alight.novitex.com
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 0e:ce:52:70:7b:7f:b7:94 was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=alight.novitex.com,OU=Domain Control Validated
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:ce:52:70:7b:7f:b7:94Serial Number (int): 1066880804795168660
Serial Number lenght: 60 bits, 8 octets
SubjectKeyId: 6a:7f:ac:88:01:5a:0f:80:7e:90:c5:7d:a5:18:b9:37:31:15:11:bc
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 3e:01:73:97:63:b0:1f:5b:6e:d0:64:88:6c:92:ca:c2:4b:8e:ae:23
Fingerprint (sha256): fb:45:25:40:79:47:de:b0:d1:04:90:c0:31:74:29:45:c0:6d:12:78:fc:a2:90:1b:f2:ad:81:7b:35:15:e7:46
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-1081.crl
Check the revocation status for certificate alight.novitex.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for alight.novitex.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alight.novitex.com
www.alight.novitex.com
www.alight.novitex.com
Other certificates including the domain name novitex.com
(limited to 100 certificates)
moe.novitex.com
aetna.novitex.com
ca501-fw5515-dc1-1.novitex.com
fltweb.adf.novitex.com
sso.novitex.com
metlife.novitex.com
aetnastaging.novitex.com
moestaging.novitex.com
aetna.novitex.com
lmconnectstaging.novitex.com
aetna.novitex.com
*.novitex.com
aetnastaging.novitex.com
carecentrix.novitex.com
metlife.novitex.com
metlife.novitex.com
moestaging.novitex.com
oneteam.novitex.com
metlife.novitex.com
fltweb.adf.novitex.com
aetna.novitex.com
cdprint01-emc.novitex.com
alight.novitex.com
*.novitex.com
emblemhealthstaging.novitex.com
metlife.novitex.com
aetnastaging.novitex.com
sso.novitex.com
carecentrix.novitex.com
aetna.novitex.com
inside.novitex.com
lmconnect.novitex.com
alight.novitex.com
aetnastaging.novitex.com
aetna.novitex.com
ca501-fw5515-dc1-1.novitex.com
fltweb.adf.novitex.com
sso.novitex.com
metlife.novitex.com
aetnastaging.novitex.com
moestaging.novitex.com
aetna.novitex.com
lmconnectstaging.novitex.com
aetna.novitex.com
*.novitex.com
aetnastaging.novitex.com
carecentrix.novitex.com
metlife.novitex.com
metlife.novitex.com
moestaging.novitex.com
oneteam.novitex.com
metlife.novitex.com
fltweb.adf.novitex.com
aetna.novitex.com
cdprint01-emc.novitex.com
alight.novitex.com
*.novitex.com
emblemhealthstaging.novitex.com
metlife.novitex.com
aetnastaging.novitex.com
sso.novitex.com
carecentrix.novitex.com
aetna.novitex.com
inside.novitex.com
lmconnect.novitex.com
alight.novitex.com
aetnastaging.novitex.com
Certificate
The complete raw certificate details for alight.novitex.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgIIDs5ScHt/t5QwDQYJKoZIhvcNAQELBQAwgbQxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRow GAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UECxMkaHR0cDovL2NlcnRz LmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQDEypHbyBEYWRkeSBTZWN1 cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwHhcNMTkwNDI5MTUyMDIxWhcN MjAwNDI5MTUyMDIxWjBAMSEwHwYDVQQLExhEb21haW4gQ29udHJvbCBWYWxpZGF0 ZWQxGzAZBgNVBAMTEmFsaWdodC5ub3ZpdGV4LmNvbTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAM+ge3WXvogkmT7A/5HD2kzb+01RPAQkFbbv6xK/5qno 3E9mN0YLiK3659swrYn7z3zIlDTnr6F2hzrpTr/wYIneOzxI4gcDWe+F+Iw1Nwvg 5XLGCzBn1kZTh3asyzRHhMUYVykm2bbfVnG/tYe+CUJF6EpEmKgiGLh5H72S02kU S6gRKdaGAwHyg9JL/+eByNOUzkkoNzihlP+RuzJgdqhI6M4ln1JpzHa1Zo13+twF lzSb/JwpDUGwzYIu5eeGz3C+r/0gvsKbAo2MfhBFSENNOiO6lJGNksRx60uq1OMP S5KKFMhyAeCikfje69Mlkjx8yZpKGmXCqi+SZoavAyECAwEAAaOCAtIwggLOMAwG A1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1Ud DwEB/wQEAwIFoDA4BgNVHR8EMTAvMC2gK6AphidodHRwOi8vY3JsLmdvZGFkZHku Y29tL2dkaWcyczEtMTA4MS5jcmwwXQYDVR0gBFYwVDBIBgtghkgBhv1tAQcXATA5 MDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3Jl cG9zaXRvcnkvMAgGBmeBDAECATB2BggrBgEFBQcBAQRqMGgwJAYIKwYBBQUHMAGG GGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBABggrBgEFBQcwAoY0aHR0cDovL2Nl cnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5L2dkaWcyLmNydDAfBgNV HSMEGDAWgBRAwr0njsw0gzCiM9f7bLPwtCyAzjA1BgNVHREELjAsghJhbGlnaHQu bm92aXRleC5jb22CFnd3dy5hbGlnaHQubm92aXRleC5jb20wHQYDVR0OBBYEFGp/ rIgBWg+AfpDFfaUYuTcxFRG8MIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcApLkJ kLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFqaa7bUAAABAMASDBGAiEA nnQ0sXwILAgdXG1HBbtFcxJJ5fZLRMqsbEq1kTi9Qp4CIQDfrDJP/9VWz0wfTA1M guNa0nPwjzd4Zh1lHqfB8oQv9QB2AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQY dZaBcUVYAAABammu3FUAAAQDAEcwRQIgHmGO5N1x/Ouv+MJ4EIvotK/IEmF5/yxy gItmiZsSgXsCIQD2+mqu+ueEMtiWbPbrZnwRHjML4rKJ0E8b50NdGFX8LTANBgkq hkiG9w0BAQsFAAOCAQEAYDaKmIaxT5XL5VK0t4gftWas+GFHa6Zoq06wte5OFxm5 0VzkEAigG7D/+AAX3iIgPIkbyJ66g+nSvjAEpI+LVcrI9nEMMPTJFFGy9WKhuoJj 9LtArKKG/74h+h+oapYBlK6HtTzcU1/TVgFzcD/ukGW2flF4UBqZ60tuNqO9NOAj 0GErfxhAIuEA5VX0ulGIJjAcB+5OVGuy0o/w81y/fK9ZENhkpqHz+PAAtmxQmyPK usAvDs2sJB7I9pklKCBgX9FCGWhcNvpEi0+hlPo0tgW9FXxm2vkqvV2vZzGR5MCB gNYBP3Ue+gVfcMSeP5C4ve7uAyAly/XxGdryNrcNRg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6B7dZe+iCSZPsD/kcPa TNv7TVE8BCQVtu/rEr/mqejcT2Y3RguIrfrn2zCtifvPfMiUNOevoXaHOulOv/Bg id47PEjiBwNZ74X4jDU3C+DlcsYLMGfWRlOHdqzLNEeExRhXKSbZtt9Wcb+1h74J QkXoSkSYqCIYuHkfvZLTaRRLqBEp1oYDAfKD0kv/54HI05TOSSg3OKGU/5G7MmB2 qEjoziWfUmnMdrVmjXf63AWXNJv8nCkNQbDNgi7l54bPcL6v/SC+wpsCjYx+EEVI Q006I7qUkY2SxHHrS6rU4w9LkooUyHIB4KKR+N7r0yWSPHzJmkoaZcKqL5Jmhq8D IQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1066880804795168660 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-29 15:20:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-29 15:20:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alight.novitex.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26210465881362613388250548251131432071164193852583308131736915073118392603060619035683247426816698951823803463750293421813316134400779188442524321971170295482874066541458085728588794157047642054951644696312813296335981424667320405796644446019191979286596153982169726409774175676372254361612563494053447516135464928197073530131641398844121715903872765881333030895591836971996728707292576272488285000430151549127099121483728051808555306553655146907037930458317046399488402029340160471526314862248628979788755431082366435491338778671963205918936295912297290423473009125032962521943786818010049706027636456604618716021537 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-1081.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alight.novitex.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.alight.novitex.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6a7fac88015a0f807e90c57da518b937311511bc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016a69aedb5000000403004830460221009e7434b17c082c081d5c6d4705bb45731249e5f64b44caac6c4ab59138bd429e022100dfac324fffd556cf4c1f4c0d4c82e35ad273f08f3778661d651ea7c1f2842ff50076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016a69aedc55000004030047304502201e618ee4dd71fcebaff8c278108be8b4afc8126179ff2c72808b66899b12817b022100f6fa6aaefae78432d8966cf6eb667c111e330be2b289d04f1be7435d1855fc2d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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