dFmhyi Hj62sIcQIOXY3IE7Kgenj///fsgPhW54HDTXlueIvpPbWG4QJsbwh4HJF6TTkEoF IlsQMSwhe4vLiowre2/ker/2lbsSFsf2a+k36yVkz+E5swzNU/GlZjpiYoEqs4ns lhLJqhad42telFRM7cpFnBa8eMqqIfhGtAA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGGyAK69KnUO3gfCAk+T eR3a0eMb4SmLvTIjIiKJLw/isj9OOnsM4rZLaULsrwaXqt6c15qFPe8HpR0UQmkH DY6EkTRHw7yRJFGqOruRPrFX3/QV5AQwa8YnJbrt+jBXpKGhoBAK1FOO97yRArXM WDUCQi949rWCnzOxh5uTyUL64srobQrgNGcBksrawHJuCJv+3eEQkU7m6ARtPRii 1z/DYixWbmXDhrnuinwvE2t7lxptwQlwZ3tW1vWgRTqdZuCiVF5l/jajgdvz/oEA cJ5k4+TjRvPN6OU7r7GyOMIN+SeAj/J9DAnALwVmNZD8jN4ejCJ2JbrcdFBglApx 8wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 85077936662081366151356160788258381645 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IdenTrust' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TrustID Server' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TrustID Server CA A52' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-15 17:36:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-14 17:36:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HIDApproveTest.nemours.org' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nemours Foundation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Jacksonville' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Florida' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22771070253140290803907187223232204317597564582375072007320164097274063992189099598212341552293158493454377876527656797858138502669894757783605194225382651133548705612228324922470416924290852776651741171361627657308033018276662118323428896685143101767692891229475832976152601398215987301525533822605075252190714800763568124652590658628980109136555161770492801508669664905241715164844303321739480757380021519556884328225118771104570742979979078742633385116012457300655012359255506431030411700121146682966018467470558840549425181586261048683738216237257616067277338178375759046251141084495698357101120380841267531772403 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://commercial.ocsp.identrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/certs/trustidcaa52.p7c' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a256243cd0d415b9e8bf78a3131058482e1654e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (542 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113839.0.6.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.identrust.com/certificates/policy/ts/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This TrustID Server Certificate has been issued in accordance with IdenTrust's TrustID Certificate Policy found at https://secure.identrust.com/certificates/policy/ts/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.identrust.com/certificates/policy/ts/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This TrustID Server Certificate has been issued in accordance with IdenTrust's TrustID Certificate Policy found at https://secure.identrust.com/certificates/policy/ts/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://validation.identrust.com/crl/trustidcaa52.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'HIDApproveTest.nemours.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 02fc7569573645bda1ed5cc74a57a3ced5a59bf3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0072182ff8cbc4cc11514907739620401fc5c492786af205426bb30b3d8e94aa4095998d02b4e7968074502c20342968682a1f51a876ce60a7254bb8e67868dfa1dce9c6f75302f7ada921bacf3c1ed2d6223ce331df20a36e8fcd7b8cf75028f1f2f1ca34e9ff7c019630e5478459338bc44604c554b8baadf51b32b3bcf87c28afb7459a1ca21e3eb6b0871020e5d8dc813b2a07a78fffff7ec80f856e781c34d796e788be93db586e1026c6f08781c917a4d3904a05225b10312c217b8bcb8a8c2b7b6fe47abff695bb1216c7f66be937eb2564cfe139b30ccd53f1a5663a6262812ab389ec9612c9aa169de36b5e94544cedca459c16bc78caaa21f846b400