imperva.com
Issued by GlobalSign Atlas R3 DV TLS CA 2023 Q4
About this certificate
This digital certificate with serial number 01:63:e1:b9:f8:ad:69:39:b9:3c:59:b4:f5:47:d3:9e was issued on by GlobalSign nv-sa.
With 56 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=imperva.com
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 01:63:e1:b9:f8:ad:69:39:b9:3c:59:b4:f5:47:d3:9eSerial Number (int): 1847843661112674088655832568568468382
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: f2:da:c2:5d:d3:22:13:7b:0d:93:df:c3:91:fd:f9:14:69:62:3f:8f
AuthorityKeyId: aa:11:71:8f:95:c4:58:98:8b:b1:6e:0f:3b:50:68:24:bc:b8:19:bc
Fingerprint (sha1): 3c:77:8a:c3:9d:87:e6:9a:5b:f1:3a:0f:ab:d2:f0:df:59:8a:44:e7
Fingerprint (sha256): f6:5a:b5:b9:fe:4a:84:03:1f:53:a0:5a:08:28:63:ed:c1:1f:85:2a:d9:d6:99:51:71:b0:e8:11:e0:8e:07:f4
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2023q4.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2023q4CRL Distribution Point: http://crl.globalsign.com/ca/gsatlasr3dvtlsca2023q4.crl
Check the revocation status for certificate imperva.com
56
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for imperva.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.lghealthjobs.org
penncancer.org
*.pennmedicine.org
chestercountyhospital.org
princetonrheumatology.com
*.ocwish.org
ocwish.org
*.lancasterneuroscience.com
mypennmedicine.org
knowledgelink.upenn.edu
*.jlgh.org
lghblooddonors.org
lghealthhub.org
*.mypennmedicine.org
*.princetonrheumatology.com
*.princetonhcs.org
*.cceb.med.upenn.edu
*.eliancehealthsolutions.org
*.pmacs.upenn.edu
*.pennproton.org
*.pennprotontherapy.org
pennmedicine.com
*.rockmedical.com
*.cchosp.com
cchosp.com
*.lghealth.org
*.lghealthexpress.org
pennproton.org
*.mylghealth.org
pennprotontherapy.org
*.lghealthhub.org
rockmedical.com
lancastergeneralhealth.org
lghealthjobs.org
lghealthexpress.org
*.checkyourlungs.org
checkyourlungs.org
eliancehealthsolutions.org
lancasterneuroscience.com
ourcarewishes.org
pennmedicine.org
imperva.com
lancasterfamilymed.org
*.chestercountyhospital.org
mylghealth.org
*.lghblooddonors.org
jlgh.org
*.penncancer.org
*.pennmedicine.com
redcap-test-web.pmacs.upenn.edu
*.lancastergeneralhealth.org
*.uphs.upenn.edu
princetonhcs.org
*.med.upenn.edu
*.lancasterfamilymed.org
*.ourcarewishes.org
penncancer.org
*.pennmedicine.org
chestercountyhospital.org
princetonrheumatology.com
*.ocwish.org
ocwish.org
*.lancasterneuroscience.com
mypennmedicine.org
knowledgelink.upenn.edu
*.jlgh.org
lghblooddonors.org
lghealthhub.org
*.mypennmedicine.org
*.princetonrheumatology.com
*.princetonhcs.org
*.cceb.med.upenn.edu
*.eliancehealthsolutions.org
*.pmacs.upenn.edu
*.pennproton.org
*.pennprotontherapy.org
pennmedicine.com
*.rockmedical.com
*.cchosp.com
cchosp.com
*.lghealth.org
*.lghealthexpress.org
pennproton.org
*.mylghealth.org
pennprotontherapy.org
*.lghealthhub.org
rockmedical.com
lancastergeneralhealth.org
lghealthjobs.org
lghealthexpress.org
*.checkyourlungs.org
checkyourlungs.org
eliancehealthsolutions.org
lancasterneuroscience.com
ourcarewishes.org
pennmedicine.org
imperva.com
lancasterfamilymed.org
*.chestercountyhospital.org
mylghealth.org
*.lghblooddonors.org
jlgh.org
*.penncancer.org
*.pennmedicine.com
redcap-test-web.pmacs.upenn.edu
*.lancastergeneralhealth.org
*.uphs.upenn.edu
princetonhcs.org
*.med.upenn.edu
*.lancasterfamilymed.org
*.ourcarewishes.org
Other certificates including the domain name imperva.com
(limited to 100 certificates)
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
Certificate
The complete raw certificate details for imperva.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIK1jCCCb6gAwIBAgIQAWPhufitaTm5PFm09UfTnjANBgkqhkiG9w0BAQsFADBY MQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEuMCwGA1UE AxMlR2xvYmFsU2lnbiBBdGxhcyBSMyBEViBUTFMgQ0EgMjAyMyBRNDAeFw0yMzEw MzAxNDU3MDlaFw0yNDA0MjcxNDU3MDlaMBYxFDASBgNVBAMMC2ltcGVydmEuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueawLbPzxGA0f4tD0QEG Zbcpcfe3jE0aQtwwoAFmcK1AvP2oXKHo2BYRNfLC+Xaan+/d9oukSq2w0eEq4KJ1 kJd0Brrn9W1qD9BFMzodypuwQytsf3+E9cJwfIoIaAEwNy1v1s1y6lK/SGcQYYaH JbdAlggObgsQ1Yj50T4hjY94/kViMDYlVzkXAKZc1q5W2EnpZMDpR9kGY+QCW1QT RZVuA+bMOzh5SkQIZ5FJL4UfZbp0hpfU+QFZA05SvsVYpg+FiuEqegi8hEK6hyn0 ryyTlMkMoptITbCHfcTcMrfmvssj0USelQMVUCBWGDJ/zsP5xVGMdYc1Bgz9+UbO /QIDAQABo4IH3DCCB9gwggSQBgNVHREEggSHMIIEg4ISKi5sZ2hlYWx0aGpvYnMu b3Jngg5wZW5uY2FuY2VyLm9yZ4ISKi5wZW5ubWVkaWNpbmUub3JnghljaGVzdGVy Y291bnR5aG9zcGl0YWwub3JnghlwcmluY2V0b25yaGV1bWF0b2xvZ3kuY29tggwq Lm9jd2lzaC5vcmeCCm9jd2lzaC5vcmeCGyoubGFuY2FzdGVybmV1cm9zY2llbmNl LmNvbYISbXlwZW5ubWVkaWNpbmUub3Jnghdrbm93bGVkZ2VsaW5rLnVwZW5uLmVk dYIKKi5qbGdoLm9yZ4ISbGdoYmxvb2Rkb25vcnMub3Jngg9sZ2hlYWx0aGh1Yi5v cmeCFCoubXlwZW5ubWVkaWNpbmUub3JnghsqLnByaW5jZXRvbnJoZXVtYXRvbG9n eS5jb22CEioucHJpbmNldG9uaGNzLm9yZ4IUKi5jY2ViLm1lZC51cGVubi5lZHWC HCouZWxpYW5jZWhlYWx0aHNvbHV0aW9ucy5vcmeCESoucG1hY3MudXBlbm4uZWR1 ghAqLnBlbm5wcm90b24ub3JnghcqLnBlbm5wcm90b250aGVyYXB5Lm9yZ4IQcGVu bm1lZGljaW5lLmNvbYIRKi5yb2NrbWVkaWNhbC5jb22CDCouY2Nob3NwLmNvbYIK Y2Nob3NwLmNvbYIOKi5sZ2hlYWx0aC5vcmeCFSoubGdoZWFsdGhleHByZXNzLm9y Z4IOcGVubnByb3Rvbi5vcmeCECoubXlsZ2hlYWx0aC5vcmeCFXBlbm5wcm90b250 aGVyYXB5Lm9yZ4IRKi5sZ2hlYWx0aGh1Yi5vcmeCD3JvY2ttZWRpY2FsLmNvbYIa bGFuY2FzdGVyZ2VuZXJhbGhlYWx0aC5vcmeCEGxnaGVhbHRoam9icy5vcmeCE2xn aGVhbHRoZXhwcmVzcy5vcmeCFCouY2hlY2t5b3VybHVuZ3Mub3JnghJjaGVja3lv dXJsdW5ncy5vcmeCGmVsaWFuY2VoZWFsdGhzb2x1dGlvbnMub3JnghlsYW5jYXN0 ZXJuZXVyb3NjaWVuY2UuY29tghFvdXJjYXJld2lzaGVzLm9yZ4IQcGVubm1lZGlj aW5lLm9yZ4ILaW1wZXJ2YS5jb22CFmxhbmNhc3RlcmZhbWlseW1lZC5vcmeCGyou Y2hlc3RlcmNvdW50eWhvc3BpdGFsLm9yZ4IObXlsZ2hlYWx0aC5vcmeCFCoubGdo Ymxvb2Rkb25vcnMub3JngghqbGdoLm9yZ4IQKi5wZW5uY2FuY2VyLm9yZ4ISKi5w ZW5ubWVkaWNpbmUuY29tgh9yZWRjYXAtdGVzdC13ZWIucG1hY3MudXBlbm4uZWR1 ghwqLmxhbmNhc3RlcmdlbmVyYWxoZWFsdGgub3JnghAqLnVwaHMudXBlbm4uZWR1 ghBwcmluY2V0b25oY3Mub3Jngg8qLm1lZC51cGVubi5lZHWCGCoubGFuY2FzdGVy ZmFtaWx5bWVkLm9yZ4ITKi5vdXJjYXJld2lzaGVzLm9yZzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQWBBTy2sJd 0yITew2T38OR/fkUaWI/jzBXBgNVHSAEUDBOMAgGBmeBDAECATBCBgorBgEEAaAy CgEDMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3Lmdsb2JhbHNpZ24uY29tL3Jl cG9zaXRvcnkvMAwGA1UdEwEB/wQCMAAwgZ4GCCsGAQUFBwEBBIGRMIGOMEAGCCsG AQUFBzABhjRodHRwOi8vb2NzcC5nbG9iYWxzaWduLmNvbS9jYS9nc2F0bGFzcjNk dnRsc2NhMjAyM3E0MEoGCCsGAQUFBzAChj5odHRwOi8vc2VjdXJlLmdsb2JhbHNp Z24uY29tL2NhY2VydC9nc2F0bGFzcjNkdnRsc2NhMjAyM3E0LmNydDAfBgNVHSME GDAWgBSqEXGPlcRYmIuxbg87UGgkvLgZvDBIBgNVHR8EQTA/MD2gO6A5hjdodHRw Oi8vY3JsLmdsb2JhbHNpZ24uY29tL2NhL2dzYXRsYXNyM2R2dGxzY2EyMDIzcTQu Y3JsMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwB2/4g/Crb7lVHCYcz1h7o0 tKTNuyncaEIKn+ZnTFo6dAAAAYuBFslgAAAEAwBIMEYCIQDltvDwyGlI+fUE1fte or5QzRZqFAOwVPXXByViSvzb2wIhAMLw/4n7u0eTcUBJbYREZboYJl7/o7B/fuJo ttuXbe7VAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGLgRbK 3gAABAMARzBFAiB4xhcqZmbis8oNki4lhCBwTiTlLFE9kKvI2bcn9/44CwIhAL8u ryB71BhhHgq6nHgrYhsmSS84ODkJaAQYHjct8BaKAHYAO1N3dT4tuYBOizBbBv5A O2fYT8P0x70ADS1yb+H61BcAAAGLgRbMGAAABAMARzBFAiAa6MySPanyqBuwIPYZ DJSfP2AqZQGQbMpLl7k2imbGrgIhAPZaZMi01YdZmC5q4i0PZyzDSE/XBpHWOil0 vAIgK4IlMA0GCSqGSIb3DQEBCwUAA4IBAQAdktwFrBWf5vsYcAkZW0vPB+oaVRSC GihUfOfYumdeUSj8IEhwWNytlt0w515kZJLIgVfhpRltsXyJ/8U2pByDOKPYjwvc VCZhz89KtxCqWWtiqqKzkXVW3u6AdU1iiEpwt93dsYah4UJKOFe+puUk0C6ouuaB N0oJfQSC4lkHBcu25wTmOTunjPmuTAF0HnQLmfo9/J8hOXLDK409VWI9UiXJYyUb EG9ckjaYLOJs+i9Efn0TCCp7HshxRD49R805BONtItCz2nMUGAlfkNChH/kVoZZC 9qG/y6O6A6b8hxO/BdJqB3Ub/E/orbg+ozS2Di80BJ6iwEL7sCdvOBpm -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueawLbPzxGA0f4tD0QEG Zbcpcfe3jE0aQtwwoAFmcK1AvP2oXKHo2BYRNfLC+Xaan+/d9oukSq2w0eEq4KJ1 kJd0Brrn9W1qD9BFMzodypuwQytsf3+E9cJwfIoIaAEwNy1v1s1y6lK/SGcQYYaH JbdAlggObgsQ1Yj50T4hjY94/kViMDYlVzkXAKZc1q5W2EnpZMDpR9kGY+QCW1QT RZVuA+bMOzh5SkQIZ5FJL4UfZbp0hpfU+QFZA05SvsVYpg+FiuEqegi8hEK6hyn0 ryyTlMkMoptITbCHfcTcMrfmvssj0USelQMVUCBWGDJ/zsP5xVGMdYc1Bgz9+UbO /QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1847843661112674088655832568568468382 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Atlas R3 DV TLS CA 2023 Q4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-30 14:57:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-27 14:57:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'imperva.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23467843008610896659755304917190642112041992448776644884265506647477010060167406253425104124478681113834655679550123757888195135563193614743194179942401933115391650382865645617999916270922539792480698353841190001164148979060481446805041164279212737342336124272141117464085401609539642549315824942182528131091269452355965253814061515709874020967081100629262650215016628170896300900960857886424465070995771752084734643808033913687820748738265521747695495061059093467933943774967718924748165626475304828392803063449437548269330302685699783500843947505107935443914107804006610879384606730932416566809641025842145424494333 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1159 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthjobs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'penncancer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chestercountyhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'princetonrheumatology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ocwish.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ocwish.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancasterneuroscience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mypennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knowledgelink.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.jlgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghblooddonors.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthhub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mypennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.princetonrheumatology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.princetonhcs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cceb.med.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eliancehealthsolutions.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pmacs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennproton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennprotontherapy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennmedicine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rockmedical.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cchosp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cchosp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthexpress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennproton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mylghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennprotontherapy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghealthhub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rockmedical.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancastergeneralhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthjobs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lghealthexpress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.checkyourlungs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'checkyourlungs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eliancehealthsolutions.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancasterneuroscience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ourcarewishes.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pennmedicine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imperva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lancasterfamilymed.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chestercountyhospital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mylghealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lghblooddonors.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jlgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.penncancer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pennmedicine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redcap-test-web.pmacs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancastergeneralhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.uphs.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'princetonhcs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.med.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lancasterfamilymed.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ourcarewishes.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f2dac25dd322137b0d93dfc391fdf91469623f8f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.10.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (145 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2023q4' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2023q4.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName aa11718f95c458988bb16e0f3b506824bcb819bc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/ca/gsatlasr3dvtlsca2023q4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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