art.in.avon.com
- Avon Products Inc -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0a:de:7f:00:35:f4:05:09:87:f4:aa:57:a8:81:52:05 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Avon Products Inc
Organization:
Avon Products Inc
State / Province:
New York
Locality: Suffern
Country: US
Locality: Suffern
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0a:de:7f:00:35:f4:05:09:87:f4:aa:57:a8:81:52:05Serial Number (int): 14447545743161261432882693644360962565
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 35:97:e2:68:1d:23:72:a2:de:74:3b:32:3f:b8:b0:0d:52:4a:84:15
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): dc:64:2d:e2:05:ae:1b:1b:83:49:87:40:14:f8:87:d1:28:5b:5f:be
Fingerprint (sha256): ff:3e:71:33:97:1d:90:d4:cb:5d:00:b1:6a:79:6b:64:12:73:53:b1:12:47:4b:ab:16:46:50:87:16:04:2f:be
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate art.in.avon.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for art.in.avon.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
art.in.avon.com
art.avon.com.ph
art.my.avon.com
art.avon.com.ph
art.my.avon.com
Other certificates including the domain name avon.com
(limited to 100 certificates)
ssl8.ipaper.io
ssl9.ipaper.io
ssl8.icommarketing.com
ssl9.ipaper.io
www.avon.my
qaf.link.avon.com
ecom.youravon.com
*.uk.avon.com
leadsservicesru.avon.com
ecom.youravon.com
z3-b45c.kxcdn.com
dev.ve.avon.com
on.avon.com
ryestgw.na.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
autodiscover.domino.avonfoundation.org
ssl8.ipaper.io
mobileapi.avon.com
qafmab.bg.avon.com
emear-lpa.avon.com
avon.com
connectshg.avon.com
connectar.avon.com
gabi03.com
uatssmab.ar.avon.com
ssl8.icommarketing.com
webeservicesru.avon.com
ssl8.icommarketing.com
ecom4.pr.avon.com
uatmab.static.co.avon.com
www.kr.avon.com
ssl9.ipaper.io
ssl8.icommarketing.com
uatmab.co.avon.com
static1.br.avon.com
qaf.eenew.avon.com
avon.kz
core-order-eu-dev.api-dev.aws.avon.com
qafmab.static.co.avon.com
ssl8.icommarketing.com
view.email.usa.avon.com
ssl8.icommarketing.com
www.avon.com.mx
ssl8.icommarketing.com
www.sa.avon.com
eem.co.avon.com
qaf.eenew.avon.com
dev.sv.avon.com
static1.br.avon.com
*.uk.avon.com
www.uy.avon.com
qaf.jtnew.avon.com
connectuk.avon.com
www.my.avon.com
dev.ec.avon.com
drmsp.cn.avon.com
simulator.avon.com
ssl9.ipaper.io
uatmab.static.ro.avon.com
choiceservicesqaf.avon.com
www.tr.avon.com
qafss.ar.avon.com
shop.avon.com
connectsuffern.avon.com
qaf.lvnew.avon.com
uat.mobilecms.avon.com
ssl8.ipaper.io
dev.pe.avon.com
avonaccess.na.avon.com
qap.mx.avon.com
www.al.avon.com
www.ni.avon.com
www.uy.avon.com
br.avon.com
www.sv.avon.com
www.tw.avon.com
br.avon.com
choiceservices-ru.avon.com
*.arpdev.avon.com
eem.br.avon.com
drupal.avon.com.ar
imshare.avon.com
static1.br.avon.com
*.ro.avon.com
dev.pa.avon.com
ssl9.ipaper.io
catalog.avonnow.com
link.customer.avon.com
author.pl.avon.com
ecom4.pr.avon.com
www.avon2win.avon.com.pt
qafmab.co.avon.com
newsin.bullets.app
*.hu.avon.com
dev.gt.avon.com
link.customer.avon.com
avononline.pl.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
ssl9.ipaper.io
www.avon.my
qaf.link.avon.com
ecom.youravon.com
*.uk.avon.com
leadsservicesru.avon.com
ecom.youravon.com
z3-b45c.kxcdn.com
dev.ve.avon.com
on.avon.com
ryestgw.na.avon.com
autodiscover.domino.avonfoundation.org
ssl9.ipaper.io
ssl8.icommarketing.com
autodiscover.domino.avonfoundation.org
ssl8.ipaper.io
mobileapi.avon.com
qafmab.bg.avon.com
emear-lpa.avon.com
avon.com
connectshg.avon.com
connectar.avon.com
gabi03.com
uatssmab.ar.avon.com
ssl8.icommarketing.com
webeservicesru.avon.com
ssl8.icommarketing.com
ecom4.pr.avon.com
uatmab.static.co.avon.com
www.kr.avon.com
ssl9.ipaper.io
ssl8.icommarketing.com
uatmab.co.avon.com
static1.br.avon.com
qaf.eenew.avon.com
avon.kz
core-order-eu-dev.api-dev.aws.avon.com
qafmab.static.co.avon.com
ssl8.icommarketing.com
view.email.usa.avon.com
ssl8.icommarketing.com
www.avon.com.mx
ssl8.icommarketing.com
www.sa.avon.com
eem.co.avon.com
qaf.eenew.avon.com
dev.sv.avon.com
static1.br.avon.com
*.uk.avon.com
www.uy.avon.com
qaf.jtnew.avon.com
connectuk.avon.com
www.my.avon.com
dev.ec.avon.com
drmsp.cn.avon.com
simulator.avon.com
ssl9.ipaper.io
uatmab.static.ro.avon.com
choiceservicesqaf.avon.com
www.tr.avon.com
qafss.ar.avon.com
shop.avon.com
connectsuffern.avon.com
qaf.lvnew.avon.com
uat.mobilecms.avon.com
ssl8.ipaper.io
dev.pe.avon.com
avonaccess.na.avon.com
qap.mx.avon.com
www.al.avon.com
www.ni.avon.com
www.uy.avon.com
br.avon.com
www.sv.avon.com
www.tw.avon.com
br.avon.com
choiceservices-ru.avon.com
*.arpdev.avon.com
eem.br.avon.com
drupal.avon.com.ar
imshare.avon.com
static1.br.avon.com
*.ro.avon.com
dev.pa.avon.com
ssl9.ipaper.io
catalog.avonnow.com
link.customer.avon.com
author.pl.avon.com
ecom4.pr.avon.com
www.avon2win.avon.com.pt
qafmab.co.avon.com
newsin.bullets.app
*.hu.avon.com
dev.gt.avon.com
link.customer.avon.com
avononline.pl.avon.com
autodiscover.domino.avonfoundation.org
Certificate
The complete raw certificate details for art.in.avon.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIQCt5/ADX0BQmH9KpXqIFSBTANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjMx MDE2MDAwMDAwWhcNMjQxMTE1MjM1OTU5WjBoMQswCQYDVQQGEwJVUzERMA8GA1UE CBMITmV3IFlvcmsxEDAOBgNVBAcTB1N1ZmZlcm4xGjAYBgNVBAoTEUF2b24gUHJv ZHVjdHMgSW5jMRgwFgYDVQQDEw9hcnQuaW4uYXZvbi5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDHR+05YVXT5hWBQXkZ4XGMOj3rNGwSrRRppMal VTGZpsp056VF63l6VAQEd9SPtWEyGCV5fuZAdydvAvVjfUvcDUtFH8E/AvVC7wh0 usy2xRwKSG7+o8Ql87clhIn1c3DW7whp68w3LpN5BSv4A35OxEa1nEfmjkKC17Nf yvC2eKs/1ypjS075kXcSaw2LOhJrszxNgZ1Mght2WhqHnK84uGhi9PMMx06F6ljP yYEJs1Dmapp2lLJMEHd1VFeX7mD/sqbLCjYwAeGxdA8yvvWVjm6rJVCY+DlcRmFy Yo67oqF5Rgf9Rqu7pQrxK4mFmKWWBqTOU/ZUqg8ZCqlNxW0xAgMBAAGjggOuMIID qjAfBgNVHSMEGDAWgBR0hYDAZsffN97PvSk3qgMdvu3NFzAdBgNVHQ4EFgQUNZfi aB0jcqLedDsyP7iwDVJKhBUwPAYDVR0RBDUwM4IPYXJ0LmluLmF2b24uY29tgg9h cnQuYXZvbi5jb20ucGiCD2FydC5teS5hdm9uLmNvbTA+BgNVHSAENzA1MDMGBmeB DAECAjApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCB nwYDVR0fBIGXMIGUMEigRqBEhkJodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGln aUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcmwwSKBGoESGQmh0 dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbEcyVExTUlNBU0hB MjU2MjAyMENBMS0xLmNybDCBhwYIKwYBBQUHAQEEezB5MCQGCCsGAQUFBzABhhho dHRwOi8vb2NzcC5kaWdpY2VydC5jb20wUQYIKwYBBQUHMAKGRWh0dHA6Ly9jYWNl cnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbEcyVExTUlNBU0hBMjU2MjAy MENBMS0xLmNydDAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFr AWkAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYs3Qcm4AAAE AwBHMEUCIQD1k226DYCI8ho0qm3cPX/ztrTBeZyXazYSxv1uY6k8swIgMZ0oI9uy Oa9rW8ekmAh89eq2QRAR43iWjYiAaAt+lB0AdgBIsONr2qZHNA/lagL6nTDrHFIB y1bdLIHZu7+rOdiEcwAAAYs3QcneAAAEAwBHMEUCIEPhiugSRhqnFzerMlmc7Eul tuqoRHVrAfb0uBnoehVuAiEA7UV9EA3j7DeR1+e+xXsKsr3dNbAwI83NAB5mMbDB WvgAdwDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYs3Qcm6AAAE AwBIMEYCIQDPrCk/+V8QVZ0qY1Ta4hidywaTu2G1ybq9INUlggyQbgIhAJKV1PGx tri9apD8N7fD9JYBL8cEuaqL9CCTvH/LYefPMA0GCSqGSIb3DQEBCwUAA4IBAQBG P0SGxl4uybyjja0P2LSWTP6ZSFQIuu9WSL/NgxSc7ztpWfec7Ye94Qx4wspu7wqG ih2bmEwkR30typMqvcGvUfha72eWPJVnqt5JQJHHA6luY3vY3ZYAD0iks0jiiUrq 1EhJWgUHYj7ktELhmwuNHj3ZLEzyWVEdNdgO6/Y7H3X5MGPayWys67xSaoLXtTq1 g6hxHOf3B3agDmDFZgYBXSOAHicN8NL5gOxC+K6NA0XywzBxSIMOPYwjbdI3IJNX t93tHX7/1JwLQYf+MwTBfTTlNWCPijEKbDM/CR5D/dRNcJTlBz/NiH6ypjCQavUg 4/16FiAMrtolqoLelDxf -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0ftOWFV0+YVgUF5GeFx jDo96zRsEq0UaaTGpVUxmabKdOelRet5elQEBHfUj7VhMhgleX7mQHcnbwL1Y31L 3A1LRR/BPwL1Qu8IdLrMtsUcCkhu/qPEJfO3JYSJ9XNw1u8IaevMNy6TeQUr+AN+ TsRGtZxH5o5CgtezX8rwtnirP9cqY0tO+ZF3EmsNizoSa7M8TYGdTIIbdloah5yv OLhoYvTzDMdOhepYz8mBCbNQ5mqadpSyTBB3dVRXl+5g/7Kmywo2MAHhsXQPMr71 lY5uqyVQmPg5XEZhcmKOu6KheUYH/Uaru6UK8SuJhZillgakzlP2VKoPGQqpTcVt MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14447545743161261432882693644360962565 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Suffern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Avon Products Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'art.in.avon.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25156891044638778997766841386010479586885531989610148728952785888230724688810603125946408802299060762632409892808150861752089302752352190293993848162292342021829194848970221652696804253901270027838043916174889518852246384507937175415389703228739273205335264252730228522708315932871027787108921329769697007794957271377222154391095374688340771313622249513666863884534389409848133620391114275954248189616670988350129224668202373908965950413439439659320409775268319952635144275073600206720343646868139025086696569718379791648597169784650777272359749313533769589995328379471525412138723521519252026533228455128713170087217 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3597e2681d2372a2de743b323fb8b00d524a8415 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art.in.avon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art.avon.com.ph' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art.my.avon.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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