catalog.ccls.org
- Chester County Library System -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 04:98:be:3e:16:58:cb:40:b4:d3:74:e3:09:e9:a8:34 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Chester County Library System
Organization:
Chester County Library System
State / Province:
Pennsylvania
Locality: Exton
Country: US
Locality: Exton
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:98:be:3e:16:58:cb:40:b4:d3:74:e3:09:e9:a8:34Serial Number (int): 6109999682523742515134553260726790196
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: e8:87:a5:bd:dc:49:6c:2c:63:03:08:38:12:19:11:ba:17:08:e7:9b
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): b4:28:69:d8:72:05:51:c5:98:d2:7f:5c:64:80:d5:06:22:aa:ee:9f
Fingerprint (sha256): ea:1b:71:79:ca:b6:ee:dd:16:7d:e3:d8:ac:9a:0d:f6:17:93:d7:dd:30:4b:6a:68:fa:cf:d8:65:0d:54:51:29
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate catalog.ccls.org
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for catalog.ccls.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
catalog.ccls.org
0-ezmyaccount.nytimes.com.catalog.ccls.org
0-www.statista.com.catalog.ccls.org
0-ezmyaccount.nytimes.com.catalog.ccls.org
0-www.statista.com.catalog.ccls.org
Other certificates including the domain name ccls.org
(limited to 100 certificates)
mail1.ccls.org
mail1.ccls.org
CCLS-ASA.ccls.org
catalog.ccls.org
catalog.ccls.org
mail1.ccls.org
CCLS-ASA.ccls.org
www.ccls.org
mail1.ccls.org
CCLS-ASA.ccls.org
www.ccls.org
catalog.ccls.org
catalog.ccls.org
CCLS-ASA.ccls.org
mail1.ccls.org
www.ccls.org
www.ccls.org
mail1.ccls.org
catalog.ccls.org
CCLS-ASA.ccls.org
mail1.ccls.org
mail1.ccls.org
www.ccls.org
mail1.ccls.org
CCLS-ASA.ccls.org
catalog.ccls.org
catalog.ccls.org
catalog.ccls.org
www.ccls.org
mail1.ccls.org
mail1.ccls.org
www.ccls.org
catalog.ccls.org
CCLS-ASA.ccls.org
catalog.ccls.org
mail1.ccls.org
www.ccls.org
www.ccls.org
www.ccls.org
catalog.ccls.org
mail1.ccls.org
CCLS-ASA.ccls.org
www.ccls.org
ccls-asa.ccls.org
catalog.ccls.org
catalog.ccls.org
mail1.ccls.org
www.ccls.org
CCLS-ASA.ccls.org
mail1.ccls.org
catalog.ccls.org
catalog.ccls.org
CCLS-ASA.ccls.org
www.ccls.org
catalog.ccls.org
CCLS-ASA.ccls.org
catalog.ccls.org
mail1.ccls.org
CCLS-ASA.ccls.org
catalog.ccls.org
catalog.ccls.org
mail1.ccls.org
CCLS-ASA.ccls.org
www.ccls.org
mail1.ccls.org
CCLS-ASA.ccls.org
www.ccls.org
catalog.ccls.org
catalog.ccls.org
CCLS-ASA.ccls.org
mail1.ccls.org
www.ccls.org
www.ccls.org
mail1.ccls.org
catalog.ccls.org
CCLS-ASA.ccls.org
mail1.ccls.org
mail1.ccls.org
www.ccls.org
mail1.ccls.org
CCLS-ASA.ccls.org
catalog.ccls.org
catalog.ccls.org
catalog.ccls.org
www.ccls.org
mail1.ccls.org
mail1.ccls.org
www.ccls.org
catalog.ccls.org
CCLS-ASA.ccls.org
catalog.ccls.org
mail1.ccls.org
www.ccls.org
www.ccls.org
www.ccls.org
catalog.ccls.org
mail1.ccls.org
CCLS-ASA.ccls.org
www.ccls.org
ccls-asa.ccls.org
catalog.ccls.org
catalog.ccls.org
mail1.ccls.org
www.ccls.org
CCLS-ASA.ccls.org
mail1.ccls.org
catalog.ccls.org
catalog.ccls.org
CCLS-ASA.ccls.org
www.ccls.org
catalog.ccls.org
CCLS-ASA.ccls.org
catalog.ccls.org
Certificate
The complete raw certificate details for catalog.ccls.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGgjCCBWqgAwIBAgIQBJi+PhZYy0C003TjCemoNDANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMjAwMTA4MDAwMDAwWhcN MjEwMjA5MTIwMDAwWjB3MQswCQYDVQQGEwJVUzEVMBMGA1UECBMMUGVubnN5bHZh bmlhMQ4wDAYDVQQHEwVFeHRvbjEmMCQGA1UEChMdQ2hlc3RlciBDb3VudHkgTGli cmFyeSBTeXN0ZW0xGTAXBgNVBAMTEGNhdGFsb2cuY2Nscy5vcmcwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3RXOS2Usd1xmBkVsst2AOUHtZl4rskyLy 6Dd5AXQkkoY02sxRGV+YTq1dUmEDBCshO0vzNocXOl7VF7mdLC/XfoxjHboQIgqO hJOzgEP4h43f67iN+xhqRV9eSkUDrGIxDNrbeTmITLepaUi7gtORxmujYPW5xSj4 aS/hJ2fzptj4BzuU02z+uerj6s8yb1q6zgX1/dIXjno5WMy/gambgRYPPkeSjLdt r+izUfcTblrh426f3+FISCRwEpzipng8lfZnYBizLoOi+cDkqCfvOYPwPoIm02fr jjPnyQfGirVwU5rPChvFRQPV9fijANNF++nvAnogPJICnGI6uOzRAgMBAAGjggMy MIIDLjAfBgNVHSMEGDAWgBQPgGEcgjFh1S8o541GOLQs4cbZ4jAdBgNVHQ4EFgQU 6IelvdxJbCxjAwg4EhkRuhcI55swbAYDVR0RBGUwY4IQY2F0YWxvZy5jY2xzLm9y Z4IqMC1lem15YWNjb3VudC5ueXRpbWVzLmNvbS5jYXRhbG9nLmNjbHMub3JngiMw LXd3dy5zdGF0aXN0YS5jb20uY2F0YWxvZy5jY2xzLm9yZzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGsGA1UdHwRkMGIwL6At oCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMC+g LaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc2LmNybDBM BgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3 dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB8BggrBgEFBQcBAQRwMG4wJAYI KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBGBggrBgEFBQcwAoY6 aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMlNlY3VyZVNl cnZlckNBLmNydDAMBgNVHRMBAf8EAjAAMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADy AHcApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFvhkC2SwAABAMA SDBGAiEA7wPaIxUqFhXfld5IWjezoF8YnLKWQffJ3sJWmcz2TpUCIQD53rQ2HWcL oKq8tNJVP5iuBfwqJfMqOkykLRUdbBDCdgB3AESUZS6w7s6vxEAH2Kj+KMDa5oK+ 2MsxtT/TM5a1toGoAAABb4ZAte8AAAQDAEgwRgIhALE9IDqHgvea5/To62Wn4dnr FtZwpI2SnzxtxXBzqFQxAiEA6Qc1Kt6SCiBYLGmdF5j9mqcvcAhhYX2bnXHpLKxe zlcwDQYJKoZIhvcNAQELBQADggEBAGYiqDbIt8EwxzCwbT+KXEcQn50lq6h9G0/s AYTrgl5m1rkmeFeenG7cPSRC/vJOn4OCujzIDNgl0FxLZXIwkggx0URiT5hGolMW ctwytPzgH4+3L/G36QIiIkl+xuz02l5aUrsFxKdUUXhvm5v0WqP/INxTOjW9yWsL rv2zaOI5csrUEb+oYL012Hdy5q0DeeHPz7MKLnvbr7Cm5AB1Co0u0gLRLEHbApP7 CdQcpFsnqkKWclJbkIYwuEQ+RXPpuX/ShAUWh5EnpH0QiaYrNA55gvWXHZKav4IU ugc+Hy1xvw0phbbKpyBQJN9VRycsEvp9LYEt4gTHNOKxP1p4exk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0VzktlLHdcZgZFbLLdg DlB7WZeK7JMi8ug3eQF0JJKGNNrMURlfmE6tXVJhAwQrITtL8zaHFzpe1Re5nSwv 136MYx26ECIKjoSTs4BD+IeN3+u4jfsYakVfXkpFA6xiMQza23k5iEy3qWlIu4LT kcZro2D1ucUo+Gkv4Sdn86bY+Ac7lNNs/rnq4+rPMm9aus4F9f3SF456OVjMv4Gp m4EWDz5Hkoy3ba/os1H3E25a4eNun9/hSEgkcBKc4qZ4PJX2Z2AYsy6DovnA5Kgn 7zmD8D6CJtNn644z58kHxoq1cFOazwobxUUD1fX4owDTRfvp7wJ6IDySApxiOrjs 0QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6109999682523742515134553260726790196 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-09 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Exton' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chester County Library System' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'catalog.ccls.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23135857599893386981959427105698787095182662399305673125085390874823673131196431489249054492624794025826979451550693506820646277728375289892788075059238212393381158587818109259312701498360104966740465652956329130266895958679606199849185818182612753448960115220125487884436648504195073222700756453656881484289981884616695076310419837817931936088731099672594728506949192317796094664984042094941913349256676538967557504974477882565700479700866941161060407503008373952627819021535028332310765026670563724896502485159579438892967736898698142396936908224874338710850458349146114232304193276503051738274891003176533123198161 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e887a5bddc496c2c63030838121911ba1708e79b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (101 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'catalog.ccls.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '0-ezmyaccount.nytimes.com.catalog.ccls.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '0-www.statista.com.catalog.ccls.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016f8640b64b0000040300483046022100ef03da23152a1615df95de485a37b3a05f189cb29641f7c9dec25699ccf64e95022100f9deb4361d670ba0aabcb4d2553f98ae05fc2a25f32a3a4ca42d151d6c10c2760077004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a80000016f8640b5ef0000040300483046022100b13d203a8782f79ae7f4e8eb65a7e1d9eb16d670a48d929f3c6dc57073a85431022100e907352ade920a20582c699d1798fd9aa72f700861617d9b9d71e92cac5ece57 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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