ciam.kaingaora.govt.nz
- Housing New Zealand Limited -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0d:c5:28:e3:4f:10:e5:53:93:e0:f8:f1:d1:2c:1d:76 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Housing New Zealand Limited
Organization:
Housing New Zealand Limited
Locality:
Wellington
Country: NZ
Country: NZ
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:c5:28:e3:4f:10:e5:53:93:e0:f8:f1:d1:2c:1d:76Serial Number (int): 18303675731982045748051811383567457654
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 35:cd:b0:d3:c4:f2:cf:3f:af:47:2e:ad:d0:8c:71:58:e0:9b:df:f4
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 3d:cd:66:63:60:49:fb:82:29:a9:b6:c6:e8:84:8f:05:38:2e:95:84
Fingerprint (sha256): fc:f4:2b:64:f8:45:3c:65:75:f1:8a:73:5a:e2:06:27:b0:4c:47:d6:58:55:82:47:0a:1b:dc:e2:63:5e:a4:1f
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate ciam.kaingaora.govt.nz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ciam.kaingaora.govt.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA512 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ciam.kaingaora.govt.nz
www.ciam.kaingaora.govt.nz
www.ciam.kaingaora.govt.nz
Other certificates including the domain name kaingaora.govt.nz
(limited to 100 certificates)
my.npe4.kaingaora.govt.nz
careers.hnzc.co.nz
ucweb02.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
access02.kaingaora.govt.nz
iaf.portal.kaingaora.govt.nz
ucweb01.kaingaora.govt.nz
my.kaingaora.govt.nz
ciam.kaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
kaaingaora.govt.nz
myaccount.firsthomepartner.kaingaora.govt.nz
access01.kaingaora.govt.nz
ciam.kaingaora.govt.nz
my.kaingaora.govt.nz
help.cloudpayroll.com.au
kaaingaora.govt.nz
ucweb01.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
kaaingaora.govt.nz
my.kaingaora.govt.nz
desk.aquion.com.au
kaaingaora.govt.nz
access02.kaingaora.govt.nz
careers.hnzc.co.nz
live.madeopen.co.uk
kaaingaora.govt.nz
access01.kaingaora.govt.nz
helpdesk.csxpi.com
live.madeopen.co.uk
mail.hnzc.co.nz
desk.mygpmptool.com.au
kaaingaora.govt.nz
careers.hnzc.co.nz
access02.kaingaora.govt.nz
zohosd.mbav.com.au
kaaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
kaaingaora.govt.nz
my.kaingaora.govt.nz
live.madeopen.co.uk
my.kaingaora.govt.nz
kaaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
kaaingaora.govt.nz
my.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
kaaingaora.govt.nz
rawa.kaingaora.govt.nz
my.npe4.kaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
ucweb02.kaingaora.govt.nz
my.kaingaora.govt.nz
hnzaadexpwe01.hnzc.co.nz
ciam.kaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
kaaingaora.govt.nz
ucweb02.kaingaora.govt.nz
careers.hnzc.co.nz
ucweb02.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
access02.kaingaora.govt.nz
iaf.portal.kaingaora.govt.nz
ucweb01.kaingaora.govt.nz
my.kaingaora.govt.nz
ciam.kaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
kaaingaora.govt.nz
myaccount.firsthomepartner.kaingaora.govt.nz
access01.kaingaora.govt.nz
ciam.kaingaora.govt.nz
my.kaingaora.govt.nz
help.cloudpayroll.com.au
kaaingaora.govt.nz
ucweb01.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
kaaingaora.govt.nz
my.kaingaora.govt.nz
desk.aquion.com.au
kaaingaora.govt.nz
access02.kaingaora.govt.nz
careers.hnzc.co.nz
live.madeopen.co.uk
kaaingaora.govt.nz
access01.kaingaora.govt.nz
helpdesk.csxpi.com
live.madeopen.co.uk
mail.hnzc.co.nz
desk.mygpmptool.com.au
kaaingaora.govt.nz
careers.hnzc.co.nz
access02.kaingaora.govt.nz
zohosd.mbav.com.au
kaaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
kaaingaora.govt.nz
my.kaingaora.govt.nz
live.madeopen.co.uk
my.kaingaora.govt.nz
kaaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
kaaingaora.govt.nz
my.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
kaaingaora.govt.nz
rawa.kaingaora.govt.nz
my.npe4.kaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
ucweb02.kaingaora.govt.nz
my.kaingaora.govt.nz
hnzaadexpwe01.hnzc.co.nz
ciam.kaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
kaaingaora.govt.nz
ucweb02.kaingaora.govt.nz
Certificate
The complete raw certificate details for ciam.kaingaora.govt.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGuzCCBaOgAwIBAgIQDcUo408Q5VOT4Pjx0SwddjANBgkqhkiG9w0BAQ0FADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTkxMTExMDAwMDAwWhcN MjExMTE3MTIwMDAwWjBpMQswCQYDVQQGEwJOWjETMBEGA1UEBxMKV2VsbGluZ3Rv bjEkMCIGA1UEChMbSG91c2luZyBOZXcgWmVhbGFuZCBMaW1pdGVkMR8wHQYDVQQD ExZjaWFtLmthaW5nYW9yYS5nb3Z0Lm56MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAs0Z0xdl4zJzzxzIeXgVKkDpFRpNo52DFEGyc+K/kKCsIOG6rq68Y zPqA08QiqMOv0wxgJqYrgzlWipxUxEJOo+4MKAJgm16AIKmAvoNOGV0LBOG6lB+k 4ZtAEJvQyDDCtPx04Kpt9/4PHLER8kP1O1+I94wpD7miaJ2K2Nhf8gbRbZe+qixU 4HwTy8DjkUpBEgWr9/OUCK8XzJ+eBsheomRWblmVeXAiuWZckEe6RqOqoPMNQa+d YeiRTqkxSXQqv+lzyKp+ZDgbhuKShrKJ50698qUf3dTR7hjyRJNCkjzSI743eES7 TAx3Y8nSQCNYLMvkL96gscCrr0N3vAekTQIDAQABo4IDeTCCA3UwHwYDVR0jBBgw FoAUD4BhHIIxYdUvKOeNRji0LOHG2eIwHQYDVR0OBBYEFDXNsNPE8s8/r0curdCM cVjgm9/0MD0GA1UdEQQ2MDSCFmNpYW0ua2Fpbmdhb3JhLmdvdnQubnqCGnd3dy5j aWFtLmthaW5nYW9yYS5nb3Z0Lm56MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDovL2Ny bDMuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwL6AtoCuGKWh0dHA6Ly9j cmw0LmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMEwGA1UdIARFMEMwNwYJ YIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNv bS9DUFMwCAYGZ4EMAQICMHwGCCsGAQUFBwEBBHAwbjAkBggrBgEFBQcwAYYYaHR0 cDovL29jc3AuZGlnaWNlcnQuY29tMEYGCCsGAQUFBzAChjpodHRwOi8vY2FjZXJ0 cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0EuY3J0MAwG A1UdEwEB/wQCMAAwggF8BgorBgEEAdZ5AgQCBIIBbASCAWgBZgB2AKS5CZC0GFgU h7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABblhatDYAAAQDAEcwRQIgI9COjF4I Vu83jtwVodD5jFOH1zzwiRA/9+Lu75K+OX0CIQC6js1MIZWxYJsoJmWAMU/ESinm pGV4hAd3eGFZZUxIqwB1AESUZS6w7s6vxEAH2Kj+KMDa5oK+2MsxtT/TM5a1toGo AAABblhatCwAAAQDAEYwRAIgfyfmi7okOe1q1A+POzYcYseggaXGR7TOsDKbyaED dFACIBjEAfHC8M6DjKfhIcgCdklHIf12AzpuI94yVWuW8OkrAHUAu9nfvB+KcbWT lCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFuWFq0PAAABAMARjBEAiBML50dk1OP 9468Z77l8HcZ4ObVC96XQoiSrzmosJ51igIgAj8GmG7JB/ddDJ53swc0NTgTwAjS bT6Cp9QaKlAjPoAwDQYJKoZIhvcNAQENBQADggEBAHl9+aWV4LkW9Vw6nk6+qOfM nCZf/8qNLYY39wn4KHPqN0RBmRYmCWDbaCBKxPA/fJMOY17KTADjwK4Ng04N2b8f TfZ7zrJDj5hjQcnb7e9hiwzZlomKaoDEoQwuunEjVaQgX96ToVxRlgWMdwesnMxC MX/Fb95Fmc+8JI6gitktfM0JpJPihM82dAzRvT66UsbhRCWWed2pi7j/7yiZL7yN zLhgC+LcVCJ9Y7HLLWgTaovopmSvbiz7Jt/80/b9UOrDT1WKWHu0I6ivoWbkQ69I s6dMVX4e6Jvnua2uViogqpbHoQpE9X3rlNVCY6ZZ9mByeSHf5KL4wgHPPCEYtS4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0Z0xdl4zJzzxzIeXgVK kDpFRpNo52DFEGyc+K/kKCsIOG6rq68YzPqA08QiqMOv0wxgJqYrgzlWipxUxEJO o+4MKAJgm16AIKmAvoNOGV0LBOG6lB+k4ZtAEJvQyDDCtPx04Kpt9/4PHLER8kP1 O1+I94wpD7miaJ2K2Nhf8gbRbZe+qixU4HwTy8DjkUpBEgWr9/OUCK8XzJ+eBshe omRWblmVeXAiuWZckEe6RqOqoPMNQa+dYeiRTqkxSXQqv+lzyKp+ZDgbhuKShrKJ 50698qUf3dTR7hjyRJNCkjzSI743eES7TAx3Y8nSQCNYLMvkL96gscCrr0N3vAek TQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18303675731982045748051811383567457654 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-17 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wellington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Housing New Zealand Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ciam.kaingaora.govt.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22631399808400693767787415363359344095768785159205377176214198629677338856930808460862560648165080703981426343015593339215071307986117654578572048727188343372590482802177492886680749248237593505459690993618644728308963289876083413000043985347908238262601074864517227218850901260448081449228481331237581207035106698500255284717576198404202333818625430268219652257628099112312432894391449880592548476960708846661708851587878193599278702991406146669257121512563467873973647398640677476978164094985570292140973958200417498128016840690774628172507423214792025498325555482106837626013193291993785638562585842742679879263309 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 35cdb0d3c4f2cf3faf472eadd08c7158e09bdff4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ciam.kaingaora.govt.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ciam.kaingaora.govt.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00797df9a595e0b916f55c3a9e4ebea8e7cc9c265fffca8d2d8637f709f82873ea3744419916260960db68204ac4f03f7c930e635eca4c00e3c0ae0d834e0dd9bf1f4df67bceb2438f986341c9dbedef618b0cd996898a6a80c4a10c2eba712355a4205fde93a15c5196058c7707ac9ccc42317fc56fde4599cfbc248ea08ad92d7ccd09a493e284cf36740cd1bd3eba52c6e144259679dda98bb8ffef28992fbc8dccb8600be2dc54227d63b1cb2d68136a8be8a664af6e2cfb26dffcd3f6fd50eac34f558a587bb423a8afa166e443af48b3a74c557e1ee89be7b9adae562a20aa96c7a10a44f57deb94d54263a659f660727921dfe4a2f8c201cf3c2118b52e