imperva.com
Issued by GlobalSign Atlas R3 DV TLS CA 2024 Q1
About this certificate
This digital certificate with serial number 01:d2:eb:b6:0f:1b:8b:94:9f:80:1f:ba:19:a6:84:61 was issued on by GlobalSign nv-sa.
With 54 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=imperva.com
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 01:d2:eb:b6:0f:1b:8b:94:9f:80:1f:ba:19:a6:84:61Serial Number (int): 2424391126535240708556514859959092321
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: f2:da:c2:5d:d3:22:13:7b:0d:93:df:c3:91:fd:f9:14:69:62:3f:8f
AuthorityKeyId: 66:c0:c7:a3:9a:cd:fe:f3:ea:ce:4b:53:0b:61:5e:af:33:05:b3:e1
Fingerprint (sha1): 45:65:02:a5:a5:0a:30:36:a3:27:15:32:7a:f7:21:48:b1:74:6e:df
Fingerprint (sha256): f2:03:91:4a:70:a5:c7:9f:d1:fd:4c:b0:1f:a7:32:dd:85:f6:0b:32:39:12:db:7c:d4:2f:e6:67:64:bd:23:1d
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2024q1.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2024q1CRL Distribution Point: http://crl.globalsign.com/ca/gsatlasr3dvtlsca2024q1.crl
Check the revocation status for certificate imperva.com
54
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for imperva.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.lghealthjobs.org
penncancer.org
*.pennmedicine.org
chestercountyhospital.org
princetonrheumatology.com
*.ocwish.org
ocwish.org
centralpaconnect.org
*.lancasterneuroscience.com
mypennmedicine.org
knowledgelink.upenn.edu
*.jlgh.org
lghblooddonors.org
lghealthhub.org
*.mypennmedicine.org
*.princetonrheumatology.com
*.princetonhcs.org
*.cceb.med.upenn.edu
*.eliancehealthsolutions.org
*.pmacs.upenn.edu
*.pennproton.org
*.pennprotontherapy.org
pennmedicine.com
*.rockmedical.com
*.lghealth.org
*.lghealthexpress.org
pennproton.org
*.mylghealth.org
pennprotontherapy.org
*.lghealthhub.org
rockmedical.com
lancastergeneralhealth.org
lghealthjobs.org
lghealthexpress.org
*.checkyourlungs.org
checkyourlungs.org
eliancehealthsolutions.org
lancasterneuroscience.com
pennmedicine.org
imperva.com
lancasterfamilymed.org
*.centralpaconnect.org
*.chestercountyhospital.org
mylghealth.org
*.lghblooddonors.org
jlgh.org
*.penncancer.org
*.pennmedicine.com
redcap-test-web.pmacs.upenn.edu
*.lancastergeneralhealth.org
*.uphs.upenn.edu
princetonhcs.org
*.med.upenn.edu
*.lancasterfamilymed.org
penncancer.org
*.pennmedicine.org
chestercountyhospital.org
princetonrheumatology.com
*.ocwish.org
ocwish.org
centralpaconnect.org
*.lancasterneuroscience.com
mypennmedicine.org
knowledgelink.upenn.edu
*.jlgh.org
lghblooddonors.org
lghealthhub.org
*.mypennmedicine.org
*.princetonrheumatology.com
*.princetonhcs.org
*.cceb.med.upenn.edu
*.eliancehealthsolutions.org
*.pmacs.upenn.edu
*.pennproton.org
*.pennprotontherapy.org
pennmedicine.com
*.rockmedical.com
*.lghealth.org
*.lghealthexpress.org
pennproton.org
*.mylghealth.org
pennprotontherapy.org
*.lghealthhub.org
rockmedical.com
lancastergeneralhealth.org
lghealthjobs.org
lghealthexpress.org
*.checkyourlungs.org
checkyourlungs.org
eliancehealthsolutions.org
lancasterneuroscience.com
pennmedicine.org
imperva.com
lancasterfamilymed.org
*.centralpaconnect.org
*.chestercountyhospital.org
mylghealth.org
*.lghblooddonors.org
jlgh.org
*.penncancer.org
*.pennmedicine.com
redcap-test-web.pmacs.upenn.edu
*.lancastergeneralhealth.org
*.uphs.upenn.edu
princetonhcs.org
*.med.upenn.edu
*.lancasterfamilymed.org
Other certificates including the domain name imperva.com
(limited to 100 certificates)
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
Certificate
The complete raw certificate details for imperva.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKwjCCCaqgAwIBAgIQAdLrtg8bi5SfgB+6GaaEYTANBgkqhkiG9w0BAQsFADBY MQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEuMCwGA1UE AxMlR2xvYmFsU2lnbiBBdGxhcyBSMyBEViBUTFMgQ0EgMjAyNCBRMTAeFw0yNDAz MDgxOTEyMzNaFw0yNDA5MDQxOTEyMzNaMBYxFDASBgNVBAMMC2ltcGVydmEuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueawLbPzxGA0f4tD0QEG Zbcpcfe3jE0aQtwwoAFmcK1AvP2oXKHo2BYRNfLC+Xaan+/d9oukSq2w0eEq4KJ1 kJd0Brrn9W1qD9BFMzodypuwQytsf3+E9cJwfIoIaAEwNy1v1s1y6lK/SGcQYYaH JbdAlggObgsQ1Yj50T4hjY94/kViMDYlVzkXAKZc1q5W2EnpZMDpR9kGY+QCW1QT RZVuA+bMOzh5SkQIZ5FJL4UfZbp0hpfU+QFZA05SvsVYpg+FiuEqegi8hEK6hyn0 ryyTlMkMoptITbCHfcTcMrfmvssj0USelQMVUCBWGDJ/zsP5xVGMdYc1Bgz9+UbO /QIDAQABo4IHyDCCB8QwggR8BgNVHREEggRzMIIEb4ISKi5sZ2hlYWx0aGpvYnMu b3Jngg5wZW5uY2FuY2VyLm9yZ4ISKi5wZW5ubWVkaWNpbmUub3JnghljaGVzdGVy Y291bnR5aG9zcGl0YWwub3JnghlwcmluY2V0b25yaGV1bWF0b2xvZ3kuY29tggwq Lm9jd2lzaC5vcmeCCm9jd2lzaC5vcmeCFGNlbnRyYWxwYWNvbm5lY3Qub3Jnghsq LmxhbmNhc3Rlcm5ldXJvc2NpZW5jZS5jb22CEm15cGVubm1lZGljaW5lLm9yZ4IX a25vd2xlZGdlbGluay51cGVubi5lZHWCCiouamxnaC5vcmeCEmxnaGJsb29kZG9u b3JzLm9yZ4IPbGdoZWFsdGhodWIub3JnghQqLm15cGVubm1lZGljaW5lLm9yZ4Ib Ki5wcmluY2V0b25yaGV1bWF0b2xvZ3kuY29tghIqLnByaW5jZXRvbmhjcy5vcmeC FCouY2NlYi5tZWQudXBlbm4uZWR1ghwqLmVsaWFuY2VoZWFsdGhzb2x1dGlvbnMu b3JnghEqLnBtYWNzLnVwZW5uLmVkdYIQKi5wZW5ucHJvdG9uLm9yZ4IXKi5wZW5u cHJvdG9udGhlcmFweS5vcmeCEHBlbm5tZWRpY2luZS5jb22CESoucm9ja21lZGlj YWwuY29tgg4qLmxnaGVhbHRoLm9yZ4IVKi5sZ2hlYWx0aGV4cHJlc3Mub3Jngg5w ZW5ucHJvdG9uLm9yZ4IQKi5teWxnaGVhbHRoLm9yZ4IVcGVubnByb3RvbnRoZXJh cHkub3JnghEqLmxnaGVhbHRoaHViLm9yZ4IPcm9ja21lZGljYWwuY29tghpsYW5j YXN0ZXJnZW5lcmFsaGVhbHRoLm9yZ4IQbGdoZWFsdGhqb2JzLm9yZ4ITbGdoZWFs dGhleHByZXNzLm9yZ4IUKi5jaGVja3lvdXJsdW5ncy5vcmeCEmNoZWNreW91cmx1 bmdzLm9yZ4IaZWxpYW5jZWhlYWx0aHNvbHV0aW9ucy5vcmeCGWxhbmNhc3Rlcm5l dXJvc2NpZW5jZS5jb22CEHBlbm5tZWRpY2luZS5vcmeCC2ltcGVydmEuY29tghZs YW5jYXN0ZXJmYW1pbHltZWQub3JnghYqLmNlbnRyYWxwYWNvbm5lY3Qub3Jnghsq LmNoZXN0ZXJjb3VudHlob3NwaXRhbC5vcmeCDm15bGdoZWFsdGgub3JnghQqLmxn aGJsb29kZG9ub3JzLm9yZ4IIamxnaC5vcmeCECoucGVubmNhbmNlci5vcmeCEiou cGVubm1lZGljaW5lLmNvbYIfcmVkY2FwLXRlc3Qtd2ViLnBtYWNzLnVwZW5uLmVk dYIcKi5sYW5jYXN0ZXJnZW5lcmFsaGVhbHRoLm9yZ4IQKi51cGhzLnVwZW5uLmVk dYIQcHJpbmNldG9uaGNzLm9yZ4IPKi5tZWQudXBlbm4uZWR1ghgqLmxhbmNhc3Rl cmZhbWlseW1lZC5vcmcwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQU8trCXdMiE3sNk9/Dkf35FGliP48wVwYD VR0gBFAwTjAIBgZngQwBAgEwQgYKKwYBBAGgMgoBAzA0MDIGCCsGAQUFBwIBFiZo dHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9yZXBvc2l0b3J5LzAMBgNVHRMBAf8E AjAAMIGeBggrBgEFBQcBAQSBkTCBjjBABggrBgEFBQcwAYY0aHR0cDovL29jc3Au Z2xvYmFsc2lnbi5jb20vY2EvZ3NhdGxhc3IzZHZ0bHNjYTIwMjRxMTBKBggrBgEF BQcwAoY+aHR0cDovL3NlY3VyZS5nbG9iYWxzaWduLmNvbS9jYWNlcnQvZ3NhdGxh c3IzZHZ0bHNjYTIwMjRxMS5jcnQwHwYDVR0jBBgwFoAUZsDHo5rN/vPqzktTC2Fe rzMFs+EwSAYDVR0fBEEwPzA9oDugOYY3aHR0cDovL2NybC5nbG9iYWxzaWduLmNv bS9jYS9nc2F0bGFzcjNkdnRsc2NhMjAyNHExLmNybDCCAX8GCisGAQQB1nkCBAIE ggFvBIIBawFpAHcAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGO H3tg/gAABAMASDBGAiEA9sKmfWaiXsa+JH2HyDhNcUHU2zEjHlmRSFz/Q0MbvO8C IQCpLEbhXuuoSV/NNmahmneEH/Cy+JETvFKToSvr/qWlkQB2ANq2v2s/tbYin5vC u1xr6HCRcWy7UYSFNL2kPTBI1/urAAABjh97YVwAAAQDAEcwRQIgXrzp1Xdd4c0Z 3E3xlC7x92og8PjitQnf+WHmqEIpMeYCIQCPaAtzHYYrUbVTZ5zVdf7fg4hEeyDu MZe0uc8Ox6Gn0QB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAAB jh97YfQAAAQDAEcwRQIgVzzlVjjgnm6KCjrAkVOjC9i4X8ZrEbAOMyvaD/fPh2AC IQDFuNblQ4c4MpppOEJ/oN4y1K2M+KMaqWQu3ttXI1fN6jANBgkqhkiG9w0BAQsF AAOCAQEAjMrAPoHerKe+PjlBdZoQjt9HHWsGCc9PDOqKzIcGYOTPTiln6yLhijku NDtgKS8AK7i+A8iIONBl1LTiKSHq+p/q+NVfdpmzLLr82e1IAd/jvtAmbqjKctge aPFuDYJmbduNDDJxY3VACfS0P2yT3o8YJPTBLkjq4lt4i7CpTwReUdJHhaT5bQRU CXf2ql2OElw1nBEPw3nl35TO1x1MWF8wEkpjwGfZySBKAqR+VyDj4c1tRv1tGpsK yLzD9+iemxELe4Wa0QIQg3MYYB2TY+HaAYH8bvIbU0DvekXhLPixvBr9HMdLbanM FJtV6dI2h0k/VkYNgXUTvfJc+Ura0g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueawLbPzxGA0f4tD0QEG Zbcpcfe3jE0aQtwwoAFmcK1AvP2oXKHo2BYRNfLC+Xaan+/d9oukSq2w0eEq4KJ1 kJd0Brrn9W1qD9BFMzodypuwQytsf3+E9cJwfIoIaAEwNy1v1s1y6lK/SGcQYYaH JbdAlggObgsQ1Yj50T4hjY94/kViMDYlVzkXAKZc1q5W2EnpZMDpR9kGY+QCW1QT RZVuA+bMOzh5SkQIZ5FJL4UfZbp0hpfU+QFZA05SvsVYpg+FiuEqegi8hEK6hyn0 ryyTlMkMoptITbCHfcTcMrfmvssj0USelQMVUCBWGDJ/zsP5xVGMdYc1Bgz9+UbO /QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2424391126535240708556514859959092321 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Atlas R3 DV TLS CA 2024 Q1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-08 19:12:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-04 19:12:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'imperva.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23467843008610896659755304917190642112041992448776644884265506647477010060167406253425104124478681113834655679550123757888195135563193614743194179942401933115391650382865645617999916270922539792480698353841190001164148979060481446805041164279212737342336124272141117464085401609539642549315824942182528131091269452355965253814061515709874020967081100629262650215016628170896300900960857886424465070995771752084734643808033913687820748738265521747695495061059093467933943774967718924748165626475304828392803063449437548269330302685699783500843947505107935443914107804006610879384606730932416566809641025842145424494333 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1139 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthjobs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'penncancer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chestercountyhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'princetonrheumatology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ocwish.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ocwish.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centralpaconnect.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancasterneuroscience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mypennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knowledgelink.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.jlgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghblooddonors.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthhub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mypennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.princetonrheumatology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.princetonhcs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cceb.med.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eliancehealthsolutions.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pmacs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennproton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennprotontherapy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennmedicine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rockmedical.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthexpress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennproton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mylghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennprotontherapy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthhub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rockmedical.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancastergeneralhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthjobs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthexpress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.checkyourlungs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'checkyourlungs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eliancehealthsolutions.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancasterneuroscience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imperva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancasterfamilymed.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.centralpaconnect.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chestercountyhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mylghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghblooddonors.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jlgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.penncancer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennmedicine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redcap-test-web.pmacs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancastergeneralhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.uphs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'princetonhcs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.med.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancasterfamilymed.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f2dac25dd322137b0d93dfc391fdf91469623f8f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.10.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (145 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2024q1' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2024q1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 66c0c7a39acdfef3eace4b530b615eaf3305b3e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/ca/gsatlasr3dvtlsca2024q1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 016900770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e1f7b60fe0000040300483046022100f6c2a67d66a25ec6be247d87c8384d7141d4db31231e5991485cff43431bbcef022100a92c46e15eeba8495fcd3666a19a77841ff0b2f89113bc5293a12bebfea5a591007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018e1f7b615c000004030047304502205ebce9d5775de1cd19dc4df1942ef1f76a20f0f8e2b509dff961e6a8422931e60221008f680b731d862b51b553679cd575fedf8388447b20ee3197b4b9cf0ec7a1a7d1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e1f7b61f400000403004730450220573ce55638e09e6e8a0a3ac09153a30bd8b85fc66b11b00e332bda0ff7cf8760022100c5b8d6e5438738329a6938427fa0de32d4ad8cf8a31aa9642ededb572357cdea . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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