apps.jeffersonhospital.org
- Thomas Jefferson University Hospital -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number aa:30:50:1f:0a:be:99:c7:00:00:00:00:50:ff:65:41 was issued on by Entrust, Inc..
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Thomas Jefferson University Hospital
Organization:
Thomas Jefferson University Hospital
State / Province:
Pennsylvania
Locality: Philadelphia
Country: US
Locality: Philadelphia
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): aa:30:50:1f:0a:be:99:c7:00:00:00:00:50:ff:65:41Serial Number (int): 226219614584811972392559225207145850177
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: ae:3b:03:92:0e:f5:96:2b:08:6d:e6:b4:a8:c2:4a:11:29:8f:5e:01
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 64:f0:87:15:ad:03:da:90:d5:2d:75:d1:43:50:57:d5:15:f4:d3:63
Fingerprint (sha256): eb:49:e7:f1:32:c4:c4:30:6a:30:29:f8:87:8d:b7:e1:8c:59:3d:32:31:f0:08:5a:93:d7:b1:5f:f8:a8:17:07
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate apps.jeffersonhospital.org
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for apps.jeffersonhospital.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
apps.jeffersonhospital.org
www.apps.jeffersonhospital.org
appointments.jeffersonhospital.org
appointments.jefferson.edu
www.apps.jeffersonhospital.org
appointments.jeffersonhospital.org
appointments.jefferson.edu
Other certificates including the domain name jeffersonhospital.org
(limited to 100 certificates)
apps.jeffersonhospital.org
blogs.jeffersonhospital.org
blogs.jeffersonhospital.org
blogs.jeffersonhospital.org
apps.jeffersonhospital.org
author-stage.jefferson.edu
blogs.jeffersonhospital.org
author-stage.jefferson.edu
www.jeffersonhospital.org
apps.jeffersonhospital.org
www.jeffersonhospital.org
apps.jeffersonhospital.org
blogs.jeffersonhospital.org
blogs.jeffersonhospital.org
blogs.jeffersonhospital.org
blogs.jeffersonhospital.org
blogs.jeffersonhospital.org
apps.jeffersonhospital.org
author-stage.jefferson.edu
blogs.jeffersonhospital.org
author-stage.jefferson.edu
www.jeffersonhospital.org
apps.jeffersonhospital.org
www.jeffersonhospital.org
apps.jeffersonhospital.org
blogs.jeffersonhospital.org
blogs.jeffersonhospital.org
Certificate
The complete raw certificate details for apps.jeffersonhospital.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHxjCCBq6gAwIBAgIRAKowUB8KvpnHAAAAAFD/ZUEwDQYJKoZIhvcNAQELBQAw gboxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMSgwJgYDVQQL Ex9TZWUgd3d3LmVudHJ1c3QubmV0L2xlZ2FsLXRlcm1zMTkwNwYDVQQLEzAoYykg MjAxMiBFbnRydXN0LCBJbmMuIC0gZm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxLjAs BgNVBAMTJUVudHJ1c3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgLSBMMUswHhcN MjAwMjI0MTcxMzI3WhcNMjIwNTIzMTc0MzI3WjCBjzELMAkGA1UEBhMCVVMxFTAT BgNVBAgTDFBlbm5zeWx2YW5pYTEVMBMGA1UEBxMMUGhpbGFkZWxwaGlhMS0wKwYD VQQKEyRUaG9tYXMgSmVmZmVyc29uIFVuaXZlcnNpdHkgSG9zcGl0YWwxIzAhBgNV BAMTGmFwcHMuamVmZmVyc29uaG9zcGl0YWwub3JnMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAw1Rl9niFnZ6LVVOUbqvlMRfuI4ErucXFriJYWLtT5GL2 PzZ/pHLJ+PsWxT8GEVZ1Lm3lTH2U8HqdY1WPHHxR7Zi1ROKlkVLV2QpEfUfmw6Mb MOa7vUNwQ9ubIpsT1yKa+1gRDz5xIYDI74NNI7jV+uGKcb/CfWKdZ7lex/vWcXFy dV5iv+8idEVZttoVMoc9mWeU4b9Q/Ue/PG9keeWyIHSM+BRdXuzpqsXGcc+wravv 8klTIC9CF+p85318Kt/friHz1iTqxHkmbUhkeqGBD+oSpdkvgHduLQHMgFOGTdOm jDEQ70uuqZ43JjYQhRLDxuuqHAqkDvlFeA0oM7d8vQIDAQABo4ID7jCCA+owgYUG A1UdEQR+MHyCGmFwcHMuamVmZmVyc29uaG9zcGl0YWwub3Jngh53d3cuYXBwcy5q ZWZmZXJzb25ob3NwaXRhbC5vcmeCImFwcG9pbnRtZW50cy5qZWZmZXJzb25ob3Nw aXRhbC5vcmeCGmFwcG9pbnRtZW50cy5qZWZmZXJzb24uZWR1MIIB+AYKKwYBBAHW eQIEAgSCAegEggHkAeIAdQCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCD DwAAAXB4S/NaAAAEAwBGMEQCIG7X3HJHvRumY2/tIpyQJMEk50jZTh67TYVzN7Na wgs9AiAX7vfIvThhATqxmOCRBT4HyFFCN32d8eeelzUnIR8pAAB3AFYUBpov18Ls 0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABcHhL828AAAQDAEgwRgIhAPjkbg+E E7vmf9Qz+V+IYL8/cR8e/KnOxK+V3TwODw1kAiEA61WBp1/kCJD7nS1VLcHMCPnM GcyyaRHX7iHrIbRLYAQAdwBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPT DAAAAXB4S/OGAAAEAwBIMEYCIQDD5ljMQGZmZda0iy3HlM8Tp94Gpf0xGMoVHYjV mkSXswIhAOrsrHMlXU++ux1+rOW+3u6jl8zHV+IwYhorMI9lVNqJAHcAu9nfvB+K cbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFweEvzVwAABAMASDBGAiEA+jLE P/xI4TshHR/dV8VVpg+qSi+hwyhOmjO5A+kMFRYCIQDsXtnHIkPC4EMgiZ+c5cXb BD6ssAbczQECme7dF2HnYzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6Ly9jcmwuZW50 cnVzdC5uZXQvbGV2ZWwxay5jcmwwSwYDVR0gBEQwQjA2BgpghkgBhvpsCgEFMCgw JgYIKwYBBQUHAgEWGmh0dHA6Ly93d3cuZW50cnVzdC5uZXQvcnBhMAgGBmeBDAEC AjBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1 c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxay1j aGFpbjI1Ni5jZXIwHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3zX+nYMYKTL8wHQYD VR0OBBYEFK47A5IO9ZYrCG3mtKjCShEpj14BMAkGA1UdEwQCMAAwDQYJKoZIhvcN AQELBQADggEBAKCmwtqu7VU9e8PGKIcWqWCP1+2nJo8w6mlurtdf7jXo+ZnVsWs8 P+jjDnsFiZPk8wl4kYUlNxiYrT5TrtTxHAEj4w/5njUSnyOkVsZ+8F8AboVSU0mX wJSy1Q0MvfSw7Uy76e4axzJLoNqoN2FXUMjY+NQCw7YNT95qoWn4OGRQfomLKdyF 54LZJrUI9kw8JtFe818EasBasBgBao8Y7KYaayBnXobwKcgCfdExk/PwaZSNKFrF KoQ2McJcv7edxCFWVHswzhYMHT1fpp+XQM+vQC/w7+u2lTHbVbYGTkfhY4QZ8hcU VQMZHdJ+Bs9ROSOnYjkZGCVlkkpFTIU9s5M= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1Rl9niFnZ6LVVOUbqvl MRfuI4ErucXFriJYWLtT5GL2PzZ/pHLJ+PsWxT8GEVZ1Lm3lTH2U8HqdY1WPHHxR 7Zi1ROKlkVLV2QpEfUfmw6MbMOa7vUNwQ9ubIpsT1yKa+1gRDz5xIYDI74NNI7jV +uGKcb/CfWKdZ7lex/vWcXFydV5iv+8idEVZttoVMoc9mWeU4b9Q/Ue/PG9keeWy IHSM+BRdXuzpqsXGcc+wravv8klTIC9CF+p85318Kt/friHz1iTqxHkmbUhkeqGB D+oSpdkvgHduLQHMgFOGTdOmjDEQ70uuqZ43JjYQhRLDxuuqHAqkDvlFeA0oM7d8 vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 226219614584811972392559225207145850177 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-24 17:13:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-23 17:43:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Philadelphia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thomas Jefferson University Hospital' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'apps.jeffersonhospital.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24658087817350967039610583460332286387667503659114390250354729846105073646575890269491400854344362214699942997053945862449385892958102920344503660643232624879467092435985864549883133351930022760224059597932128797860867952533076046380731783785953697299222437908466682639707905054398205448481482928832030393646433551950058418491038313553472816925827401526085184182512968969154439578075904029246703220761622282133377794507926852035749435080940129630271128438093211776810789167288588352931342172008623326048415460720053598771478568166770952879488763987225011481109758956200986907749275945360259174964942701365091911564477 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.jeffersonhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.apps.jeffersonhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'appointments.jeffersonhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'appointments.jefferson.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (488 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (484 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ae3b03920ef5962b086de6b4a8c24a11298f5e01 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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