secure4.nexternal.com
- Nexternal Solutions, Inc. -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 04:b8:b2:bf:a3:af:4c:ef:5d:c4:56:4c:0d:44:8f:af was issued on by DigiCert Inc.
With 37 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Nexternal Solutions, Inc.
Organization:
Nexternal Solutions, Inc.
Organization unit: DEVELOPMENT
Organization unit: DEVELOPMENT
State / Province:
California
Locality: Carlsbad
Country: US
Locality: Carlsbad
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:b8:b2:bf:a3:af:4c:ef:5d:c4:56:4c:0d:44:8f:afSerial Number (int): 6275920057256543931781740786255957935
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 27:ab:10:b0:bf:d6:9a:5c:06:3c:1f:1d:d9:e4:d0:15:e0:9a:d2:a2
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 71:d3:4a:ff:c4:d8:b2:f8:4c:60:10:c7:9c:54:48:99:3e:6c:3c:23
Fingerprint (sha256): f3:c6:e6:97:6e:f8:7a:b0:e4:a0:0d:ae:58:92:fd:e3:01:fe:a2:28:1e:13:8b:89:e0:9e:f1:ad:2f:c2:8c:92
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate secure4.nexternal.com
37
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for secure4.nexternal.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
secure4.nexternal.com
store.tvjones.com
store.andrewwill.com
store.ojaivineyard.com
store.enginepartscenter.com
store.prolens.com
store.cgtwines.com
shop.goshthatsgood.com
store.crumbcake.net
store.speechrecsolutions.com
shop.pastureprimewagyu.com
shop.pureroom.com
store.dharmasmart.com
store.omgoliveoils.com
store.christiangiftsplace.com
store.tasteforte.com
shop.kenwrightcellars.com
store.thegreenpharmacy.com
store.foxenvineyard.com
store.samsonjuicers.com
store.trurovineyardsofcapecod.com
store.vacmotorsports.com
store.mauiwine.com
shop.gaparmour.com
shop.vsl3.com
shop.proxeed.com
wineshop.heritageschoolvineyards.com
shop.konacoffeeandtea.com
store.brooklynoenology.com
store.fictionsbeauty.com
store.1886malt.com
store.newkentwinery.com
shop.ventosavineyards.com
shop.buttonwoodgrove.com
www.store.pronetcycling.com
shop.preakness.com
shop.mazzocco.com
store.tvjones.com
store.andrewwill.com
store.ojaivineyard.com
store.enginepartscenter.com
store.prolens.com
store.cgtwines.com
shop.goshthatsgood.com
store.crumbcake.net
store.speechrecsolutions.com
shop.pastureprimewagyu.com
shop.pureroom.com
store.dharmasmart.com
store.omgoliveoils.com
store.christiangiftsplace.com
store.tasteforte.com
shop.kenwrightcellars.com
store.thegreenpharmacy.com
store.foxenvineyard.com
store.samsonjuicers.com
store.trurovineyardsofcapecod.com
store.vacmotorsports.com
store.mauiwine.com
shop.gaparmour.com
shop.vsl3.com
shop.proxeed.com
wineshop.heritageschoolvineyards.com
shop.konacoffeeandtea.com
store.brooklynoenology.com
store.fictionsbeauty.com
store.1886malt.com
store.newkentwinery.com
shop.ventosavineyards.com
shop.buttonwoodgrove.com
www.store.pronetcycling.com
shop.preakness.com
shop.mazzocco.com
Other certificates including the domain name nexternal.com
(limited to 100 certificates)
secure16.nexternal.com
investecstatus.mambu.com
secure19.nexternal.com
secure14.nexternal.com
secure17.nexternal.com
secure1.nexternal.com
secure2.nexternal.com
secure1.nexternal.com
secure3.nexternal.com
secure10.nexternal.com
secure2.nexternal.com
design.nexternal.tcpsg.net
secure12.nexternal.com
basp.status.ato.gov.au
secure17.nexternal.com
basp.status.ato.gov.au
secure1.nexternal.com
design.nexternal.tcpsg.net
secure12.nexternal.com
secure3.nexternal.com
*.cachefly.net
secure2.nexternal.com
secure1.nexternal.com
secure4.nexternal.com
basp.status.ato.gov.au
secure3.nexternal.com
basp.status.ato.gov.au
secure2.nexternal.com
basp.status.ato.gov.au
*.cachefly.net
secure1.nexternal.com
*.cachefly.net
*.cachefly.net
secure11.nexternal.com
secure3.nexternal.com
investecstatus.mambu.com
secure10.nexternal.com
secure5.nexternal.com
secure14.nexternal.com
*.nexternal.com
secure1.nexternal.com
secure4.nexternal.com
*.nexternal.com
secure2.nexternal.com
*.cachefly.net
secure3.nexternal.com
ecommerce-blog.nexternal.com
*.cachefly.net
secure4.nexternal.com
basp.status.ato.gov.au
banknorth.status.mambu.com
secure5.nexternal.com
ecommerce-blog.nexternal.com
secure16.nexternal.com
*.nexternal.com
investecstatus.mambu.com
secure1.nexternal.com
basp.status.ato.gov.au
*.cachefly.net
secure2.nexternal.com
*.cachefly.net
secure19.nexternal.com
secure1.nexternal.com
secure4.nexternal.com
secure18.nexternal.com
secure2.nexternal.com
ecommerce-blog.nexternal.com
*.nexternal.com
secure14.nexternal.com
*.cachefly.net
secure5.nexternal.com
secure12.nexternal.com
secure3.nexternal.com
*.cachefly.net
*.cachefly.net
secure17.nexternal.com
secure12.nexternal.com
secure5.nexternal.com
*.cachefly.net
ecommerce-blog.nexternal.com
basp.status.ato.gov.au
secure14.nexternal.com
basp.status.ato.gov.au
secure18.nexternal.com
secure10.nexternal.com
investecstatus.mambu.com
secure10.nexternal.com
secure1.nexternal.com
secure3.nexternal.com
secure16.nexternal.com
basp.status.ato.gov.au
*.cachefly.net
*.cachefly.net
secure10.nexternal.com
*.cachefly.net
secure10.nexternal.com
secure3.nexternal.com
secure1.nexternal.com
*.cachefly.net
secure16.nexternal.com
investecstatus.mambu.com
secure19.nexternal.com
secure14.nexternal.com
secure17.nexternal.com
secure1.nexternal.com
secure2.nexternal.com
secure1.nexternal.com
secure3.nexternal.com
secure10.nexternal.com
secure2.nexternal.com
design.nexternal.tcpsg.net
secure12.nexternal.com
basp.status.ato.gov.au
secure17.nexternal.com
basp.status.ato.gov.au
secure1.nexternal.com
design.nexternal.tcpsg.net
secure12.nexternal.com
secure3.nexternal.com
*.cachefly.net
secure2.nexternal.com
secure1.nexternal.com
secure4.nexternal.com
basp.status.ato.gov.au
secure3.nexternal.com
basp.status.ato.gov.au
secure2.nexternal.com
basp.status.ato.gov.au
*.cachefly.net
secure1.nexternal.com
*.cachefly.net
*.cachefly.net
secure11.nexternal.com
secure3.nexternal.com
investecstatus.mambu.com
secure10.nexternal.com
secure5.nexternal.com
secure14.nexternal.com
*.nexternal.com
secure1.nexternal.com
secure4.nexternal.com
*.nexternal.com
secure2.nexternal.com
*.cachefly.net
secure3.nexternal.com
ecommerce-blog.nexternal.com
*.cachefly.net
secure4.nexternal.com
basp.status.ato.gov.au
banknorth.status.mambu.com
secure5.nexternal.com
ecommerce-blog.nexternal.com
secure16.nexternal.com
*.nexternal.com
investecstatus.mambu.com
secure1.nexternal.com
basp.status.ato.gov.au
*.cachefly.net
secure2.nexternal.com
*.cachefly.net
secure19.nexternal.com
secure1.nexternal.com
secure4.nexternal.com
secure18.nexternal.com
secure2.nexternal.com
ecommerce-blog.nexternal.com
*.nexternal.com
secure14.nexternal.com
*.cachefly.net
secure5.nexternal.com
secure12.nexternal.com
secure3.nexternal.com
*.cachefly.net
*.cachefly.net
secure17.nexternal.com
secure12.nexternal.com
secure5.nexternal.com
*.cachefly.net
ecommerce-blog.nexternal.com
basp.status.ato.gov.au
secure14.nexternal.com
basp.status.ato.gov.au
secure18.nexternal.com
secure10.nexternal.com
investecstatus.mambu.com
secure10.nexternal.com
secure1.nexternal.com
secure3.nexternal.com
secure16.nexternal.com
basp.status.ato.gov.au
*.cachefly.net
*.cachefly.net
secure10.nexternal.com
*.cachefly.net
secure10.nexternal.com
secure3.nexternal.com
secure1.nexternal.com
*.cachefly.net
secure16.nexternal.com
Certificate
The complete raw certificate details for secure4.nexternal.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIzzCCB7egAwIBAgIQBLiyv6OvTO9dxFZMDUSPrzANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwMjIxMDAwMDAwWhcN MjAwNTEzMTIwMDAwWjCBjzELMAkGA1UEBhMCVVMxEzARBgNVBAgTCkNhbGlmb3Ju aWExETAPBgNVBAcTCENhcmxzYmFkMSIwIAYDVQQKExlOZXh0ZXJuYWwgU29sdXRp b25zLCBJbmMuMRQwEgYDVQQLEwtERVZFTE9QTUVOVDEeMBwGA1UEAxMVc2VjdXJl NC5uZXh0ZXJuYWwuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA jqKG4Rhge6e4NfYTycsGIDtAgNQa9vLsBUWZxwbIAgxFXlXBm729OvP+l0khYN6j SRi9w/8Uwv0N2ntY9B9Fu+S27VWvss//4wLjC+2P5CxU/y+4uATWYWSsWdD/Iick ra/XTStu5J59xpjmfVoqmLZCXXkVsVlN2gnxxzlIcpxF4ytaU/BFNEvy4F6021FC WbxeUGVBy7ETDeltswR6vzzZEfsPQj2dRE0ntrUiIvQvIv4nUavojnrdKnQbcmAb JxKS6MRKB/7BVaN/UZ7mQeZ3EzMMC6aqOLjGOH91VmXlg6i9DoPWNVe5xs6UnP3X ff55dZ7afi1cM/AdT6ymtQIDAQABo4IFZjCCBWIwHwYDVR0jBBgwFoAUD4BhHIIx YdUvKOeNRji0LOHG2eIwHQYDVR0OBBYEFCerELC/1ppcBjwfHdnk0BXgmtKiMIID kwYDVR0RBIIDijCCA4aCFXNlY3VyZTQubmV4dGVybmFsLmNvbYIRc3RvcmUudHZq b25lcy5jb22CFHN0b3JlLmFuZHJld3dpbGwuY29tghZzdG9yZS5vamFpdmluZXlh cmQuY29tghtzdG9yZS5lbmdpbmVwYXJ0c2NlbnRlci5jb22CEXN0b3JlLnByb2xl bnMuY29tghJzdG9yZS5jZ3R3aW5lcy5jb22CFnNob3AuZ29zaHRoYXRzZ29vZC5j b22CE3N0b3JlLmNydW1iY2FrZS5uZXSCHHN0b3JlLnNwZWVjaHJlY3NvbHV0aW9u cy5jb22CGnNob3AucGFzdHVyZXByaW1ld2FneXUuY29tghFzaG9wLnB1cmVyb29t LmNvbYIVc3RvcmUuZGhhcm1hc21hcnQuY29tghZzdG9yZS5vbWdvbGl2ZW9pbHMu Y29tgh1zdG9yZS5jaHJpc3RpYW5naWZ0c3BsYWNlLmNvbYIUc3RvcmUudGFzdGVm b3J0ZS5jb22CGXNob3Aua2Vud3JpZ2h0Y2VsbGFycy5jb22CGnN0b3JlLnRoZWdy ZWVucGhhcm1hY3kuY29tghdzdG9yZS5mb3hlbnZpbmV5YXJkLmNvbYIXc3RvcmUu c2Ftc29uanVpY2Vycy5jb22CIXN0b3JlLnRydXJvdmluZXlhcmRzb2ZjYXBlY29k LmNvbYIYc3RvcmUudmFjbW90b3JzcG9ydHMuY29tghJzdG9yZS5tYXVpd2luZS5j b22CEnNob3AuZ2FwYXJtb3VyLmNvbYINc2hvcC52c2wzLmNvbYIQc2hvcC5wcm94 ZWVkLmNvbYIkd2luZXNob3AuaGVyaXRhZ2VzY2hvb2x2aW5leWFyZHMuY29tghlz aG9wLmtvbmFjb2ZmZWVhbmR0ZWEuY29tghpzdG9yZS5icm9va2x5bm9lbm9sb2d5 LmNvbYIYc3RvcmUuZmljdGlvbnNiZWF1dHkuY29tghJzdG9yZS4xODg2bWFsdC5j b22CF3N0b3JlLm5ld2tlbnR3aW5lcnkuY29tghlzaG9wLnZlbnRvc2F2aW5leWFy ZHMuY29tghhzaG9wLmJ1dHRvbndvb2Rncm92ZS5jb22CG3d3dy5zdG9yZS5wcm9u ZXRjeWNsaW5nLmNvbYISc2hvcC5wcmVha25lc3MuY29tghFzaG9wLm1henpvY2Nv LmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9z c2NhLXNoYTItZzYuY3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20v c3NjYS1zaGEyLWc2LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsG AQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB8 BggrBgEFBQcBAQRwMG4wJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0 LmNvbTBGBggrBgEFBQcwAoY6aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMlNlY3VyZVNlcnZlckNBLmNydDAMBgNVHRMBAf8EAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQC6ecuMLRxCQHklapJN 610wrKIU5IuzyqbAZcn0voYdd/1tY1FWqnQcFan2gvxyu8RkAMBUgYmM5QnheMbH KG7v/inqIv4fft9BxEOHM7LlPqnq6QWdUrhpN9ug47gPzYwEbD55Fjll7RPfcI+p TauEXRz1kRHJDN8NbwFrXtv2ljOfcbkueid0z+eaTbwuLr64TxaWz2hLghv0kk9N VnoZvu8FvzpG6bENw04KRQ2+zxhHshscJcislM3dfSK5ZfWl7y0YtkzP2CfwK+AH AzVZDG7f0JtAlWBN2xsmwKdDxZkwUM6DbrzxoycjWzmleuKizDvyNEg6bsdAmk+4 zktr -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjqKG4Rhge6e4NfYTycsG IDtAgNQa9vLsBUWZxwbIAgxFXlXBm729OvP+l0khYN6jSRi9w/8Uwv0N2ntY9B9F u+S27VWvss//4wLjC+2P5CxU/y+4uATWYWSsWdD/Iickra/XTStu5J59xpjmfVoq mLZCXXkVsVlN2gnxxzlIcpxF4ytaU/BFNEvy4F6021FCWbxeUGVBy7ETDeltswR6 vzzZEfsPQj2dRE0ntrUiIvQvIv4nUavojnrdKnQbcmAbJxKS6MRKB/7BVaN/UZ7m QeZ3EzMMC6aqOLjGOH91VmXlg6i9DoPWNVe5xs6UnP3Xff55dZ7afi1cM/AdT6ym tQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6275920057256543931781740786255957935 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Carlsbad' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nexternal Solutions, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DEVELOPMENT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'secure4.nexternal.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18005984292897134710451785961112227709421964307048389673124039378519493405564302642516714591892195284306212026410068560690049179480307442032570753017888463278509689401221928294889552617154627899239411392918530019962807288881595637460983901427710649675772623970238457946053816784804629353201030323726669672400697138657809388506445317552544463147026300597910400089145728353180220691255201522452542998630045777187008288173498876072057854808730191176292224515081223277741805018445463405361333800070789261045473941961105251471362632923506715814791217945431244774003991147436033839403792360178679539395666580492247005701813 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 27ab10b0bfd69a5c063c1f1dd9e4d015e09ad2a2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (906 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure4.nexternal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.tvjones.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.andrewwill.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.ojaivineyard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.enginepartscenter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.prolens.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.cgtwines.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.goshthatsgood.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.crumbcake.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.speechrecsolutions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.pastureprimewagyu.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.pureroom.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.dharmasmart.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.omgoliveoils.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.christiangiftsplace.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.tasteforte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.kenwrightcellars.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.thegreenpharmacy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.foxenvineyard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.samsonjuicers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.trurovineyardsofcapecod.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.vacmotorsports.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.mauiwine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.gaparmour.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.vsl3.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.proxeed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wineshop.heritageschoolvineyards.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.konacoffeeandtea.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.brooklynoenology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.fictionsbeauty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.1886malt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.newkentwinery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.ventosavineyards.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.buttonwoodgrove.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.store.pronetcycling.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.preakness.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.mazzocco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00ba79cb8c2d1c424079256a924deb5d30aca214e48bb3caa6c065c9f4be861d77fd6d635156aa741c15a9f682fc72bbc46400c05481898ce509e178c6c7286eeffe29ea22fe1f7edf41c4438733b2e53ea9eae9059d52b86937dba0e3b80fcd8c046c3e79163965ed13df708fa94dab845d1cf59111c90cdf0d6f016b5edbf696339f71b92e7a2774cfe79a4dbc2e2ebeb84f1696cf684b821bf4924f4d567a19beef05bf3a46e9b10dc34e0a450dbecf1847b21b1c25c8ac94cddd7d22b965f5a5ef2d18b64ccfd827f02be0070335590c6edfd09b4095604ddb1b26c0a743c5993050ce836ebcf1a327235b39a57ae2a2cc3bf234483a6ec7409a4fb8ce4b6b