*.tcifund.com
- TCI FUND MANAGEMENT LIMITED -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 06:ed:47:58:3f:0f:d1:b4:41:e1:c7:4a:e4:54:db:cd was issued on by DigiCert Inc.
With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
TCI FUND MANAGEMENT LIMITED
Organization:
TCI FUND MANAGEMENT LIMITED
Locality:
London
Country: GB
Country: GB
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:ed:47:58:3f:0f:d1:b4:41:e1:c7:4a:e4:54:db:cdSerial Number (int): 9207389372859089715041484875964406733
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: ee:08:c2:ed:c2:7f:57:90:a5:4d:5e:3c:ce:10:ed:6c:b7:57:04:21
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 97:2b:1f:86:fe:79:0a:a1:3d:fa:80:38:ae:27:90:cf:63:30:0b:3e
Fingerprint (sha256): f9:19:8d:01:1c:a2:ca:28:77:49:ca:ce:50:31:9c:08:60:3c:ad:d2:58:08:83:16:79:74:39:94:89:0a:39:97
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate *.tcifund.com
15
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.tcifund.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.tcifund.com
mail.tciserv.com
vault.tciserv.com
*.tciserv.com
*.tcirep.com
*.tcianalysts.com
*.tcifund.ie
tcifund.com
autodiscover.tcifund.com
autodiscover.tciserv.com
autodiscover.tcianalysts.com
autodiscover.tcirep.com
autodiscover.tcifund.ie
remote.tciserv.com
smtp.tcifund.com
mail.tciserv.com
vault.tciserv.com
*.tciserv.com
*.tcirep.com
*.tcianalysts.com
*.tcifund.ie
tcifund.com
autodiscover.tcifund.com
autodiscover.tciserv.com
autodiscover.tcianalysts.com
autodiscover.tcirep.com
autodiscover.tcifund.ie
remote.tciserv.com
smtp.tcifund.com
Other certificates including the domain name tcifund.com
(limited to 100 certificates)
mail.tciserv.com
*.tcifund.com
cavext.tcifund.com
cavext.tcifund.com
www.investorevent.tcifund.com
*.tcifund.com
smc.tciserv.com
mail.tciserv.com
*.tcifund.com
mail.tciserv.com
smc.tciserv.com
mail.tciserv.com
mail.tciserv.com
mail.tciserv.com
smc.tciserv.com
mail.tciserv.com
*.tcifund.com
*.tcifund.com
smc.tciserv.com
aavext.tcifund.com
ssl.tcirem.com
cavext.tcifund.com
autodiscover.tcirep.com
*.tcifund.com
*.tcifund.com
rpc1.tcifund.com
*.tcifund.com
*.tcifund.com
mail.tciserv.com
*.tcifund.com
*.tcifund.com
*.tcifund.com
mail.tciserv.com
cavext.tcifund.com
smc.tciserv.com
aavext.tcifund.com
*.tcifund.com
mail.tciserv.com
www.tcifund.com
mail.tciserv.com
mail.tciserv.com
*.tcifund.com
*.tcifund.com
thlonsrv01.tcifund.com
cavext.tcifund.com
*.tcifund.com
*.tcifund.com
*.tcifund.com
*.tcifund.com
www.tcifund.com
portal.tcifund.com
*.tcifund.com
mail.tciserv.com
aavext.tcifund.com
*.tcifund.com
*.tcifund.com
*.tcifund.com
cavext.tcifund.com
cavext.tcifund.com
www.investorevent.tcifund.com
*.tcifund.com
smc.tciserv.com
mail.tciserv.com
*.tcifund.com
mail.tciserv.com
smc.tciserv.com
mail.tciserv.com
mail.tciserv.com
mail.tciserv.com
smc.tciserv.com
mail.tciserv.com
*.tcifund.com
*.tcifund.com
smc.tciserv.com
aavext.tcifund.com
ssl.tcirem.com
cavext.tcifund.com
autodiscover.tcirep.com
*.tcifund.com
*.tcifund.com
rpc1.tcifund.com
*.tcifund.com
*.tcifund.com
mail.tciserv.com
*.tcifund.com
*.tcifund.com
*.tcifund.com
mail.tciserv.com
cavext.tcifund.com
smc.tciserv.com
aavext.tcifund.com
*.tcifund.com
mail.tciserv.com
www.tcifund.com
mail.tciserv.com
mail.tciserv.com
*.tcifund.com
*.tcifund.com
thlonsrv01.tcifund.com
cavext.tcifund.com
*.tcifund.com
*.tcifund.com
*.tcifund.com
*.tcifund.com
www.tcifund.com
portal.tcifund.com
*.tcifund.com
mail.tciserv.com
aavext.tcifund.com
*.tcifund.com
*.tcifund.com
Certificate
The complete raw certificate details for *.tcifund.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHwzCCBqugAwIBAgIQBu1HWD8P0bRB4cdK5FTbzTANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMzA0MTMwMDAwMDBa Fw0yNDAzMDMyMzU5NTlaMFwxCzAJBgNVBAYTAkdCMQ8wDQYDVQQHEwZMb25kb24x JDAiBgNVBAoTG1RDSSBGVU5EIE1BTkFHRU1FTlQgTElNSVRFRDEWMBQGA1UEAwwN Ki50Y2lmdW5kLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOI5 /91Ze45eh5IkYrdz5xsor4q+Ehf2/tY0Qx136oY/EtUpBL80DEhJerMBtuu0CuxO xMHtf6GagWihUCzESz8OhhmauHIECUePQYtGmWdAfn6SAII7xzW+NBU9urfuLiLe I7Q0A+tYhfKPMFaQys/ONU9AfY+xFCZpmdU8jO+21BUcdbahlGCXg3kNOX8N7hUo UT1VkMLYLPZC9PbVAMDndv9EdsTJXuIYr2C7h1p8dBd0Rub66p8zjmwwpAhyOepk 6wdTDaIdUu1xbOjdMfXJTtU/OOj7ZWWZ6ORTebwkZ1tMIQQFqxKNUT07AJ4PGYQe Etgj1QIvKPKwFQwdEK0CAwEAAaOCBIwwggSIMB8GA1UdIwQYMBaAFLdrouqoqoSM eeq02g+YssWVdrn0MB0GA1UdDgQWBBTuCMLtwn9XkKVNXjzOEO1st1cEITCCATYG A1UdEQSCAS0wggEpgg0qLnRjaWZ1bmQuY29tghBtYWlsLnRjaXNlcnYuY29tghF2 YXVsdC50Y2lzZXJ2LmNvbYINKi50Y2lzZXJ2LmNvbYIMKi50Y2lyZXAuY29tghEq LnRjaWFuYWx5c3RzLmNvbYIMKi50Y2lmdW5kLmllggt0Y2lmdW5kLmNvbYIYYXV0 b2Rpc2NvdmVyLnRjaWZ1bmQuY29tghhhdXRvZGlzY292ZXIudGNpc2Vydi5jb22C HGF1dG9kaXNjb3Zlci50Y2lhbmFseXN0cy5jb22CF2F1dG9kaXNjb3Zlci50Y2ly ZXAuY29tghdhdXRvZGlzY292ZXIudGNpZnVuZC5pZYIScmVtb3RlLnRjaXNlcnYu Y29tghBzbXRwLnRjaWZ1bmQuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwgY8GA1UdHwSBhzCBhDBAoD6gPIY6aHR0cDov L2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS00 LmNybDBAoD6gPIY6aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExT UlNBU0hBMjU2MjAyMENBMS00LmNybDA+BgNVHSAENzA1MDMGBmeBDAECAjApMCcG CCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwfwYIKwYBBQUH AQEEczBxMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wSQYI KwYBBQUHMAKGPWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFRM U1JTQVNIQTI1NjIwMjBDQTEtMS5jcnQwCQYDVR0TBAIwADCCAX0GCisGAQQB1nkC BAIEggFtBIIBaQFnAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQA AAGHejIlMwAABAMARjBEAiAGAfg4uCkZZJ3hjvslZHDuOxuXJfLiMDNxw/XzRlUd bAIgXcNCmqvzc1qpDQA6XscbAHrhqwy9eirSuUwLlVnKQKkAdQBz2Z6JG0yWeKAg fUed5rLGHNBRXnEZKoxrgBB6wXdytQAAAYd6MiVeAAAEAwBGMEQCIH+rqtDGb1vu uGy5OnJvJHS5Yyq5lZ4BGUuAO+1q7+GEAiAki8ruKDh23HpWcorvI2J98zez7er5 R621z1V/3dYzQQB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAAB h3oyJSYAAAQDAEgwRgIhAKE8k0jYfIM0b/t1LkewaCZi0KfISJJQ4qfsvOO23tZK AiEAxSggsNe4FOWTR4zHXhsC4YYVeIzYavjDBvIhtNYf04cwDQYJKoZIhvcNAQEL BQADggEBAGEad6U50nd91fJoSpY+cdaG/ricWV4XtwcgBi05u11ppJNDXMr+edAO kYJpFHQyhF4Wd0dkk4GaCpc1XscMn9/mxSS4FRyw3hQFSp3Umjx2cqx/GGj79rjV FyWGaGDPjz/758cYzR34dy9HBCadMhzEWaqlQTrEXKtqZ6yxhwmGPlMeIg1Lcj7U WpGOlqpDAGg091eN3ntx75JJOfrXojdXcxD2KlvhwPCYSda71A4t66m7tByjJtOC 1/nyeIEliSOjUfmXBv9rEx2o4f1lZ44OjJ/k9qVc3DamkN61w++Y8IEnWT+z+Pbl 2rk0bCUaksLgQGOHPNCREgLU9yrHF5Y= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jn/3Vl7jl6HkiRit3Pn Gyivir4SF/b+1jRDHXfqhj8S1SkEvzQMSEl6swG267QK7E7Ewe1/oZqBaKFQLMRL Pw6GGZq4cgQJR49Bi0aZZ0B+fpIAgjvHNb40FT26t+4uIt4jtDQD61iF8o8wVpDK z841T0B9j7EUJmmZ1TyM77bUFRx1tqGUYJeDeQ05fw3uFShRPVWQwtgs9kL09tUA wOd2/0R2xMle4hivYLuHWnx0F3RG5vrqnzOObDCkCHI56mTrB1MNoh1S7XFs6N0x 9clO1T846PtlZZno5FN5vCRnW0whBAWrEo1RPTsAng8ZhB4S2CPVAi8o8rAVDB0Q rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9207389372859089715041484875964406733 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TCI FUND MANAGEMENT LIMITED' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.tcifund.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28558457527574581764689028114079396187846554166879345137279110581800803040325571193027129153327862368422642393760563795227608138565968916397165806949462333540267576181035469662860915144402250629063970573275278157194105805632122594922249457864958211208402058493836285784066437184951972853954306134672067923348025792137836366166466810618466517444942344080101760740191026209582935825341257245539043663021073030813910890242870685116851861114950074300939880934199917462556068927263319739759790629951849555104399978864937779215176402173802006130016556855103439844660174509863435922394158966161604401865421057988461101650093 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ee08c2edc27f5790a54d5e3cce10ed6cb7570421 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (301 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tcifund.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.tciserv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vault.tciserv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tciserv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tcirep.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tcianalysts.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tcifund.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tcifund.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.tcifund.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.tciserv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.tcianalysts.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.tcirep.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.tcifund.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'remote.tciserv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtp.tcifund.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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