imperva.com
Issued by GlobalSign Atlas R3 DV TLS CA 2024 Q1
About this certificate
This digital certificate with serial number 01:95:fe:ce:cb:27:e2:b6:58:45:62:d6:7f:48:1c:f4 was issued on by GlobalSign nv-sa.
With 56 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=imperva.com
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 01:95:fe:ce:cb:27:e2:b6:58:45:62:d6:7f:48:1c:f4Serial Number (int): 2108048343621086371487246051243990260
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: f2:da:c2:5d:d3:22:13:7b:0d:93:df:c3:91:fd:f9:14:69:62:3f:8f
AuthorityKeyId: 66:c0:c7:a3:9a:cd:fe:f3:ea:ce:4b:53:0b:61:5e:af:33:05:b3:e1
Fingerprint (sha1): e6:3c:9d:de:d8:8f:d0:c6:40:71:15:e9:9c:ab:0c:40:4e:a4:f1:59
Fingerprint (sha256): ee:0d:94:d2:61:7f:fb:a7:fa:18:2c:36:c1:b6:94:5d:e7:de:9a:6b:4f:b7:53:48:3b:a2:49:d7:cd:28:e9:b6
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2024q1.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2024q1CRL Distribution Point: http://crl.globalsign.com/ca/gsatlasr3dvtlsca2024q1.crl
Check the revocation status for certificate imperva.com
56
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for imperva.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.lghealthjobs.org
penncancer.org
*.pennmedicine.org
chestercountyhospital.org
princetonrheumatology.com
*.ocwish.org
ocwish.org
centralpaconnect.org
*.lancasterneuroscience.com
mypennmedicine.org
knowledgelink.upenn.edu
*.jlgh.org
lghblooddonors.org
lghealthhub.org
*.mypennmedicine.org
*.princetonrheumatology.com
*.princetonhcs.org
*.cceb.med.upenn.edu
*.eliancehealthsolutions.org
*.pmacs.upenn.edu
*.pennproton.org
*.pennprotontherapy.org
pennmedicine.com
*.rockmedical.com
*.cchosp.com
cchosp.com
*.lghealth.org
*.lghealthexpress.org
pennproton.org
*.mylghealth.org
pennprotontherapy.org
*.lghealthhub.org
rockmedical.com
lancastergeneralhealth.org
lghealthjobs.org
lghealthexpress.org
*.checkyourlungs.org
checkyourlungs.org
eliancehealthsolutions.org
lancasterneuroscience.com
pennmedicine.org
imperva.com
lancasterfamilymed.org
*.centralpaconnect.org
*.chestercountyhospital.org
mylghealth.org
*.lghblooddonors.org
jlgh.org
*.penncancer.org
*.pennmedicine.com
redcap-test-web.pmacs.upenn.edu
*.lancastergeneralhealth.org
*.uphs.upenn.edu
princetonhcs.org
*.med.upenn.edu
*.lancasterfamilymed.org
penncancer.org
*.pennmedicine.org
chestercountyhospital.org
princetonrheumatology.com
*.ocwish.org
ocwish.org
centralpaconnect.org
*.lancasterneuroscience.com
mypennmedicine.org
knowledgelink.upenn.edu
*.jlgh.org
lghblooddonors.org
lghealthhub.org
*.mypennmedicine.org
*.princetonrheumatology.com
*.princetonhcs.org
*.cceb.med.upenn.edu
*.eliancehealthsolutions.org
*.pmacs.upenn.edu
*.pennproton.org
*.pennprotontherapy.org
pennmedicine.com
*.rockmedical.com
*.cchosp.com
cchosp.com
*.lghealth.org
*.lghealthexpress.org
pennproton.org
*.mylghealth.org
pennprotontherapy.org
*.lghealthhub.org
rockmedical.com
lancastergeneralhealth.org
lghealthjobs.org
lghealthexpress.org
*.checkyourlungs.org
checkyourlungs.org
eliancehealthsolutions.org
lancasterneuroscience.com
pennmedicine.org
imperva.com
lancasterfamilymed.org
*.centralpaconnect.org
*.chestercountyhospital.org
mylghealth.org
*.lghblooddonors.org
jlgh.org
*.penncancer.org
*.pennmedicine.com
redcap-test-web.pmacs.upenn.edu
*.lancastergeneralhealth.org
*.uphs.upenn.edu
princetonhcs.org
*.med.upenn.edu
*.lancasterfamilymed.org
Other certificates including the domain name imperva.com
(limited to 100 certificates)
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
Certificate
The complete raw certificate details for imperva.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIK2jCCCcKgAwIBAgIQAZX+zssn4rZYRWLWf0gc9DANBgkqhkiG9w0BAQsFADBY MQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEuMCwGA1UE AxMlR2xvYmFsU2lnbiBBdGxhcyBSMyBEViBUTFMgQ0EgMjAyNCBRMTAeFw0yNDAx MTYyMTEyNDJaFw0yNDA3MTQyMTEyNDJaMBYxFDASBgNVBAMMC2ltcGVydmEuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueawLbPzxGA0f4tD0QEG Zbcpcfe3jE0aQtwwoAFmcK1AvP2oXKHo2BYRNfLC+Xaan+/d9oukSq2w0eEq4KJ1 kJd0Brrn9W1qD9BFMzodypuwQytsf3+E9cJwfIoIaAEwNy1v1s1y6lK/SGcQYYaH JbdAlggObgsQ1Yj50T4hjY94/kViMDYlVzkXAKZc1q5W2EnpZMDpR9kGY+QCW1QT RZVuA+bMOzh5SkQIZ5FJL4UfZbp0hpfU+QFZA05SvsVYpg+FiuEqegi8hEK6hyn0 ryyTlMkMoptITbCHfcTcMrfmvssj0USelQMVUCBWGDJ/zsP5xVGMdYc1Bgz9+UbO /QIDAQABo4IH4DCCB9wwggSWBgNVHREEggSNMIIEiYISKi5sZ2hlYWx0aGpvYnMu b3Jngg5wZW5uY2FuY2VyLm9yZ4ISKi5wZW5ubWVkaWNpbmUub3JnghljaGVzdGVy Y291bnR5aG9zcGl0YWwub3JnghlwcmluY2V0b25yaGV1bWF0b2xvZ3kuY29tggwq Lm9jd2lzaC5vcmeCCm9jd2lzaC5vcmeCFGNlbnRyYWxwYWNvbm5lY3Qub3Jnghsq LmxhbmNhc3Rlcm5ldXJvc2NpZW5jZS5jb22CEm15cGVubm1lZGljaW5lLm9yZ4IX a25vd2xlZGdlbGluay51cGVubi5lZHWCCiouamxnaC5vcmeCEmxnaGJsb29kZG9u b3JzLm9yZ4IPbGdoZWFsdGhodWIub3JnghQqLm15cGVubm1lZGljaW5lLm9yZ4Ib Ki5wcmluY2V0b25yaGV1bWF0b2xvZ3kuY29tghIqLnByaW5jZXRvbmhjcy5vcmeC FCouY2NlYi5tZWQudXBlbm4uZWR1ghwqLmVsaWFuY2VoZWFsdGhzb2x1dGlvbnMu b3JnghEqLnBtYWNzLnVwZW5uLmVkdYIQKi5wZW5ucHJvdG9uLm9yZ4IXKi5wZW5u cHJvdG9udGhlcmFweS5vcmeCEHBlbm5tZWRpY2luZS5jb22CESoucm9ja21lZGlj YWwuY29tggwqLmNjaG9zcC5jb22CCmNjaG9zcC5jb22CDioubGdoZWFsdGgub3Jn ghUqLmxnaGVhbHRoZXhwcmVzcy5vcmeCDnBlbm5wcm90b24ub3JnghAqLm15bGdo ZWFsdGgub3JnghVwZW5ucHJvdG9udGhlcmFweS5vcmeCESoubGdoZWFsdGhodWIu b3Jngg9yb2NrbWVkaWNhbC5jb22CGmxhbmNhc3RlcmdlbmVyYWxoZWFsdGgub3Jn ghBsZ2hlYWx0aGpvYnMub3JnghNsZ2hlYWx0aGV4cHJlc3Mub3JnghQqLmNoZWNr eW91cmx1bmdzLm9yZ4ISY2hlY2t5b3VybHVuZ3Mub3JnghplbGlhbmNlaGVhbHRo c29sdXRpb25zLm9yZ4IZbGFuY2FzdGVybmV1cm9zY2llbmNlLmNvbYIQcGVubm1l ZGljaW5lLm9yZ4ILaW1wZXJ2YS5jb22CFmxhbmNhc3RlcmZhbWlseW1lZC5vcmeC FiouY2VudHJhbHBhY29ubmVjdC5vcmeCGyouY2hlc3RlcmNvdW50eWhvc3BpdGFs Lm9yZ4IObXlsZ2hlYWx0aC5vcmeCFCoubGdoYmxvb2Rkb25vcnMub3JngghqbGdo Lm9yZ4IQKi5wZW5uY2FuY2VyLm9yZ4ISKi5wZW5ubWVkaWNpbmUuY29tgh9yZWRj YXAtdGVzdC13ZWIucG1hY3MudXBlbm4uZWR1ghwqLmxhbmNhc3RlcmdlbmVyYWxo ZWFsdGgub3JnghAqLnVwaHMudXBlbm4uZWR1ghBwcmluY2V0b25oY3Mub3Jngg8q Lm1lZC51cGVubi5lZHWCGCoubGFuY2FzdGVyZmFtaWx5bWVkLm9yZzAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQW BBTy2sJd0yITew2T38OR/fkUaWI/jzBXBgNVHSAEUDBOMAgGBmeBDAECATBCBgor BgEEAaAyCgEDMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3Lmdsb2JhbHNpZ24u Y29tL3JlcG9zaXRvcnkvMAwGA1UdEwEB/wQCMAAwgZ4GCCsGAQUFBwEBBIGRMIGO MEAGCCsGAQUFBzABhjRodHRwOi8vb2NzcC5nbG9iYWxzaWduLmNvbS9jYS9nc2F0 bGFzcjNkdnRsc2NhMjAyNHExMEoGCCsGAQUFBzAChj5odHRwOi8vc2VjdXJlLmds b2JhbHNpZ24uY29tL2NhY2VydC9nc2F0bGFzcjNkdnRsc2NhMjAyNHExLmNydDAf BgNVHSMEGDAWgBRmwMejms3+8+rOS1MLYV6vMwWz4TBIBgNVHR8EQTA/MD2gO6A5 hjdodHRwOi8vY3JsLmdsb2JhbHNpZ24uY29tL2NhL2dzYXRsYXNyM2R2dGxzY2Ey MDI0cTEuY3JsMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdgA/F0tP1yJHWJQd ZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAY0UHrQhAAAEAwBHMEUCIQCMvJgsSg2k kuMLjYjQZYeYPXlX39eSy8jzUJM3yi6xuQIgF49qfNGIg+5g3PELQJif5+tbbzcv N8/AcXjCryOW+uYAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAA AY0UHrQ4AAAEAwBHMEUCIQDs7jqXY0ZHu34ie1UX//hlI62isiKkSGSlOnBMvV+o bQIgX7VZx3K9nhzr/yLfr19FlKKOATeBHAmO8ZiGPo7UhTEAdQA7U3d1Pi25gE6L MFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAY0UHrTLAAAEAwBGMEQCICEfuVSnm/xO 7eLba0zVm0Remvf8bkTQiUq7CQTaKLHlAiA7OlRLaiNqqETS2ZsEkmBsEjeSi3KL SbEPOqB69AHbEDANBgkqhkiG9w0BAQsFAAOCAQEAZ33TZUBqZfrp3ygO4Ba3frCu 1jbOA1OWQnl6PzoF11RYV5YUtaM7P9OsIDXN7wEHYcyIibGpXnWSaPA2+HWW4bUG N3FlWZ8vi4mmrYKW2N/9lSCtO4MGhO4hRcOnTRsSXGxgXr2XgV7VP87jG3Ykilc8 QDq52DY+gTPQYVQ2JjFjwAeJDccRdFqasUxVvBC6Vd247duL1osL+4xvVXbf5ahu pWOi335Oi5jbEp1WcI6s1xg1H/Cqi4KBwsOaTJxfo+YsjeecRj1Tc8gCNJM28jjK /CXIwr5+TE1HBQePihlaz8W2A6wH3N9KvM/KNLwo4LjbUhILX1z60CIrLiSxoA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueawLbPzxGA0f4tD0QEG Zbcpcfe3jE0aQtwwoAFmcK1AvP2oXKHo2BYRNfLC+Xaan+/d9oukSq2w0eEq4KJ1 kJd0Brrn9W1qD9BFMzodypuwQytsf3+E9cJwfIoIaAEwNy1v1s1y6lK/SGcQYYaH JbdAlggObgsQ1Yj50T4hjY94/kViMDYlVzkXAKZc1q5W2EnpZMDpR9kGY+QCW1QT RZVuA+bMOzh5SkQIZ5FJL4UfZbp0hpfU+QFZA05SvsVYpg+FiuEqegi8hEK6hyn0 ryyTlMkMoptITbCHfcTcMrfmvssj0USelQMVUCBWGDJ/zsP5xVGMdYc1Bgz9+UbO /QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2108048343621086371487246051243990260 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Atlas R3 DV TLS CA 2024 Q1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-16 21:12:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-14 21:12:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'imperva.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23467843008610896659755304917190642112041992448776644884265506647477010060167406253425104124478681113834655679550123757888195135563193614743194179942401933115391650382865645617999916270922539792480698353841190001164148979060481446805041164279212737342336124272141117464085401609539642549315824942182528131091269452355965253814061515709874020967081100629262650215016628170896300900960857886424465070995771752084734643808033913687820748738265521747695495061059093467933943774967718924748165626475304828392803063449437548269330302685699783500843947505107935443914107804006610879384606730932416566809641025842145424494333 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthjobs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'penncancer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chestercountyhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'princetonrheumatology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ocwish.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ocwish.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centralpaconnect.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancasterneuroscience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mypennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knowledgelink.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.jlgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghblooddonors.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthhub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mypennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.princetonrheumatology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.princetonhcs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cceb.med.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eliancehealthsolutions.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pmacs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennproton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennprotontherapy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennmedicine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rockmedical.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cchosp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cchosp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthexpress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennproton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mylghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennprotontherapy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthhub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rockmedical.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancastergeneralhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthjobs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthexpress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.checkyourlungs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'checkyourlungs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eliancehealthsolutions.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancasterneuroscience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imperva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancasterfamilymed.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.centralpaconnect.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chestercountyhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mylghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghblooddonors.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jlgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.penncancer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennmedicine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redcap-test-web.pmacs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancastergeneralhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.uphs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'princetonhcs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.med.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancasterfamilymed.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f2dac25dd322137b0d93dfc391fdf91469623f8f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.10.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (145 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2024q1' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2024q1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 66c0c7a39acdfef3eace4b530b615eaf3305b3e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/ca/gsatlasr3dvtlsca2024q1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00677dd365406a65fae9df280ee016b77eb0aed636ce03539642797a3f3a05d75458579614b5a33b3fd3ac2035cdef010761cc8889b1a95e759268f036f87596e1b506377165599f2f8b89a6ad8296d8dffd9520ad3b830684ee2145c3a74d1b125c6c605ebd97815ed53fcee31b76248a573c403ab9d8363e8133d0615436263163c007890dc711745a9ab14c55bc10ba55ddb8eddb8bd68b0bfb8c6f5576dfe5a86ea563a2df7e4e8b98db129d56708eacd718351ff0aa8b8281c2c39a4c9c5fa3e62c8de79c463d5373c802349336f238cafc25c8c2be7e4c4d4705078f8a195acfc5b603ac07dcdf4abccfca34bc28e0b8db52120b5f5cfad0222b2e24b1a0