Report of Independent Accountants

To the Management of Sectigo Limited:

We have examined the accompanying assertion made by the management of Sectigo Limited (formerly Comodo CA Limited) (“Sectigo”), titled Management’s Assertion Regarding the Effectiveness of Its Controls Over the SSL Certification Authority Operation Based on the WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security v2.2, that provide its SSL Certification Authority (“CA”) services at the Secaucus, New Jersey, USA, and Manchester, England, United Kingdom data centers and back-end office support locations (various locations – refer to Appendix B) for the Root and Subordinate CA’s listed in Appendix A, during the period from April 1, 2018 through March 31, 2019, Sectigo has:

► Disclosed its SSL certificate lifecycle management business practices in its Certificate Practice Statement v4.1.8, v4.1.9, v4.2, v5.0, & v5.1, including its commitment to provide SSL certificates in conformity with the CA/Browser Forum Requirements on the Sectigo website, and provided such services in accordance with its disclosed practices

► Maintained effective controls to provide reasonable assurance that: – The integrity of keys and SSL certificates it managed was established and protected throughout their life cycles – SSL subscriber information was properly authenticated (for the registration activities performed by Sectigo) – Logical and physical access to CA systems and data was restricted to authorized individuals – The continuity of key and certificate management operations was maintained; and – CA systems development, maintenance and operations were properly authorized and performed to maintain CA systems integrity. – Met the Network and Certificate System Security Requirements set forth by the CA/Browser Forum. based on the WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security - Version 2.3.

Sectigo’s management is responsible for its assertion and for specifying the aforementioned Criteria. Our responsibility is to express an opinion on management’s assertion based on our examination.

Sectigo makes use of external registration authorities for specific subscriber registration activities as disclosed in Sectigo’s business practice disclosures. Our examination did not extend to the controls of the external registration authorities.

Our examination was conducted in accordance with attestation standards established by the American Institute of Certified Public Accountants (AICPA). Those standards require that we plan and perform the examination to obtain reasonable assurance about whether management’s assertion is fairly stated, in all material respects. An examination involves performing procedures to obtain evidence about management’s assertion. The nature, timing, and extent of the procedures selected depend on our judgment, including an assessment of the risks of material misstatement of management’s assertion, whether due to fraud or error. We believe that the evidence we obtained is sufficient and appropriate to provide a reasonable basis for our opinion.

Sectigo management has disclosed to us certain comments that have been posted publicly in the online forums of the Mozilla Bugzilla website. We have considered the nature of these comments in determining the nature, timing, and extent of our procedures. Please refer to Appendix C for further details. 1

The relative effectiveness and significance of specific controls at Sectigo and their effect on assessments of control risk for subscribers and relying parties are dependent on their interaction with the controls, and other factors present at individual subscriber and relying party locations. We have performed no procedures to evaluate the effectiveness of controls at individual subscriber and relying party locations.

Our examination was not conducted for the purpose of evaluating Sectigo’s cybersecurity risk management program. Accordingly, we do not express an opinion or any other form of assurance on its cybersecurity risk management program.

There are inherent limitations in the effectiveness of any system of internal control, including the possibility of human error and the circumvention of controls. Because of inherent limitations in its internal control, Sectigo may achieve reasonable, but not absolute assurance that all security events are prevented and, for those controls may provide reasonable, but not absolute assurance that its commitments and system requirements are achieved. Controls may not prevent or detect and correct, error, fraud, unauthorized access to systems and information, or failure to comply with internal and external policies or requirements.

Examples of inherent limitations of internal controls related to security include (a) vulnerabilities in information technology components as a result of design by their manufacturer or developer; (b) breakdown of internal control at a vendor or business partner; and (c) persistent attackers with the resources to use advanced technical means and sophisticated social engineering techniques specifically targeting the entity. Furthermore, the projection of any evaluations of effectiveness to future periods is subject to the risk that controls may become inadequate because of changes in conditions, that the degree of compliance with such controls may deteriorate, or that changes made to the system or controls, or the failure to make needed changes to the system or controls, may alter the validity of such evaluations.

In our opinion, Sectigo’s management’s assertion referred to above is fairly stated, in all material respects, based on the aforementioned criteria.

Sectigo’s use of the WebTrust for Certification Authorities – SSL Baseline with Network Security Seal constitutes a symbolic representation of the contents of this report and it is not intended, nor should it be construed, to update this report or provide any additional assurance.

This report does not include any representation as to the quality of Sectigo's CA services beyond those covered by the WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security - Version 2.3, nor the suitability of any of Sectigo's services for any customer's intended purpose.

June 27, 2019 New York, New York

2

Management’s Assertion Regarding the Effectiveness of Its Controls Over the SSL Certification Authority Operation Based on the Webtrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security v2.3

June 27, 2019

We, as management of Sectigo Limited (formerly Comodo CA Limited) (“Sectigo”), are responsible for operating the SSL Certification Authority (“CA”) at the Secaucus, New Jersey, USA, and Manchester, England, United Kingdom data centers and back-end office support locations (various locations – refer to Appendix B) for the SSL Baseline Requirements and Network Security Requirements Root and Subordinate CAs listed in Appendix A.

Controls have inherent limitations, including the possibility of human error and the circumvention or overriding of controls. Accordingly, even effective controls can provide only reasonable assurance with respect to Sectigo’s CA operations. Furthermore, because of changes in conditions, the effectiveness of controls may vary over time.

Management of Sectigo has assessed the disclosures of its certificate practices and controls over its SSL CA services. Based on that assessment, in providing its SSL CA services at the Secaucus, New Jersey, USA, and Manchester, England, United Kingdom data centers and back-end office support locations (various locations – refer to Appendix B) throughout the period from April 1, 2018 through March 31, 2019, Sectigo has:

► Disclosed its SSL certificate lifecycle management business practices in its Certificate Practice Statement v4.1.8, v4.1.9, v4.2, v5.0, & v5.1, including its commitment to provide SSL certificates in conformity with the CA/Browser Forum Requirements on the Sectigo website, and provided such services in accordance with its disclosed practices

► Maintained effective controls to provide reasonable assurance that: – The integrity of keys and SSL certificates it managed was established and protected throughout their life cycles – SSL subscriber information was properly authenticated (for the registration activities performed by Sectigo) – Logical and physical access to CA systems and data was restricted to authorized individuals – The continuity of key and certificate management operations was maintained; and – CA systems development, maintenance and operations were properly authorized and performed to maintain CA systems integrity. – Met the Network and Certificate System Security Requirements set forth by the CA/Browser Forum for the Root and Subordinate CAs in scope for SSL Baseline Requirements and Network Security Requirements at Appendix A. based on the WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security - Version 2.3.

Sectigo Limited

3

Appendix A: Root/Subordinate CAs

CA Cert CA Cert Root/Subordinate Distinguished Name SHA-256 Fingerprint No Type D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A 1 Root CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB 2948782BC83EE0EA699EF4 D4FEB11AFF8187462075F264D09BA8E50D52717AA9E 2 Intermediate CN=COMODO EV SGC CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB 1D8E3DC704CD9EF6C97FC AE1239CB90279774A00E27223E2A3C146AF2206C0445 3 Intermediate CN=COMODO EV SGC CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB EAF9185F2B8556AEDDDA CN=COMODO Pro Series Secure Server CA, O=COMODO CA Limited, L=Salford, ST=Greater F75623A73A944BBADA91FB81F37A8191C26841AFB8B 4 Intermediate Manchester, C=GB BE93E82831C5F8D80E5F2 CN=COMODO SHA-256 Client Authentication and Secure Email CA 3, O=COMODO CA Limited, AD61327EE99B40613E480751B56691A096412C68F74F 5 Intermediate L=Salford, ST=Greater Manchester, C=GB 4012B29FA0F48BB924C9 CN=COMODO SHA-2 Pro Series Secure Server CA, O=COMODO CA Limited, L=Salford, E11E06861C4D308FD944BF17BE5E9072A034C4F9303 6 Intermediate ST=Greater Manchester, C=GB 4CB59C02D512D30F7FC45 CN=COMODO SHA-2 Pro Series Secure Server CA, O=COMODO CA Limited, L=Salford, 1286173E6F0102F7BDD32C2F830910953489BF22C162 7 Intermediate ST=Greater Manchester, C=GB 95D84DD90A3DA137164A CN=Comodo RSA Pro Series Secure Server CA, O=Comodo Limited, L=Salford, ST=Greater B0547FD468FBB6E337FE01B010834E53B4C5B12649E 8 Intermediate Manchester, C=GB CEE76FAEC38B8640F8878 38A7525022C9658CAAFC6060764FD51C6A5C5BEF232 9 Intermediate CN=Comodo Japan RSA DV CA, O=Comodo Japan, Inc., L=Chiyoda-ku, ST=Tokyo, C=JP D3E6C7E48AF07A098DF1E CN=Coöperatieve Spaar- en kredietbank Godo G.A. CA, O=Coöperatieve Spaar- en kredietbank 6B7F398103894F79978A744414CAC9595A8A87EDA54 10 Intermediate Godo G.A., L=Paramaribo, C=SR DBBA0EED45641209230E4 834182A37E94BCD9E36B0EB0D6EBA38F0A585E4655D 11 Intermediate CN=Southbridge Savings Bank CA, O=Southbridge Savings Bank, L=Southbridge, ST=MA, C=US 6EEB6C126703D59997CA0 CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New A6CF64DBB4C8D5FD19CE48896068DB03B533A8D133 12 Intermediate Jersey, C=US 6C6256A87D00CBB3DEF3EA CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New 68B9C761219A5B1F0131784474665DB61BBDB109E00F 13 Intermediate Jersey, C=US 05CA9F74244EE5F5F52B CN=Harleysville Savings Bank CA, O=Harleysville Savings Bank, L=Harleysville, ST=Pennsylvania, E4D80AE9C883A80AF933FB3C5E91F2BD4C9392BE15 14 Intermediate C=US 0A91ED23CB5594EF70DFBA 212DFA9E3A5CCE7237E6E8AC614E26B70EDC47224D 15 Intermediate CN=BankNewport CA, O=BankNewport, L=Middletown, ST=Rhode Island, C=US EB3E3572C638272005D886 CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The 14E384649AA401F1D1CABD5FA3D08ABE82F14B7DAE 16 Intermediate USERTRUST Network, L=Salt Lake City, ST=UT, C=US 6C5615B1CD7DD41E9750E3

CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The 565C82702B5EC63202754D4F4B76CC3BAE32A4C9146 17 Intermediate USERTRUST Network, L=Salt Lake City, ST=UT, C=US ED3BECD73A404FFAD4CDE CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater 0C2CD63DF7806FA399EDE809116B575BF87989F0651 18 Root Manchester, C=GB 8F9808C860503178BAF66 CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater 1A0D20445DE5BA1862D19EF880858CBCE50102B36E8 19 Root Manchester, C=GB F0A040C3C69E74522FE6E

CN=TrustSign BR Certification Authority (EV), OU=Security Dept., OU=Controlled by COMODO for 48345343F8241F481BCD40D030AC867BF3B392194EA 20 Intermediate TrustSign Certificadora Digital, O=TrustSign Certificadora Digital, C=BR DC358B4F203663FA30F92

CN=SSL Blindado EV, OU=Certificação Digital, OU=Controlled by COMODO exclusively for Site A0A9E281723A0E59879BA898F3DAD3B621C27E5190A 21 Intermediate Blindado S.A., O=Site Blindado S.A., L=Sao Paulo, ST=SP, C=BR F8AD3219DB6BCF53F99A6

CN=SSL Blindado PRO EV, OU=Certificação Digital, OU=Controlled by COMODO exclusively for C286E1F74B1FA06054B1F7C2EE242452B67E7D10A93 22 Intermediate Site Blindado S.A., O=Site Blindado S.A., L=São Paulo, ST=SP, C=BR CDDC402C94E2A72B85EE0

CN=TrustAsia EV SSL Server CA, OU=Controlled by COMODO exclusively for TrustAsia 67AE776B47B11B4E80EA8A1F23431776CA194107C71 23 Intermediate Technologies, O=TrustAsia Technologies, Inc., ST=Shanghai, C=CN CD67CA3BFFE24AF286BA3

CN=EUNETIC - EuropeanSSL Extended Validation Server CA, OU=Controlled by COMODO 7857E2DDB36187BFEA3CA223DEE260EFE8B30A7611 24 Intermediate exclusively for EUNETIC GmbH, O=EUNETIC GmbH, L=Durmersheim, ST=Baden-Württemberg, 88B88A979E5B0A6FC71FCA C=DE CN=EUNETIC - EuropeanSSL Extended Validation Server CA, OU=Controlled by COMODO C2D889F019BC64D84F828488B37D9C7F3E65DC00696 25 Intermediate exclusively for EUNETIC GmbH, O=EUNETIC GmbH, L=Durmersheim, ST=Baden-Württemberg, BE09AE0F97DFE5E1E8C89 C=DE

CN=PSW GROUP Extended Validation SSL CA, OU=http://www.psw.net/, OU=Controlled by BEC24581C616152ECB4275FAB82AE1B3A73F0B77CA 26 Intermediate COMODO exclusively for PSW GROUP, O=PSW GROUP, L=Fulda, ST=Hessen, C=DE 3F8F703F3E923C480F1106

CN=Formidable CA Services Extended Validation, OU=Controlled by COMODO exclusively for 5F3ACAB3A3CFA9F0FCB0E8C10167ADFA0BA5D52959 27 Intermediate Formidable CA Services Ltd., O=Formidable CA Services Ltd., C=GB 988A4CA383A3215EF23E06

6A44C2596E44279A5E1EF10F4FB9E5CFE284C61E069 28 Intermediate CN=COMODO EV SGC CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB 884FB6DBCF3BB940F1A68 BB14714A37C1BE43E6D7679FD239F3D264D7745DE26 29 Intermediate CN=COMODO EV SSL CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB 9CA81CF30DC16B4DE3787 CN=COMODO Extended Validation Secure Server CA, O=COMODO CA Limited, L=Salford, 8B2612C6944C117920BC6D80C5DFA7CDF9EC1F2C49 30 Intermediate ST=Greater Manchester, C=GB A4B932E3FA27F9567E3D3B CN=COMODO Extended Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, 5857ABB43A8E0ECBF85ED49E748580579D71AE667A4 31 Intermediate ST=Greater Manchester, C=GB F7DCE734686739DFD9B24 CN=COMODO High Assurance Secure Server CA, O=COMODO CA Limited, L=Salford, 02ACB6BEE7693C74514D26F12F8BFB0F62094E268A6 32 Intermediate ST=Greater Manchester, C=GB 1A7C0D4115295B680DA99 CN=COMODO SHA-256 Client Authentication and Secure Email CA 2, O=COMODO CA Limited, D86A18B5F76952B736E89A2DB3F0FDF9070711460114 33 Intermediate L=Salford, ST=Greater Manchester, C=GB B6A08D649CA627935C96 A8750ABF753055291531DE93CE5B6DC20C7B63D62B7 34 Intermediate CN=EssentialSSL CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB 0994390C8637C22749CC1 4

2D46C3FC6EED72DDA64B239B2CE2DFAE3B26D10C0 35 Intermediate CN=EssentialSSL CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB 3E4DF99FCB1A4DAB7DD8956 CN=SecureCore SHA-1 EV CA, OU=Controlled by COMODO exclusively for SecureCore, DCFD457D3738B19EA3BEF63209E20AE153E188D107B 36 Intermediate O=SecureCore, L=OSAKA, ST=OSAKA, C=JP 89B2FC84690BE945276F8

CN=DOMENY.PL EV Certification Authority, OU=CertyfikatySSL.pl Security Dept., OU=Controlled 30266ADE5BF0CAD9B1747740980A33A9D9F81419066 37 Intermediate by COMODO exclusively for DOMENY.PL Ltd., O=DOMENY.PL Ltd., C=PL 98786CA09A9D49D4B8760

CN=GlobalTrust Extended Validation CA, OU=Extended Validation CA, OU=Controlled by A8F4AD9FEE833302F18D50322C0283D02B75ED89E24 38 Intermediate COMODO exclusively for Global Digital Inc., O=Global Digital Inc., C=TW 53F1275E06A182FF86ADA

CN=GlobeSSL CA, OU=GlobeSSL EV Certification Authority, OU=Controlled by COMODO 6E42AB2429A0E5889C7C34B9E39B34824DC95326B9C 39 Intermediate exclusively for Globe Hosting, Inc., O=Globe Hosting, Inc., C=US 07E7C55DDEE9FCA42195A CN=SSL.com Premium EV CA, OU=Controlled by COMODO exclusively for SSL.com, O=SSL.com, 9C9C739CD5C5A1078691AB1CA917FA4953A81A17661 40 Intermediate C=US 99F2D45C98D02367133B0 CN=SSL.com Premium EV CA, OU=www.ssl.com, OU=Controlled by COMODO exclusively for 513BDEA67548E8687168FCE367A56446C72DB0A72E5 41 Intermediate SSL.com, O=SSL.com, C=US C770FCCCF6362464CEEBB

CN=CertAssure EV Secure Server Certification Authority, OU=Controlled by COMODO exclusively 9D9EA534F57F2D04886F92B9ECC1DA87E773F7535A8 42 Intermediate for CertAssure Inc., O=CertAssure Inc., L=San Jose, ST=CA, C=US 5864DA54608FADA6691E7

CN=ReliaSite EV Server CA, OU=Controlled by COMODO exclusively for ReliaSite, LLC, 9C137A4A73A5155C2D4732BE9723638D73AE994A80A 43 Intermediate O=ReliaSite, LLC, L=Cheyenne, ST=WY, C=US A429EA4FB8F55D5793136 CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater 1793927A0614549789ADCE2F8F34F7F0B66D0F3AE3A 44 Root Manchester, C=GB 3B84D21EC15DBBA4FADC7 CN=COMODO ECC Client Authentication and Secure Email CA, O=COMODO CA Limited, 6930647342C00AE625A038673080903A6A5431A18FAE 45 Intermediate L=Salford, ST=Greater Manchester, C=GB 64403AEB9F4A838289B4 CN=COMODO ECC Code Signing CA, O=COMODO CA Limited, L=Salford, ST=Greater 2FD42A96C830FD2C552B2C27660EEE9307D84706DE9 46 Intermediate Manchester, C=GB B75CF39AE750EB221B9EE CN=COMODO ECC Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, 7E32368E24A2CC48D3D29E883B260E40CEDA22AF971 47 Intermediate ST=Greater Manchester, C=GB 89C78FC5B928484E9A010 CN=COMODO ECC Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, CD6C108A0E641F2CA122AAA6D03F826759CAE7C6F8 48 Intermediate ST=Greater Manchester, C=GB 00EABF76DC48B67CD083CE CN=COMODO ECC Domain Validation Secure Server CA 3, O=COMODO CA Limited, L=Salford, 91D0050633F62572F6796148867644EE31140AD72266E 49 Intermediate ST=Greater Manchester, C=GB 0F9305A7C6FD4040F9F CN=COMODO ECC Extended Validation Code Signing CA, O=COMODO CA Limited, L=Salford, 702DB904D41A038C0C9295CF743FC31F2D0EA17CC4 50 Intermediate ST=Greater Manchester, C=GB 228BBFCF81E57B9A1398F9 CN=COMODO ECC Extended Validation Secure Server CA, O=COMODO CA Limited, L=Salford, 06C27461C0417D513CE0F634FAB5ADD30C88EF0E25 51 Intermediate ST=Greater Manchester, C=GB C84FDE0E42125B88CA0475 CN=COMODO ECC Extended Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, 90C671E08E6823B8646C2EC18023769AC0FC3438A33 52 Intermediate ST=Greater Manchester, C=GB C101F6683B95DE3180524 CN=COMODO ECC Organization Validation Secure Server CA, O=COMODO CA Limited, 549AB524E886ADECE70BDD96A04B554942C374BE7C 53 Intermediate L=Salford, ST=Greater Manchester, C=GB 29C0EE818B630BDF200EE1 CN=UbiquiTLS™ DV ECC Server CA, O=COMODO CA Limited, L=Salford, ST=Greater A9F8D0EC60F72D8AC879F6E3CC380E500098BC0080 54 Intermediate Manchester, C=GB C07AC539FAE682543FFC02 3989A31702E9E6A9485F3C92A77D21B1852C7F6722F2 55 Intermediate CN=Trustico ECC DV CA, O=The Trustico Group Ltd, L=Croydon, ST=London, C=GB 3D44B8CBE72A926EC854 48A2F7D7E80D42E722A752D892381C06EEC4414155C 56 Intermediate CN=Trustico ECC OV CA, O=The Trustico Group Ltd, L=Croydon, ST=London, C=GB 9D6452AA506EEA4ED43F6 CN=Trustico ECC EV CA, OU=Controlled by COMODO exclusively for The Trustico Group Ltd, 4D8ED4A3B5F3CF74FEC875E8204212A72197D71DDA 57 Intermediate O=The Trustico Group Ltd, L=Croydon, ST=London, C=GB 3A07AE5FA5BEFEB61EC9C6 EEA152CCF7517E16513206B71C17E204FA4007C26C3 58 Intermediate CN=cPanel High Assurance ECC Certification Authority, O=cPanel, Inc., L=Houston, ST=TX, C=US 6051EC67DF4C947463CF8 BDAA384720604FF4653B00DA3873A8C545996FFB8AB 59 Intermediate CN=cPanel, Inc. ECC Certification Authority, O=cPanel, Inc., L=Houston, ST=TX, C=US 91D616F10495FC026E8FC

CN=cPanel Extended Validation ECC Certification Authority, OU=Controlled by COMODO DF653085C8ED5F844CBB09161B8AE0BF2F36822F937 60 Intermediate exclusively for cPanel, Inc., O=cPanel, Inc., L=Houston, ST=TX, C=US BF7BB1A689C6FC8BD579A

CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater 52F0E1C4E58EC629291B60317F074671B85D7EA80D5 61 Root Manchester, C=GB B07273463534B32B40234

CN=SSL Blindado EV 2, OU=Certificação Digital, OU=Controlled by COMODO exclusively for Site 7CECDAFC6BE618A40F1BAC26462463847412D676A5 62 Intermediate Blindado S.A., O=Site Blindado S.A., L=São Paulo, ST=SP, C=BR C6D23899550EE976BE32FE

CN=WoTrus DV Server CA, OU=Controlled by Comodo exclusively for WoTrus CA Limited, E36F165FF7739CD900A2562767B3EAFBE67A34C83C3 63 Intermediate O=WoTrus CA Limited, L=Shenzhen, ST=Guangdong, C=CN A82F4C21D5F51C3ED191E 081998D3D9F7E4CD9DA6A429470BF5D44280325244F 64 Intermediate CN=D-TRUST CA 2-1 2015, O=D-Trust GmbH, L=Berlin, C=DE A0E01EE5F972CA19F4852 CN=EUNETIC - EuropeanSSL Extended Validation Server CA 2, OU=Controlled by COMODO 8B25579491F85CF577EC2172CFAD2DB24CA2255742E 65 Intermediate exclusively for EUNETIC GmbH, O=EUNETIC GmbH, L=Durmersheim, ST=Baden-Württemberg, 6E5341CF06E2CBEC5D906 C=DE CN=COMODO/HP Secure Email CA 2, O=COMODO CA Limited, L=Salford, ST=Greater B9B8851C25F6CC35D48E1B2B77E3EBF057EDCAC988 66 Intermediate Manchester, C=GB 5A4177ACB5A3960458261E CN=COMODO RSA Client Authentication and Secure Email CA, O=COMODO CA Limited, 15FAC425AA84404B362FA3489EB67D055D5DA276F86 67 Intermediate L=Salford, ST=Greater Manchester, C=GB 85C4D698DA1830D420F0F CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, ST=Greater 5E6D2F88F617DC8B809AEE712445A41B3CDE26AF874 68 Intermediate Manchester, C=GB A221A9DC98EA1DC68E3D5 CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, 02AB57E4E67A0CB48DD2FF34830E8AC40F4476FB08C 69 Intermediate ST=Greater Manchester, C=GB A6BE3F5CD846F646840F0 CN=COMODO RSA Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, FF201CA12C87A6F0CBA643E9ABB3C954C9155ADD31 70 Intermediate ST=Greater Manchester, C=GB 39B2E2EAED114BF9F75D31 CN=COMODO RSA Domain Validation Secure Server CA 3, O=COMODO CA Limited, L=Salford, 9147C38E03B46C8CE5DDDB02CAA2932F1E1675C0A0 71 Intermediate ST=Greater Manchester, C=GB 01529138336ED10D99983A

5

CN=COMODO RSA Extended Validation Code Signing CA, O=COMODO CA Limited, L=Salford, D1863B55A0629F32A5DAD867D02DF1D1A4550B23AC4 72 Intermediate ST=Greater Manchester, C=GB 22B53581E79E548FD6617 CN=COMODO RSA Extended Validation Secure Server CA, O=COMODO CA Limited, L=Salford, CD730E53FE732D8F09D68C2CDBFD1EFD98A855F5E1 73 Intermediate ST=Greater Manchester, C=GB 49021C01CB2EEE1D8186E7 CN=COMODO RSA Extended Validation Secure Server CA, O=COMODO CA Limited, L=Salford, 7E0E16C0056F41A9F4C61F571503C3BCF079E2BDDB2 74 Intermediate ST=Greater Manchester, C=GB 28BF2219AC31200496B5C CN=COMODO RSA Extended Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, AB2C93E01CC215807F04CDBFC362808D88940A7B2C 75 Intermediate ST=Greater Manchester, C=GB EE70238D356D8D94956DF9 CN=COMODO RSA Organization Validation Secure Server CA, O=COMODO CA Limited, 111006378AFBE8E99BB02BA87390CA429FCA2773F74 76 Intermediate L=Salford, ST=Greater Manchester, C=GB D7F7EB5744F5DDF68014B CN=UbiquiTLS™ DV RSA Server CA, O=COMODO CA Limited, L=Salford, ST=Greater F00322C97B57CEA6D64A6A1D365C6C6B7F0EBA3089 77 Intermediate Manchester, C=GB 876C1430E1063E8A82A676 97221453BB214642C1DC5ABCDA79FE4EEDB5F2B039 78 Intermediate CN=Trustico RSA Client CA, O=The Trustico Group Ltd, L=Croydon, ST=London, C=GB 44F002B81B847C39F80FEC 78CDBC6AA95CAA547448379F8CD3AD01722CAD1C28 79 Intermediate CN=Trustico RSA Codesigning CA, O=The Trustico Group Ltd, L=Croydon, ST=London, C=GB C7CD016EA3032178B6F90E 33CFB062CD2951E4DD1A256BED156BEA53F290D039 80 Intermediate CN=Trustico RSA DV CA, O=The Trustico Group Ltd, L=Croydon, ST=London, C=GB DEEFB85BE95E1901216A36 AFE1595E7097CCDFB432CEA639BDEE86CF2576C27D 81 Intermediate CN=Trustico RSA OV CA, O=The Trustico Group Ltd, L=Croydon, ST=London, C=GB F36F9C691CF03E1324C1D4 CN=Trustico RSA EV CA, OU=Controlled by COMODO exclusively for The Trustico Group Ltd, 663A4E658FBBF74FC19B0155F2FACB12CC9B697058F 82 Intermediate O=The Trustico Group Ltd, L=Croydon, ST=London, C=GB 447EF791178FE9B8D073D 5765C6696A0EB5C8164457323DC41B6129961EE5C558 83 Intermediate CN=InCommon IGTF Server CA, OU=InCommon, O=Internet2, C=US C11ECA029A80675DE2DA CN=Western Digital Technologies Certification Authority, O=Western Digital Technologies, L=Irvine, EB94F8E2C8D0C8338BB8BA40E1EAD6224B842CBAFC 84 Intermediate ST=CA, C=US 99F269EEF0761E839C41A6 24AC889974694789DBD4E125FEE1A4BBA9153205679 85 Intermediate CN=Intel External Issuing CA 6A, O=Intel Corporation, L=Santa Clara, ST=CA, C=US 5C05244BB66400A9D0316 5587A72A6F738EDECEF67387116DE8D19370EAF3C6B 86 Intermediate CN=Intel External Issuing CA 6B, O=Intel Corporation, L=Santa Clara, ST=CA, C=US 272C49AF9BABA1795FD87 001D78BF40A4DAF94CD564B4219455837B0056D3216 87 Intermediate CN=Intel External Issuing CA 7A, O=Intel Corporation, L=Santa Clara, ST=CA, C=US B2BB8FF791966B41B136E D92BF8E9FA867DBD8B794C6A49E6FF1FCFAC71F3D7 88 Intermediate CN=Intel External Issuing CA 7B, O=Intel Corporation, L=Santa Clara, ST=CA, C=US F4AE55BB9587EB24AC6489 CN=United Parcel Service, Inc. RSA Client CA, O=United Parcel Service, Inc., L=Atlanta, ST=GA, 2E642C0BE13A5DE0BC6FB3EBE42A1FADDB76228D24 89 Intermediate C=US DE4FEBB95B6C3A549533EB CN=United Parcel Service, Inc. RSA Codesigning CA, O=United Parcel Service, Inc., L=Atlanta, 6E6CCCCDD7A8830EA2288D3576053295425C05F5EE9 90 Intermediate ST=GA, C=US DB4B72632A1E269DDD0C3 CN=United Parcel Service, Inc. RSA OV CA, O=United Parcel Service, Inc., L=Atlanta, ST=GA, 6BE7D04E20FFC28F198CA88FC0C3644784FD156903B 91 Intermediate C=US F078130FB964C0258DBA0 CN=InterContinental Hotels Group RSA Client CA, O=Six Continents Hotels, Inc., L=Dunwoody, 8ABFFCFA7D3E09DF531A72FF164065B3A6D80A77E33 92 Intermediate ST=GA, C=US CEC436EE9D3F60F84133B CN=Saint Barnabas Corporation RSA Client CA, O=Saint Barnabas Corporation, L=West Orange, 7DA07529E65D4A2B76097A8EBAE51ACC36EC58A94C 93 Intermediate ST=NJ, C=US D4E918675D0174187CC46F CN=Oregon State Treasury RSA Client CA, OU=Office of the State Treasurer, O=Oregon State 128AC11B48F4E62B2EE579E09322E39A1735E73A3D9 94 Intermediate Treasury, L=Salem, ST=Oregon, C=US 64F5E5D72271796FE0A36 690EF214BC114EF1D726BD7EF03E546CD6CB7BE5BC 95 Intermediate CN=cPanel High Assurance RSA Certification Authority, O=cPanel, Inc., L=Houston, ST=TX, C=US 23FACD391263BFFB57970A 821CC55CE7EC5C74FEBB42F624EB6A36C478215A31 96 Intermediate CN=cPanel, Inc. Certification Authority, O=cPanel, Inc., L=Houston, ST=TX, C=US ED67E3CF723A67E8C75EBA

CN=cPanel Extended Validation RSA Certification Authority, OU=Controlled by COMODO 7F07C12FFF4653D6BB65F9CCFD1A0E9EE466884EB07 97 Intermediate exclusively for cPanel, Inc., O=cPanel, Inc., L=Houston, ST=TX, C=US 7277BB9BB45D76243CC22

CN=Secure Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, BD81CE3B4F6591D11A67B5FC7A47FDEF25521BF9AA 98 Root C=GB 4E18B9E3DF2E34A7803BE8 CN=Trusted Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, 3F06E55681D496F5BE169EB5389F9F2B8FF61E1708DF 99 Root C=GB 6881724849CD5D27CB69 100CF7E1373EBDAE233E5F8B1A5385FDABFEE8A31F 100 Root CN=Ensured Root CA, O=Ensured B.V., L=Heerhugowaard, ST=Noord-Holland, C=NL 752E33219D343DE3AFBC9C CN=Ensured Document Signing CA, O=Ensured B.V., L=Heerhugowaard, ST=Noord-Holland, 21AAFAB7AF583E286598CFECA8BD4358C37D7ACED5 101 Intermediate C=NL CB6370AC8110B8398BE476 E396A793475EB6FF150A64D6133A7EE0A2C7B6775CB 102 Intermediate CN=Ensured Timestamping CA, O=Ensured B.V., L=Heerhugowaard, ST=Noord-Holland, C=NL EEBA695B90DA01D81A044 687FA451382278FFF0C8B11F8D43D576671C6EB2BCE 103 Root CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE AB413FB83D965D06D2FF2 CN=Crazy Domains (DV) Certification Authority, OU=Security Dept., O=DREAMSCAPE 6EF6F75AEFD6A6E1041DB461799CBECD602196914A 104 Intermediate NETWORKS FZ-LLC, C=AE B301EF5C74DFED6C4311C7 CN=Crazy Domains (OV) Certification Authority, OU=Security Dept., O=DREAMSCAPE F8EB62FE68E417662B2237E5AE618D3ECBA84C503BB 105 Intermediate NETWORKS FZ-LLC, C=AE 8000348CCB4B9A3ABF9D8 CN=TrustSign BR Certification Authority (DV), OU=Security Dept., O=TrustSign Certificadora F476C203E20CA9DF4930FFFC129695FFCDEF2C2B542 106 Intermediate Digital, C=BR D1EC4106644ADC7B43817 CN=TrustSign BR Certification Authority (OV), OU=Security Dept., O=TrustSign Certificadora 812A0471882F2C86AC7D97D5C314761FA25C75DFD60 107 Intermediate Digital, C=BR 5CD1D0E021981FB70EA33 8B13E2B22DC4DC8C92BDA0E0652C15AB78F00964F7 108 Intermediate CN=SSL Blindado, OU=Certificação Digital, O=Site Blindado S.A., L=Sao Paulo, ST=SP, C=BR 5CD7D0B851A31F1465C606 5B0274E10CFA636A4DBBF2B2CDDFBA2C60AD397CC 109 Intermediate CN=TrustAsia DV SSL Server CA, O=TrustAsia Technologies, Inc., ST=Shanghai, C=CN AF466A26D5039581C55A9B2 9F58E4D6CF4EC8403961C244C0219740B11C224364F 110 Intermediate CN=TrustAsia OV SSL Server CA, O=TrustAsia Technologies, Inc., ST=Shanghai, C=CN A4F7BA3314171AE4B27C3 09E2D99DE4079E308E6255EC7A63FFE7AD0B17D2C7 111 Intermediate CN=icewarp.com (IceWarp Certification Authority), O=IceWarp Limited, C=CY 79DB177278DFBB5853DABD 6

D2E31E04B842B0652C2592F9873BCEFD830F452AE37 112 Intermediate CN=icewarp.com (IceWarp Domain Validation Certification Authority), O=IceWarp Limited, C=CY 990A1725C92A3F17C6B97 CN=PSW GROUP Domain Validation SSL CA, OU=http://www.psw.net/, O=PSW GROUP, BEE1317632C80593DE2AE7991A7442C50939652B0F85 113 Intermediate L=Fulda, ST=Hessen, C=DE F7334F512340C45782D0 CN=PSW GROUP Organizational Validation SSL CA, OU=http://www.psw.net/, O=PSW GROUP, 5BABEA87BD3FBF62EFD1D89EEA359673741D1EC54A 114 Intermediate L=Fulda, ST=Hessen, C=DE 928831E4FAA111EC0101F1 CN=TBS X509 CA persona 2.1, OU=TBS INTERNET CA, O=TBS INTERNET, L=Caen, 7E289392CB77BC2D7DAC6DBADE562CB46D4BF6822F 115 Intermediate ST=Calvados, C=FR 7D8A3B28D8A6030021A832

CN=TBS X509 CA business, OU=TBS INTERNET CA, OU=Terms and Conditions: http://www.tbs- 9805B1FBF0BD7E4D552AAE6D3B635F5ECC44882B7B 116 Intermediate internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR 7E3A4C1F0F14697E352035

CN=TBS X509 CA business, OU=TBS INTERNET CA, OU=Terms and Conditions: http://www.tbs- 628747B5C43A414F7387B05E98C4286EF83D4E5F6D8 117 Intermediate internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR C67470F09FFF84E3DDA3D

CN=TBS X509 CA pro hosting, OU=TBS INTERNET CA, OU=Terms and Conditions: 13C433963679A158F70F398EB3C53418B8805E91B34D 118 Intermediate http://www.tbs-internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR 5BF8534DB76B6D832769

CN=TBS X509 CA pro hosting, OU=TBS INTERNET CA, OU=Terms and Conditions: CD26F45ACE63CAF27DC27F3A8672D07B7035EB4EBF 119 Intermediate http://www.tbs-internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR E0EE92159091DDC04A5C58

CN=TBS X509 CA SGC, OU=TBS INTERNET CA, OU=Terms and Conditions: http://www.tbs- 4110ACE8F4388D819AEB537C4E4509413B5AEFC3642 120 Intermediate internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR 23860AD2A42002BEAEBF5

CN=TBS X509 CA SGC, OU=TBS INTERNET CA, OU=Terms and Conditions: http://www.tbs- 0A00D4E8DF966548BAD5AEA6BF34C7436CF9533B792 121 Intermediate internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR 1DC67671F27E540B5B6F1

D2DAC5CF2C4890E20294D68096370DF90E1BB974D1F 122 Intermediate CN=Formidable CA Services Domain Validation, O=Formidable CA Services Ltd., C=GB 68215FFC1254022C0BC07 863B54A470C1CC4DDDEB391D3CAE381C14F38F1AD7 123 Intermediate CN=Formidable CA Services Organization Validation, O=Formidable CA Services Ltd., C=GB 5B479C9A22C4266E0114BF 30801BE2417D64BFDDE9FB48A642003B91F6619BA7E 124 Intermediate CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB 776CCB41A2A8B3C271392 CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater E780575EB081F2F35BCDE6B0373F5CFEF66490C5E38 125 Intermediate Manchester, C=GB 3DB98F8D2A21CF0DF1A0B CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater 3717F5EADF9A9753AB6CAAD8C6805423FBEC758CC2 126 Intermediate Manchester, C=GB 5CA91A2B233D545A17BFE6 CN=COMODO Domain Validation Secure Server CA 2, O=COMODO CA Limited, L=Salford, EA8E2051623E4E4710FD5BF27A4D2CE0BE65B17A1E5 127 Intermediate ST=Greater Manchester, C=GB 439B8FAB74E01CCA81575 CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater 7532CD02809D52C39BE3208F0E4595F87F73EAA55D7 128 Intermediate Manchester, C=GB B54600649A9CAFEC1FA4E CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater 9573862AC0B4B125168810EA3FD101AE2EB0BB15F61 129 Intermediate Manchester, C=GB FC0E6DA7A2A38B85A89E8 0F55630C0004F1ADA06A682E829519A7AC75DB0A83C 130 Intermediate CN=COMODO EV SGC CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB 725F0E873087C7F89608E 2DD2D35258473B875CCEE1BDD1436A67E4209DD2E2 131 Intermediate CN=COMODO EV SSL CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB 37F383044F6C3C4E32ABBD CN=COMODO High-Assurance Secure Server CA, O=COMODO CA Limited, L=Salford, 7363593D116AAFCF804B974465546E1F02ED74B52DB 132 Intermediate ST=Greater Manchester, C=GB 529BA7520345E5FED1ED4 CN=COMODO Name Constraints Testing CA, O=COMODO CA Limited, L=Salford, ST=Greater 526251855E1F7A6337C0F3720C9F323870A6E014C68F 133 Intermediate Manchester, C=GB 88ED796C3F7B69F5B793 CN=COMODO Name Constraints Testing CA, O=COMODO CA Limited, L=Salford, ST=Greater 84B4911C85ACEE56873CB6E38F94AC22F6D5ABD9DE 134 Intermediate Manchester, C=GB E0E0E6D2ECA1362FBDEDAA CN=COMODO Name Constraints Testing CA, O=COMODO CA Limited, L=Salford, ST=Greater E2C30EDC6C6067D1856FC7FBE2B03A1C3D1899971A 135 Intermediate Manchester, C=GB 8B312083163C9E8AFF404F CN=COMODO Name Constraints Testing CA, O=COMODO CA Limited, L=Salford, ST=Greater 1486AEFC8EB9AC47DC71F1B36C56133CF1F4B838879 136 Intermediate Manchester, C=GB 34E0A5AA4F2CB7B183A6D CN=COMODO Name Constraints Testing CA, O=COMODO CA Limited, L=Salford, ST=Greater 4222C86364BA32D247D188B22BEBC3F6F8C6A740F56 137 Intermediate Manchester, C=GB 7E9A39B68DC6C5EBA1961 CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater 4F32D5DC00F715250ABCC486511E37F501A899DEB3B 138 Intermediate Manchester, C=GB F7EA8ADBBD3AEF1C412DA CN=COMODO SHA-256 Client Authentication and Secure Email CA, O=COMODO CA Limited, 5344871D8E168212539644F9AA081B78FFF2179950145 139 Intermediate L=Salford, ST=Greater Manchester, C=GB AC0E4EBFCD037FB04F4 CN=COMODO SHA-256 Code Signing CA, O=COMODO CA Limited, L=Salford, ST=Greater 07C0EA58E8FD2CD71AC604B0BC8636AF60A93FC761 140 Intermediate Manchester, C=GB 1C23BA8173957C6C149B77 CN=COMODO SHA-256 Domain Validation Secure Server CA, O=COMODO CA Limited, E7CA62CEBC4A56F9A370E7E9EB5253A50C9F13EC57 141 Intermediate L=Salford, ST=Greater Manchester, C=GB 7C7509443A9FE6538CC72E CN=COMODO SHA-256 Extended Validation Secure Server CA, O=COMODO CA Limited, 39F358D4B1A20AC9CC30D1FE02133CD93E22E30397 142 Intermediate L=Salford, ST=Greater Manchester, C=GB D727BD27F4695291A47CED CN=COMODO SHA-256 Organization Validation Secure Server CA, O=COMODO CA Limited, 796A804DBB84C56C08FE1A1F2D176761C3B8F0224FE 143 Intermediate L=Salford, ST=Greater Manchester, C=GB BC7DF57E5E359F207AAD4 179B3B8DC791EBFC5FE5F22DAE1F713AC18FD8BC69 144 Intermediate CN=COMODO SSL CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB 6F17E90DED680FAA12F8EF E7A0870A18B4AB56E5A695D4AC9E53F6FDB8B64E888 145 Intermediate CN=COMODO SSL CA 2, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB 729CE4B3C3D9FC2FD2873 4475534DBB114714C628D3EEF21811002D6CCECC432 146 Intermediate CN=PositiveSSL CA 2, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB 8E41587732251E424F8A6 953077532B6C494B4126ACCF8F14768F3F5B731021CD 147 Intermediate CN=GlobalTrust Certification Authority, O=GlobalTrust, C=IT 238622C694AD5DD4154A 4152871999E965006EA47491BB449CDEC88011083A47 148 Intermediate CN=SecureCore SHA-1 DV CA, O=SecureCore, L=OSAKA, ST=OSAKA, C=JP 3A376CC2DCB34259EA4B

7

8373244238496C5F875C952C8C2F1EFF260B9EFA7046 149 Intermediate CN=SecureCore SHA-1 OV CA, O=SecureCore, L=OSAKA, ST=OSAKA, C=JP B38BD77F9C8E86EFF947 B0D90138BFAF632E58B9E13289FD4A3079D02FAFCB9 150 Intermediate CN=InnoSSL TrustSign DV Certification Authority, O=Dotname Korea Corp., C=KR 6472E587DD8D29E2E3312 AC7266EC5A1DD66E531FD6CB9769B945AAC1438952 151 Intermediate CN=InnoSSL TrustSign OV Certification Authority, O=Dotname Korea Corp., C=KR EBCB06529B02A115C894EB CN=DOMENY.PL CODE SIGNING Certification Authority, OU=CertyfikatySSL.pl Security Dept., 245D87F411962B3EC7E9E0E46584CFA8828135432050 152 Intermediate O=DOMENY.PL Ltd., C=PL CD43433445DD062AA810 CN=DOMENY.PL DV Certification Authority, OU=CertyfikatySSL.pl Security Dept., O=DOMENY.PL 6C22068C3A8224CBCAB1B15C54F77C944CD86825ED 153 Intermediate Ltd., C=PL 99C6175805BEB2370287F7 CN=DOMENY.PL OV Certification Authority, OU=CertyfikatySSL.pl Security Dept., O=DOMENY.PL 46CD806615299792FC7829E0CA1EFFB00CEB0F7811A 154 Intermediate Ltd., C=PL 57FAC129D43ADD4E138C7 CN=DOMENY.PL SMIME & CLIENT AUTHENTICATION Certification Authority, 74A734E06E8E5495E912E8D9EA1CA02C918628CAF7C 155 Intermediate OU=CertyfikatySSL.pl Security Dept., O=DOMENY.PL Ltd., C=PL FA252DE62DC2E52945784 D6E64419A39A75BF6EFADE9875E9DFF8840C99D3B2 156 Intermediate CN=MarketWare Domain Server CA, OU=Certificate Services, O=MarketWare, C=PT E045FF798413AF4E1733A8 3D34507F20D71A591F17D9FBD4637916DB787924D241 157 Intermediate CN=MarketWare Server CA, OU=Certificate Services, O=MarketWare, C=PT 218928E332010EE67928 B392CB1C6307C83012629828E35F3AD32DB9F27BB22 158 Intermediate CN=MarketWare SGC Server CA, OU=Certificate Services, O=MarketWare, C=PT 62FC7E00F5726DB277F2E CN=RU-CENTER High Assurance Services CA, OU=IT, O=JSC Regional Network Information C73BF204E49F1EF6B0B227F1D5A47E4B2C9EBC15076 159 Intermediate Center, C=RU 1CB157B7A9B892468B63C CN=RU-CENTER Low Assurance Services CA, OU=IT, O=JSC Regional Network Information 3E8662906B9135242B55FF23EC822AEF28EDFC2CDD4 160 Intermediate Center, C=RU 55BC83A945134BE99D354 6E93047131BE95FCAC40E560B73AD8C965EBF045622 161 Intermediate CN=GlobalTrust Domain Validation CA, OU=Domain Validation CA, O=Global Digital Inc., C=TW F3A752B6062D12DCC4AFE 0F852C702DF23FE4D7B28D3B432F8A396E8D56349D1 162 Intermediate CN=GlobalTrust CA, OU=Organizational Validation CA, O=Global Digital Inc., C=TW 316650F6D5608513DCB40 6E5038702083BC851E0FF0E01B530B9C9EB32C164526 163 Intermediate CN=TWCA Secure Certification Authority, OU=SSL Security Services, O=TAIWAN-CA INC., C=TW 87E3815A3E967D4AC246 57B4ECF78D5E83A3B5E831436E84BBA0B5D1B34AA7 164 Intermediate CN=GlobeSSL CA, OU=GlobeSSL DV Certification Authority, O=Globe Hosting, Inc., C=US D80490308F8483C00D1D7D 67A66653BAA7BB05E8FDA4B117347311411921BC20D 165 Intermediate CN=GlobeSSL CA, OU=GlobeSSL OV Certification Authority, O=Globe Hosting, Inc., C=US FC87826DA80BD55866D69 ADDCB95B146C2E7742F16E22854FAA059D5CB87D40 166 Intermediate CN=Intel External Basic Policy CA, O=Intel Corporation, C=US 6EC85EF7486694A03D6C84 623727EC472644A6BB70D240565C24223FDB0F2F5AC 167 Intermediate CN=InCommon Server CA, OU=InCommon, O=Internet2, C=US 698027E3012489C70E817 486E9F713DB5A00F473FE28843C1BF99684C6DF466B 168 Intermediate CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US BA37C812B995F2EFB478A 5DCF76EC8C7A84D94C7C9BFFDE0C9D45389AC618D 169 Intermediate CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US 11D343BD6A5EBA5BFC6F438 1F32401D449A0619F30800D11A4F502DB49E0B332423 170 Intermediate CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US F778BD522991FB6E0147 C445D7EAA6F236F4CFC23AD1C2F8403BF733AE87E0 171 Intermediate CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US E6FF5892C926044370FB48 C394102420DA7FA251A5EE3279AFE01C5E06BDE5EE 172 Intermediate CN=Network Solutions DV Server CA, O=Network Solutions L.L.C., C=US 6A7672DBFF24E3DB96B8F4 C25E1198D5D8E2699629499E4A0459BC881C50DB828 173 Intermediate CN=Network Solutions OV Server CA, O=Network Solutions L.L.C., C=US 776F50C8E3FFF7460E195 82EFE347129BF5B4C6106E80AE6AFBB7322A54D0801 174 Intermediate CN=Secure Business Services CA, O=Secure Business Services, Inc., C=US 88921896E3E3900D2B5D5 DB5754C17C547E61924BC1BE57FBC23F2C9827C0F86 175 Intermediate CN=SSL.com Free SSL CA, O=SSL.com, C=US 12F80BDC942CC43086076 FB040AA47A5E46F31255F33979EAE04FEF7BB14EE47 176 Intermediate CN=SSL.com High Assurance CA, O=SSL.com, C=US CBF66FDDDDC6E70EA1354 ECDD0BDD063FD6E14D11BF813649C35FBFB9282F1C 177 Intermediate CN=SSL.com DV CA, OU=www.ssl.com, O=SSL.com, C=US BC348950CBD47F42286002 673FFA7452EBE82AAB4136997A5C5A811483F0B371C 178 Intermediate CN=SSL.com High Assurance CA, OU=www.ssl.com, O=SSL.com, C=US D4CBEC1E3CEE99DFF7999 0898D87163BD55D1C5AA91301433D83AD801048AF0B 179 Intermediate CN=Trusted Secure Certificate Authority, O=Trusted Secure Certificate Authority, C=US E3F8AADDEBD2DE3A7E40D CN=CertAssure DV Secure Server Certification Authority, O=CertAssure Inc., L=San Jose, ST=CA, C3070211A1BF8422123914D1B569B3E043A2492373EB 180 Intermediate C=US 03674723EDAF9C412CE8 CN=CertAssure OV Secure Server Certification Authority, O=CertAssure Inc., L=San Jose, ST=CA, C49D5C9D188C69E5CEFF1E5E10773FC620C0715B0D 181 Intermediate C=US 81BF42D160DE8EAE9BB346 64E2526D1EBA44280F3330A47D1ADB30966A7092182 182 Intermediate CN=Intel External Basic Issuing CA 4A, O=Intel Corporation, L=Santa Clara, ST=CA, C=US ED1B51B1F75099F16907B BC825D22CE9668599BF24FAE526DDBB03E14DAAB79 183 Intermediate CN=Intel External Basic Issuing CA 4B, O=Intel Corporation, L=Santa Clara, ST=CA, C=US E32B321024B426B8F850DF 7BF45F66B807571739374ED5DC8EC4A2EBC9A9E08C 184 Intermediate CN=McAfee OV SSL CA, O=McAfee, Inc., L=Santa Clara, ST=CA, C=US 9F12C89B1C490D80551093 CN=InterContinental Hotels Group RSA Client CA, O=Six Continents Hotels, Inc., L=Dunwoody, BDFB6DC0FF9EFDB84771CFE8396FEE8E92A8869208 185 Intermediate ST=GA, C=US 53081FADF9B8D04E438F2A 72A0953AD57334D6B9D34DEC08CC33F145661252920 186 Intermediate CN=K Software Certificate Authority (DV), O=K Software, L=Ashland, ST=KY, C=US C64BBF08AB2881C88F837 F4E055F2241AE548F6EEAE52C571FC85827153F4469E 187 Intermediate CN=K Software Certificate Authority (OV), O=K Software, L=Ashland, ST=KY, C=US 718AAFCA58694818C874 F9B7A5D89CF503CBE249ED3F251A2C594116DB410A 188 Intermediate CN=LiteSSL CA, O=Positive Software Corporation, L=Jersey City, ST=New Jersey, C=US B6B4030AC6FA991A746ED2

8

CN=LiteSSL High Assurance CA, O=Positive Software Corporation, L=Jersey City, ST=New Jersey, 99C7EB6B1F8D09ED22B7F6E5ECAB5437AE33DD8E38 189 Intermediate C=US 9CF94555CEC45E3648791B CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New 5578748AC97944D13CAE572A3794CF3C3B6D3A6B675 190 Intermediate Jersey, C=US 2FD2A029713B16D8D2659 CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New C2B25BAD6F6ED65216CADAD7420BE9A3C787B7789F 191 Intermediate Jersey, C=US 4C0222C35A2574BBACE92A CN=USERTrust Extended Validation Secure Server CA, O=The USERTRUST Network, L=Jersey 6FDB5E3E6B6EEA89315988B7BAAB0153D70A12AD25 192 Intermediate City, ST=New Jersey, C=US E8A0C2D62776DC2EA92127 CN=USERTrust High-Assurance Secure Server CA, O=The USERTRUST Network, L=Jersey City, B0F2EB84E977A7FA1AF1A359072FA03A91722056F441 193 Intermediate ST=New Jersey, C=US 2CFEA8F9C5C77F124B0F CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New 1A5174980A294A528A110726D5855650266C48D9883B 194 Intermediate Jersey, C=US EA692B67B6D726DA98C5 CN=USERTrust Secure Server CA, O=The USERTRUST Network, L=Jersey City, ST=New Jersey, 1B47C95158658B62FF376CAD80E0D4A28B0434D1BF0 195 Intermediate C=US EDB103BC20E953E051016 CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The 0FCD534354319C7751551DB556D3600F2031DDCBB53 196 Intermediate USERTRUST Network, L=Salt Lake City, ST=UT, C=US 8C778D37E561D5947F089

CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The 5ECCAF1EA9A28AB7A2A8C9EF062D7BB9E0DB55E80 197 Intermediate USERTRUST Network, L=Salt Lake City, ST=UT, C=US F68F450D514D329BF8E2269 CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, F273C69A801C16C643994941BDDC4357BCC8162CC52 198 Intermediate L=Salt Lake City, ST=UT, C=US C5920052F20FA4E72612B CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, 854D8BDEDB8C2FB8AC23816B26B3AFECB7A0CD7CC 199 Intermediate L=Salt Lake City, ST=UT, C=US F0283C6DACE2DAA671FEC64 CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, CD1EE37F0F4AC1AA3F6759F3CAD998D1C581F7C1E0 200 Intermediate L=Salt Lake City, ST=UT, C=US 39BA891C8244EF9E3AD9CE CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt 2CF1EC6AB594113BD538DF6D5C940E3319B424F8756 201 Intermediate Lake City, ST=UT, C=US D975888072C6AB558B771 CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt D8FA50290D809B52C90C79A6A2A011365F4FF2AF847 202 Intermediate Lake City, ST=UT, C=US 6795D74EF5387C5B0A264 57AB325DFEC3E932CBEA2EFF4FE06FCFCC1F33F871 203 Intermediate CN=ReliaSite DV Server CA, O=ReliaSite, LLC, L=Cheyenne, ST=WY, C=US 9AD547A238DE3E6B2D8907 FA1AEA3BA4BAFBF8B962D2B0D2880D012B0A4E585C 204 Intermediate CN=ReliaSite OV Server CA, O=ReliaSite, LLC, L=Cheyenne, ST=WY, C=US 66084F97018280C1AA5AF6 8C7209279AC04E275E16D07FD3B775E80154B5968046 205 Root CN=AddTrust Class 1 CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE E31F52DD25766324E9A7

CN=TBS X509 CA institutionnel, OU=TBS INTERNET CA, OU=Terms and Conditions: C49088F175E41A713F6AEDB6C5AF0795F7DFBDE5428 206 Intermediate http://www.tbs-internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR 298AF7CC743DC0B87DAFC

CN=TBS X509 CA persona, OU=TBS INTERNET CA, OU=Terms and Conditions: http://www.tbs- D9F1E9D23A7FE86450D723F8BFE0912422239A8F8EC 207 Intermediate internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR EB94E191B59B4A4B793DB

CN=TBS X509 CA persona, OU=TBS INTERNET CA, OU=Terms and Conditions: http://www.tbs- 261B1B42706AC0071C88DB23EAC68E476284FCDE814 208 Intermediate internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR B92AECD964DB4FB81A58E

00E22A57283CF595F6179B3AFD0BDE20E6198238CF9 209 Intermediate CN=GlobalTrust Certification Authority, O=GlobalTrust, C=IT 714771BD4128B3FFFCECC 0791CA0749B20782AAD3C7D7BD0CDFC9485835843E 210 Root CN=AddTrust Public CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE B2D7996009CE43AB6C6927 8095210805DB4BBC355E4428D8FD6EC2CDE3AB5FB9 211 Root CN=AddTrust Qualified CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE 7A9942988EB8F4DCD06016

CN=TBS X509 CA signature composants, OU=TBS INTERNET CA, OU=Terms and Conditions: AB75099ED6F02F58DCDB832D5B9A2058929CF60E0D 212 Intermediate http://www.tbs-internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR AB7FB92B230633E6B61237

88C18C403D423DBF81D28203F702B8752C3D0290FB6 213 Intermediate CN=GlobalTrust Certification Authority, O=GlobalTrust, C=IT 3FA785C6907DA574D447B CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New 4FF460D54B9C86DABFBCFC5712E0400D2BED3FBC4 214 Root Jersey, C=US D4FBDAA86E06ADCD2A9AD7A 767BC29DB99AF4C2A62649000D172FC6CC2D09D408 215 Intermediate CN=CertCenter Enterprise ECC DV CA, O=CertCenter AG, L=Giessen, ST=Hessen, C=DE C4CAB6A8D99A1DD5DCF7DB CCF497AE00DA5A1E5A822756B8E8F038E00D52DC43 216 Intermediate CN=CertCenter Enterprise ECC OV CA, O=CertCenter AG, L=Giessen, ST=Hessen, C=DE ED2F5D33627909732BE0BD

CN=CertCenter Enterprise ECC EV CA, OU=Controlled by COMODO CA exclusively for CertCenter 7EC8E7AA42195E9A36B858E29669EAA37D57B13AFA2 217 Intermediate AG, O=CertCenter AG, L=Giessen, ST=Hessen, C=DE 331BDAEA6A1EBF7E46E7E

72376D590D9A665D396A51D2AEA9334638FD4B13D6F 218 Intermediate CN=TrustSign ECC DV CA, O=Ziwit, L=Montpellier, ST=Herault, C=FR 5E993298322F344F2B79E B691B46A9A510DBD66B989DA9AD06904AC06473D8D 219 Intermediate CN=TrustSign ECC OV CA, O=Ziwit, L=Montpellier, ST=Herault, C=FR 0D79F2195D6B13FFB4A183 CN=TrustSign ECC EV CA, OU=Controlled by Comodo exclusively for Ziwit, O=Ziwit, L=Montpellier, 025764E6E19D90BC6CC70669445593D53FC0D9836F7 220 Intermediate ST=Herault, C=FR B9428036208610B539943 CN=Comodo ECC Client Authentication and Secure Email CA, O=Comodo Limited, L=Salford, 91DA7A5CA6134875008994C250DAD9221F0C5E2D4E3 221 Intermediate ST=Greater Manchester, C=GB E0973F7961DCBDFB743EC CN=Comodo ECC Code Signing CA, O=Comodo Limited, L=Salford, ST=Greater Manchester, 7C143092C96B6459F5430694E26FC2FD3204DB3EA5E 222 Intermediate C=GB 23A0D84E1410431D8F3AA CN=Comodo ECC Domain Validation Secure Server CA, O=Comodo Limited, L=Salford, 61E97375E9F6DA982FF5C19E2F94E66C4E35B6837CE 223 Intermediate ST=Greater Manchester, C=GB 3B914D2245C7F5F65825F CN=Comodo ECC Domain Validation Secure Server CA 2, O=Comodo Limited, L=Salford, F6722BE44ACDAE5B5A8B3B0B4AF9F4BF5E5FBC3961 224 Intermediate ST=Greater Manchester, C=GB CF526CBD9769D1C6E14859 CN=Comodo ECC Extended Validation Code Signing CA, O=Comodo Limited, L=Salford, 2AABE42CB568E95D428D3FAF5B26BE40724ECDFC99 225 Intermediate ST=Greater Manchester, C=GB 7840E0555BD58B62C4EF23

9

CN=Comodo ECC Extended Validation Secure Server CA, O=Comodo Limited, L=Salford, 1FFECE09682F87024A2A44B2C987B1FCCEE3B2B5CF 226 Intermediate ST=Greater Manchester, C=GB 021EFCF23869224A4CA154 CN=Comodo ECC Organization Validation Secure Server CA, O=Comodo Limited, L=Salford, 3457106752400212903A3545CA3B2EF384A456972BD9 227 Intermediate ST=Greater Manchester, C=GB 51D8D840C1B0A379EFA1 CN=Gehirn Managed Certification Authority - ECC DV, O=Gehirn Inc., L=Chiyoda-ku, ST=Tokyo, E7F1526EA9D5147B7A5E1AE6ABE31737A4666D1E8F0 228 Intermediate C=JP 3E633703BD3C3D9B1E376 CN=Gehirn Managed Certification Authority - ECC OV, O=Gehirn Inc., L=Chiyoda-ku, ST=Tokyo, 78EE237ABB2354AA67CA8FB5E2BFA9B917A0BF53E2 229 Intermediate C=JP F3B3CAB3DACEC1E2C361E1

CN=Gehirn Managed Certification Authority - ECC EV, OU=Controlled by COMODO CA exclusively 5F18390F21490292A095FFF380F2E8927DD3159223A7 230 Intermediate for Gehirn Inc., O=Gehirn Inc., L=Chiyoda-ku, ST=Tokyo, C=JP 6113EDE357AA2B311C1F

CN=Gehirn Managed Certification Authority - ECC DV, O=Gehirn Inc., L=Chiyoda-ku, ST=Toyko, 2BC311BF282890F6269C5938C2F127E1D0EE045281C 231 Intermediate C=JP 4E8779C49BBE8856CDA12 CN=Gehirn Managed Certification Authority - ECC OV, O=Gehirn Inc., L=Chiyoda-ku, ST=Toyko, F82D811F617CD2E335757C2E5AE0FC6E782EDC2203 232 Intermediate C=JP BD14BDAD466093E24951EB

CN=Gehirn Managed Certification Authority - ECC EV, OU=Controlled by COMODO CA exclusively ABB315CE8D6D1480266BF3F706E91D230D173885DBB 233 Intermediate for Gehirn Inc., O=Gehirn Inc., L=Chiyoda-ku, ST=Toyko, C=JP 985B498DC9CBF3DAAF80D

84965384498039CC9458610318303F9CCFC452E23678 234 Intermediate CN=GoGetSSL ECC DV CA, O=GoGetSSL, L=Riga, C=LV 0FBDDC4748567F05A0EE 1235E13812B9752170CE9BD3A3B60E66AC8C0CB44F9 235 Intermediate CN=GoGetSSL ECC OV CA, O=GoGetSSL, L=Riga, C=LV CCB5C768589FD9F27B9F4 CN=GoGetSSL ECC EV CA, OU=Controlled by COMODO CA exclusively for GoGetSSL, BA6B9BFBBF9698AF91EB4C693466414181A0002AD52 236 Intermediate O=GoGetSSL, L=Riga, C=LV 8FF154946D586AA5D9445 CN=CertAssure ECC OV Secure Server Certification Authority, O=CertAssure Inc., L=San Jose, 2CD4B791439D2F465FFC6FDAF925E0074AB50BAD4E 237 Intermediate ST=CA, C=US 9717AFD5F5D1BCD9E487BF

CN=CertAssure ECC EV Secure Server Certification Authority, OU=Controlled by COMODO 0BF8D27871A25EFBCC70F56C268C80C42D28C5F1D1 238 Intermediate exclusively for CertAssure Inc., O=CertAssure Inc., L=San Jose, ST=CA, C=US 8A69C0180D989B2B8D671A

987A5C9584B46B59878E42460F83E4D61F4C27223669 239 Intermediate CN=BlackCert, Inc. ECC DV Certification Authority, O=BlackCert, Inc., L=Denver, ST=CO, C=US 46D4D216F336A6F128F7 3CA18E1EDBE6860D70914E9AA0DB8E61E193E7EF54 240 Intermediate CN=BlackCert, Inc. ECC OV Certification Authority, O=BlackCert, Inc., L=Denver, ST=CO, C=US 7CDAB8B4DF545F46DEC6BB

CN=BlackCert, Inc. ECC EV Certification Authority, OU=Controlled by COMODO exclusively for 39C79D2A4CFFE09C61DE69EC14991D8E95CE7134EC 241 Intermediate BlackCert, Inc., O=BlackCert, Inc., L=Denver, ST=CO, C=US F71EF079900D0AD5478CAD

CN=TrustOcean EV SSL CA - ECC - 2019, OU=ECC Extended Validation Secure Server - 2019, 634C08422C1041D0B43998F87209DFCADF802D17982 242 Intermediate OU=Controlled by Comodo exclusively for TrustOcean Ltd., O=TrustOcean Ltd., L=Denver, ST=CO, A4188364610E3B27022E6 C=US CN=TrustOcean SSL CA - ECC - 2018, OU=ECC Domain Validation Secure Server - 2018, B76A2FB1627216222AFA4B025CF4DA7B2E4ECA1EC7 243 Intermediate O=TrustOcean Ltd., L=Denver, ST=CO, C=US BCF75C5C7F04FA09C8263A CN=Trusted Secure ECC Certificate Authority, O=Corporation Service Company, L=Wilmington, D9352669E29349329AF4745C55A6C159DC979AB74592 244 Intermediate ST=DE, C=US 5170A1980668382ACBC0 CN=Trusted Secure ECC Certificate Authority DV, O=Corporation Service Company, L=Wilmington, A4A7D05F29685679E3C00A322CE6B6CD57FDDA5F2E 245 Intermediate ST=DE, C=US F42C6C6E73581C8A471077 BDB7AA28F164E4BC15D6920733B223ED98E55220A3E 246 Intermediate CN=InCommon ECC Server CA, OU=InCommon, O=Internet2, L=Ann Arbor, ST=MI, C=US 56F3B1ECFD04E87D30B71 29A4EC8BCA32DD91F1120DE14F5BB439356D48ED80 247 Intermediate CN=KeyNet Systems ECC DV CA, O=KeyNet Systems LLC, L=Las Vegas, ST=Nevada, C=US 120DF1A3A86617EA484BC8 5CA04E93A5A07D74C6FB4AFE1B3D4DBC62C25CE74 248 Intermediate CN=KeyNet Systems ECC OV CA, O=KeyNet Systems LLC, L=Las Vegas, ST=Nevada, C=US D8617C7EE66CB5438BA657F CN=USERTrust ECC Client Authentication and Secure Email CA, O=The USERTRUST Network, 52DFD735D4ADA4AEACB2D77968F9711143FB0C3C5A 249 Intermediate L=Jersey City, ST=New Jersey, C=US 83B50AC4DEB987A878E509 CN=USERTrust ECC Code Signing CA, O=The USERTRUST Network, L=Jersey City, ST=New 345A52F164DF613463C87288426CAD246BAB02824529 250 Intermediate Jersey, C=US 4DDBFA618C6BB3BE3C3C CN=USERTrust ECC Domain Validation Secure Server CA, O=The USERTRUST Network, 72956A1C5AA5D91AC69CD63107A25AA1843819DDC2 251 Intermediate L=Jersey City, ST=New Jersey, C=US 1C5108EC1D97F3229603CE CN=USERTrust ECC Extended Validation Code Signing CA, O=The USERTRUST Network, 1B97A6F0DBBD90C12070A4B22450C89ED7DA9E00D1 252 Intermediate L=Jersey City, ST=New Jersey, C=US B0C1D32C739F91F0544369 CN=USERTrust ECC Extended Validation Secure Server CA, O=The USERTRUST Network, E81443141E3C1232D06465E11BBD1F6CA7181A3E037 253 Intermediate L=Jersey City, ST=New Jersey, C=US F815BB8FAAEADE6BEBED1 CN=USERTrust ECC Organization Validation Secure Server CA, O=The USERTRUST Network, 46D3B50FEDCF8C36B5F672239CC3A2E9E02ED15F33 254 Intermediate L=Jersey City, ST=New Jersey, C=US CBDC0C262A8647849403F4 CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, ST=New E793C9B02FD8AA13E21C31228ACCB08119643B749C8 255 Root Jersey, C=US 98964B1746D46C3D4CBD2

CN=TrustSign BR Certification Authority (DV) 2, O=TrustSign Certificadora Dig. & Soluções 04F7A1C112607E593928FEC786CC6021BD6EBD95001 256 Intermediate Segurança da Inf. Ltda., L=São José dos Campos, ST=São Paulo, C=BR F1C693B8C4B384EB19F6A

CN=TrustSign BR Certification Authority (OV) 2, O=TrustSign Certificadora Dig. & Soluções BDFD84D902AAD010C4E08131775AFB7365694EE81C9 257 Intermediate Segurança da Inf. Ltda., L=São José dos Campos, ST=São Paulo, C=BR B8AE2DF76419F3EDF1BE1

CN=TrustSign BR Certification Authority (EV) 2, OU=Controlled by COMODO for TrustSign 769F6FF09A7462AC27A6E82DE770013D3C02133AFDD 258 Intermediate Certificadora Digital, O=TrustSign Certificadora Dig. & Soluções Segurança da Inf. Ltda., L=São BE581AEFCCA1B0A029180 José dos Campos, ST=São Paulo, C=BR 76314B41CBAD4D37FEDA061DFFF50ACB03EC8007E6 259 Intermediate CN=SSL Blindado 2, OU=Certificação Digital, O=Site Blindado S.A., L=São Paulo, ST=SP, C=BR 5D362C6523CE19C41A6A1A CFC08FBFA21983E425EBF96CCCC4A72AC09E8737BA 260 Intermediate CN=TrustAsia RSA Code Signing CA, O=TrustAsia Technologies, Inc., ST=Shanghai, C=CN 814202A0D68BDF8C157C22 F301DCC5181B941090A9177E9FFAB4795B7AE9A7D23 261 Intermediate CN=TrustAsia RSA DV SSL Server CA, O=TrustAsia Technologies, Inc., ST=Shanghai, C=CN 60EA6FDA3CCE0CF0DE49A

10

D2D7D4BEE8FF1B7DEBA427740081C07F7B186A2F29 262 Intermediate CN=TrustAsia RSA OV SSL Server CA, O=TrustAsia Technologies, Inc., ST=Shanghai, C=CN A12360D53F8C20D455538D CN=TrustAsia RSA Secure Client and Email CA, O=TrustAsia Technologies, Inc., ST=Shanghai, E18CF8D5299188752B16F3E3C3CD8673619046E2F1B 263 Intermediate C=CN 9E088DAB5D3116AEA61BD

CN=TrustAsia RSA EV SSL Server CA, OU=Controlled by COMODO exclusively for TrustAsia 8CD953C506228BF1D74D6062E91E7E0873EAEBBB19F 264 Intermediate Technologies, O=TrustAsia Technologies, Inc., ST=Shanghai, C=CN BF200ACADC23830006B83

CN=EuropeanSSL High Assurance Server CA 2, O=EUNETIC GmbH, L=Durmersheim, ST=Baden- 3C5E391FD8CA3B21614495624AE5B29F39ED066124B 265 Intermediate Württemberg, C=DE 594438F9494B34343C795 CN=EuropeanSSL Server CA 2, O=EUNETIC GmbH, L=Durmersheim, ST=Baden-Württemberg, 0827F6BFDBBF30EA0FEACF1B7BD06EEF65DB271AC 266 Intermediate C=DE D7E9B5D269A0F2F372B21E9 4590AB0142C786711F56E87DF81EBF9891A78043CD68 267 Intermediate CN=WebSpace-Forum Essential CA II, O=WebSpace-Forum e.K., L=Berlin, ST=Berlin, C=DE D07029433F3518EC76CB 0BD1479187BA01EA3E938A750C7BDE3B6F285DC10E 268 Intermediate CN=WebSpace-Forum Server CA II, O=WebSpace-Forum e.K., L=Berlin, ST=Berlin, C=DE BB995303F66601BA5B2D20 C06ED415E7DED06E5A4A083A8025F65E45D4E46B635 269 Intermediate CN=CertCenter Enterprise RSA DV CA, O=CertCenter AG, L=Giessen, ST=Hessen, C=DE 1E99ADB47DE48B02F8BED 3240B81C6DF552AEA16D70229DBFEFF24D50EAA9A2 270 Intermediate CN=CertCenter Enterprise RSA OV CA, O=CertCenter AG, L=Giessen, ST=Hessen, C=DE 272391888F65BE95B450E3

CN=CertCenter Enterprise RSA EV CA, OU=Controlled by COMODO CA exclusively for CertCenter EF5663142F5B2D6B8274529B157DF2F965A71873A5AE 271 Intermediate AG, O=CertCenter AG, L=Giessen, ST=Hessen, C=DE 5AA5E0720244F2398B6F

CN=Don Dominio / MrDomain RSA Client CA, O=Soluciones Corporativas IP, SL, L=Manacor, CE8E10501CD188D227EF74AD0A342D977643BD2DE3 272 Intermediate ST=Illes Balears, C=ES F217161B5ED2FFB05811A7 CN=Don Dominio / MrDomain RSA Codesigning CA, O=Soluciones Corporativas IP, SL, 71EFC303B79F62773A62065090629109137616DAFA38 273 Intermediate L=Manacor, ST=Illes Balears, C=ES 14F764F2A4F2DE308C97 CN=Don Dominio / MrDomain RSA DV CA, O=Soluciones Corporativas IP, SL, L=Manacor, 280BBC34A98CC79606A89690E52AB72FDC5FFF275D 274 Intermediate ST=Illes Balears, C=ES C366C4827B1656313E9790 CN=Don Dominio / MrDomain RSA OV CA, O=Soluciones Corporativas IP, SL, L=Manacor, 65E780DFFCB53870EA4ED9E184BCF9BFCA464848B4 275 Intermediate ST=Illes Balears, C=ES D27E5EEDF63918E69B3B87

CN=Don Dominio / MrDomain RSA EV CA, OU=Controlled by COMODO CA for Soluciones 7E9DDE11F7566B0FAC6228A00905A84E6360E9501A7 276 Intermediate Corporativas IP, SL, O=Soluciones Corporativas IP, SL, L=Manacor, ST=Illes Balears, C=ES 01B3E7FC832EA3B9FDA78

CN=TBS X509 CA business 2, OU=TBS INTERNET CA, O=TBS INTERNET, L=Caen, 436FED30895D6C7F0D6DC09DB621AB3B88EC6321C5 277 Intermediate ST=Calvados, C=FR 6CA6FD49D79811E2A598CA CN=TBS X509 CA persona 2, OU=TBS INTERNET CA, O=TBS INTERNET, L=Caen, B191A155D50DDAEFB12EF5F829BCCD5D9FE8A9E877 278 Intermediate ST=Calvados, C=FR 67B7374BF5C36CE740FF4A CN=TBS X509 CA pro hosting 2, OU=TBS INTERNET CA, O=TBS INTERNET, L=Caen, 052F026C1E62E697A47913E07CE24DE83C881BF300A 279 Intermediate ST=Calvados, C=FR 3CC24CC0C9D46EC8247BB F5BCF3AA7A2D161A1821204F525337C6CF949E735AD 280 Intermediate CN=TrustSign RSA DV CA, O=Ziwit, L=Montpellier, ST=Herault, C=FR 3D336E4764B25A76C2A5A 74508462A5C2A4F25BDCB55CB259310A056B7D623DD 281 Intermediate CN=TrustSign RSA OV CA, O=Ziwit, L=Montpellier, ST=Herault, C=FR 8E55351F3B42F1D32486B CN=TrustSign RSA EV CA, OU=Controlled by Comodo exclusively for Ziwit, O=Ziwit, L=Montpellier, BAC4F03DC635BDAE067F7BFE77AB06D88B5BA4668B 282 Intermediate ST=Herault, C=FR 0F46157E53D6CA9310077F 1F2028716E33584F33FA920A80247BEECDC3D7CB265 283 Intermediate CN=Gandi Pro SSL CA 2, O=Gandi, L=Paris, ST=Paris, C=FR 19554C644CE4C4C6077A9 B9F2164323638DCE0B92218B43C41C1B2B2696389329 284 Intermediate CN=Gandi Standard SSL CA 2, O=Gandi, L=Paris, ST=Paris, C=FR DB19F5CF7AD49B5CB372 CN=Comodo RSA Client Authentication and Secure Email CA, O=Comodo Limited, L=Salford, AAF25230D0301DADFB1DD57683FAD2531935E73D3A 285 Intermediate ST=Greater Manchester, C=GB 7AF91F88C2092DF64F1E55 CN=Comodo RSA Code Signing CA, O=Comodo Limited, L=Salford, ST=Greater Manchester, 5051BD69E19D6CD036147949AC5BBCF99834561F119 286 Intermediate C=GB F60DC7938248D61C77BBD CN=Comodo RSA Domain Validation Secure Server CA, O=Comodo Limited, L=Salford, 7FA4FF68EC04A99D7528D5085F94907F4D1DD1C5381 287 Intermediate ST=Greater Manchester, C=GB BACDC832ED5C960214676 CN=Comodo RSA Extended Validation Code Signing CA, O=Comodo Limited, L=Salford, FC281B1A254C2A0073D9593F182381BE2787065E3B52 288 Intermediate ST=Greater Manchester, C=GB 213454294C5C2F119537 CN=Comodo RSA Extended Validation Secure Server CA, O=Comodo Limited, L=Salford, 57D8BDCD58955A5590A57C6AAFA581ED9B96BED76F 289 Intermediate ST=Greater Manchester, C=GB AFEE969B139187C5A872C7 CN=Comodo RSA Organization Validation Secure Server CA, O=Comodo Limited, L=Salford, 72A34AC2B424AED3F6B0B04755B88CC027DCCC806F 290 Intermediate ST=Greater Manchester, C=GB DDB22B4CD7C47773973EC0 61BAD6899232F6415DE0DEA2D434EA4ECDC0F04EF3 291 Intermediate CN=Digi-Sign CA Digi-Code, O=Digi-Sign Limited, L=Dublin, ST=County Dublin, C=IE B690D7CA23D27D46BB0515 A5EB07B421DFCFED6A9C5E2E72AE7105E29AC8675A 292 Intermediate CN=Digi-Sign CA Digi-ID, O=Digi-Sign Limited, L=Dublin, ST=County Dublin, C=IE 896B2B5228E355761FAFB6 EC0E916E74ABF150D7269BA885AE6C741E487855CFD 293 Intermediate CN=Digi-Sign CA Digi-SSL, O=Digi-Sign Limited, L=Dublin, ST=County Dublin, C=IE D0021B1F9250E0F0240A4 75C155003B1141C5B09FD7DD032E2F413C47195D3B9 294 Intermediate CN=SecureCore RSA Code Signing CA, O=SecureCore, L=OSAKA, ST=OSAKA, C=JP A5DAF6C4510385CD7B0DA A7B7702BD26EF7F067A1D3975EC1720B46D6E01FD10 295 Intermediate CN=SecureCore RSA DV CA, O=SecureCore, L=OSAKA, ST=OSAKA, C=JP 1AC93422EEB0D6DE25F32 DF4ECB16110EDEAABA07A781ECB93FE354961B3131 296 Intermediate CN=SecureCore RSA OV CA, O=SecureCore, L=OSAKA, ST=OSAKA, C=JP D2DA5072D34ABE0B74D5B8 9F031ECCFFB5C5F66A2F70853820EA5AB54A7DAE1B 297 Intermediate CN=SecureCore RSA Secure Client and Email CA, O=SecureCore, L=OSAKA, ST=OSAKA, C=JP 073C067D0548D8BC74BE6B CN=SecureCore RSA EV CA, OU=Controlled by COMODO exclusively for SecureCore, F8132A3B1D19025C5E6EB3C1B76B534658C11A5BE69 298 Intermediate O=SecureCore, L=OSAKA, ST=OSAKA, C=JP 044E9D4447B579463BB45 CN=Gehirn Managed Certification Authority - RSA Code Signing, O=Gehirn Inc., L=Chiyoda-ku, 0DA819E52DD85C6BFC8899635C8BDBB6AF0FB4F283 299 Intermediate ST=Tokyo, C=JP 04AE11DB679A67EAB68ED5 CN=Gehirn Managed Certification Authority - RSA Digital ID, O=Gehirn Inc., L=Chiyoda-ku, A9BAEB6F3814B4C34310DA84DED3AC382DA012B84D 300 Intermediate ST=Tokyo, C=JP 207D4A39B1671CF581F4C1 11

CN=Gehirn Managed Certification Authority - RSA DV, O=Gehirn Inc., L=Chiyoda-ku, ST=Tokyo, 1752C219D0337019BC8C19347C9F2BBE37081FA6CC1 301 Intermediate C=JP B1B09A03758E60C307E09 CN=Gehirn Managed Certification Authority - RSA OV, O=Gehirn Inc., L=Chiyoda-ku, ST=Tokyo, B66D28CD70E6D1B321688E1C47E63C43C76AC503129 302 Intermediate C=JP 09D4E30D78F08B2ED605A

CN=Gehirn Managed Certification Authority - RSA EV, OU=Controlled by COMODO CA exclusively 96DC615D1F3DD9002EE5E628B2801EED07B91F0E45 303 Intermediate for Gehirn Inc., O=Gehirn Inc., L=Chiyoda-ku, ST=Tokyo, C=JP ACADEDEE76BC613DA06CBD

CN=CSP Code Signing Service CA 2, O=CENTRAL SECURITY PATROLS CO., LTD., L=Shinjuku- 471E5D0B8E857450C42DAF34293E839769BAAA96645 304 Intermediate ku, ST=Tokyo, C=JP 10A15A48B83336BEF0A6C CN=CSP SSL Service CA 4, O=CENTRAL SECURITY PATROLS CO., LTD., L=Shinjuku-ku, CF1F8F989F975D051A6F0D9523AE5732A3A7E2344E6 305 Intermediate ST=Tokyo, C=JP C540FBB643DE295519E67 CN=CSP SSL Service CA 5, O=CENTRAL SECURITY PATROLS CO., LTD., L=Shinjuku-ku, C169D69DD3D26D36CB82DF135C57FE336ECFF7E7EA 306 Intermediate ST=Tokyo, C=JP 401E99E3CE1917A8FB8180 CN=CSP SSL Service CA 6, O=CENTRAL SECURITY PATROLS CO., LTD., L=Shinjuku-ku, 5814E6CB54EAE95343D859992A01630F592B155AF175 307 Intermediate ST=Tokyo, C=JP 2431E3C1BF3B05562650 CN=Gehirn Managed Certification Authority - RSA DV, O=Gehirn Inc., L=Chiyoda-ku, ST=Toyko, 72AF206E42641209E9A061CBCC80BC36AF762BFFEB8 308 Intermediate C=JP 2DA87F4F42D123821904E CN=Gehirn Managed Certification Authority - RSA OV, O=Gehirn Inc., L=Chiyoda-ku, ST=Toyko, B466545141E8A179823A9F393FBB2291DF220D89068D 309 Intermediate C=JP 8A3EB14A742F8A7D3198

CN=Gehirn Managed Certification Authority - RSA EV, OU=Controlled by COMODO CA exclusively 068F2EA355607CB95D3F4A8B53C6BB111395B1833729 310 Intermediate for Gehirn Inc., O=Gehirn Inc., L=Chiyoda-ku, ST=Toyko, C=JP 2558D9082646CE5E3DEF

42E0C05A00FC2E473D8D076EFB44A7017CEFFBF6040 311 Intermediate CN=GoGetSSL RSA Client CA, O=GoGetSSL, L=Riga, C=LV 62B16ACB644EEAE1EFFFC AB289C60357ED69050DC5E99957F3164CC9CFACA3B 312 Intermediate CN=GoGetSSL RSA Codesigning CA, O=GoGetSSL, L=Riga, C=LV 43E20CB151989D76E32019 43CAC31EF8E8BA1B4B16B8206E4C0A26C5BADB2FC3 313 Intermediate CN=GoGetSSL RSA DV CA, O=GoGetSSL, L=Riga, C=LV AA09E90170E41B66C2FD64 C3AA89A4F9F70C18B0FEA5CDFDB35E487DA02C10AB 314 Intermediate CN=GoGetSSL RSA OV CA, O=GoGetSSL, L=Riga, C=LV 6D3F60DE79AD4C94AE284C CN=GoGetSSL RSA EV CA, OU=Controlled by COMODO CA exclusively for GoGetSSL, 91A321AD7FD3C9781214D76F5E28EB0D31AC86697ED 315 Intermediate O=GoGetSSL, L=Riga, C=LV F700E9AF94C7485F5B521 042119533A0DB678D0304267DF9F5F1DF197951E02F5 316 Intermediate CN=TERENA Code Signing CA 2, O=TERENA, L=Amsterdam, ST=Noord-Holland, C=NL E5DB2E60A0165802E21E D02C57C6D784BC7FF5C4D033C22CDBA5A73A2F87D9 317 Intermediate CN=TERENA eScience Personal CA 2, O=TERENA, L=Amsterdam, ST=Noord-Holland, C=NL E1D880EC78CD1AE0F8274E 316226A10D20DA2244D1DA8BC0B282835ADA97DDA9 318 Intermediate CN=TERENA eScience SSL CA 2, O=TERENA, L=Amsterdam, ST=Noord-Holland, C=NL 4F90153C3CBF9FD508F3FB 104515409457080DB20A2E921F47BBD6AFA777559AD 319 Intermediate CN=TERENA Personal CA 2, O=TERENA, L=Amsterdam, ST=Noord-Holland, C=NL BBD97CFC2AD9D7B413B63 2FF1832DE6F9506AAC9D2C7757EA075764EC68CC9C 320 Intermediate CN=TERENA SSL CA 2, O=TERENA, L=Amsterdam, ST=Noord-Holland, C=NL 70A0ECE33ECC61607CBE43 D1CC0B38906B79D2DFF808706611CA14C74D7F9679B 321 Intermediate CN=Ensured Root CA, O=Ensured B.V., L=Heerhugowaard, ST=Noord-Holland, C=NL 8F8E48E7721D102D00EC4 22A066689AC91C797D970146B0BC138E1703B9DAABA 322 Intermediate CN=Ensured Root CA, O=Ensured B.V., L=Heerhugowaard, ST=Noord-Holland, C=NL 48165FD2561792CB70292 CN=DOMENY CODE SIGNING Certification Authority, O=DOMENY.PL sp. z o.o, L=Kraków, 56ED86ED869AB8863116886312BB9915B89D99A45623 323 Intermediate ST=Małopolskie, C=PL E0F065F81CBD56937919 CN=DOMENY SSL DV Certification Authority, O=DOMENY.PL sp. z o.o, L=Kraków, 194CC2B5B06493C0EF0B0A9FA8376F958BE242A274A 324 Intermediate ST=Małopolskie, C=PL DA974ACBC9102336878DC CN=DOMENY SSL OV Certification Authority, O=DOMENY.PL sp. z o.o, L=Kraków, 9B22E7FA08D3F8C6D6E9F420D8F756C79135E66D1B2 325 Intermediate ST=Małopolskie, C=PL D70B07903721F03DBE5B6

CN=DOMENY SSL EV Certification Authority, OU=Controlled by COMODO exclusively for 21EE6D4F5FEE485AC7A035F1D65DE2FC4DD0ED2897 326 Intermediate DOMENY.PL sp. z o.o, O=DOMENY.PL sp. z o.o, L=Kraków, ST=Małopolskie, C=PL ACDC2A3B679C04D4599AE8

CN=MarketWare Secure Email / Client Authentication CA 2, O=MarketWare - Soluções para FBB777AC8CDCCF7993EF3924FF8CD09F95FB167390 327 Intermediate Mercados Digitais, Lda., L=Lisboa, ST=Lisboa, C=PT A78CC1F3C852C1F15A66D3 CN=MarketWare Server CA 2, O=MarketWare - Soluções para Mercados Digitais, Lda., L=Lisboa, 65CF938FD9FB34200C9F6DF93DED73AA5B71C369CC 328 Intermediate ST=Lisboa, C=PT 74A7C491F0E47A1D5E74BE

CN=MarketWare - Soluções para Mercados Digitais, Lda. RSA DV CA, O=MarketWare - Soluções 722D50874DA45496D0299627409777603A87341A5F943 329 Intermediate para Mercados Digitais, Lda., L=Lisboa, ST=Lisboa, C=PT B889C32E7B9280A8F71

CN=MarketWare - Soluções para Mercados Digitais, Lda. RSA EV CA, OU=Controlled by 4B2B72BA0BE27A63478C273A0C5B52F69B89E3699AA 330 Intermediate COMODO exclusively for MarketWare, O=MarketWare - Soluções para Mercados Digitais, Lda., D4F3A1A0EAFE66B995265 L=Lisboa, ST=Lisboa, C=PT

CN=RU-CENTER High Assurance Services CA 2, O=RU-Center (ЗАО Региональный Сетевой 2028B5221DE277EF1E961F4E3182A3C500EE5AA67BF 331 Intermediate Информационный Центр), L=Moscow, ST=Moscow, C=RU 5B544D3A6D58A5EA6777D

CN=SSL.com Premium EV CA, OU=www.ssl.com, OU=Controlled by COMODO exclusively for 3ABD349D7FE14305E695241234F9FF94AE821ADF446 332 Intermediate SSL.com, O=SSL.com, C=US 7BC1607A13E112F5EA767 2BF4F1B4040DBC290C17AF1C177415B15DE7B7A05E5 333 Intermediate CN=SSL.com Client Authentication and Email CA, OU=www.ssl.com, O=SSL.com, C=US D693D1AADB349199E9271 BC923E9C7BEBE53F55C9732B16F51D53B7720339A44 334 Intermediate CN=SSL.com DV CA, OU=www.ssl.com, O=SSL.com, C=US 81B4281A4013F66299FB6 723E1F89EAAAC0F56B9F9385F1312F6CDBD75454069 335 Intermediate CN=SSL.com High Assurance CA, OU=www.ssl.com, O=SSL.com, C=US 7BA46340DF2AE30EA59E7 DC85B8A7DF3B1862174AA6FC97143C9E9CC22D6F19 336 Intermediate CN=SSL.com Object CA, OU=www.ssl.com, O=SSL.com, C=US A776D5C57E5C1DF700D951 2C73EE9A52FFAD07166B8728D7681D8CBEFD99A9066 337 Intermediate CN=SignSec Certification Authority, OU=SSL Department, O=FBS Inc, L=Irvine, ST=CA, C=US 3345B25AACF9B1EF1F333

12

CN=SignSec High-Assurance OV Authority, OU=SSL Department, O=FBS Inc, L=Irvine, ST=CA, 7753300564AC665D56FEF5BDAFD99C88A731C21EAD 338 Intermediate C=US 8E3996CB373E79ADFDBFDC 79D778924FD08F715312E57E107566A8161EA1E68649 339 Intermediate CN=CertAssure RSA Client Personal ID CA, O=CertAssure Inc., L=San Jose, ST=CA, C=US BD45EA89184AA62EA31E F350DA861B51D170567DBCE0DE7BF66BB3340DFC45 340 Intermediate CN=CertAssure RSA Code Signing CA, O=CertAssure Inc., L=San Jose, ST=CA, C=US 96216310D4662BC1DEA058 CN=CertAssure RSA DV Secure Server Certification Authority, O=CertAssure Inc., L=San Jose, 8756FAFEFB0A79D8FF361C7FE3A4DB3F9AD5206552E 341 Intermediate ST=CA, C=US 71A495DF98A33CE65693C CN=CertAssure RSA OV Secure Server Certification Authority, O=CertAssure Inc., L=San Jose, 7BD0BD77B4FB8B6F82533E4ECEC3C7565EB520A3F5 342 Intermediate ST=CA, C=US 3549C17AB125357FFF4C5A

CN=CertAssure RSA EV Secure Server Certification Authority, OU=Controlled by COMODO 04C406F14805239AD9AA730E40430984250626372304F 343 Intermediate exclusively for CertAssure Inc., O=CertAssure Inc., L=San Jose, ST=CA, C=US 78883C8B2EEC4E1F0EC

CE10391216ADA46C376B7333715777A792D8D422BD7 344 Intermediate CN=McAfee Client/Email CA 2, O=McAfee, Inc., L=Santa Clara, ST=CA, C=US C5E06FE2EB795A00DC7EC 537F60B88A3176F4B2156747DB71F7E2C106684526D9 345 Intermediate CN=McAfee Code Signing CA 2, O=McAfee, Inc., L=Santa Clara, ST=CA, C=US FA7F526B6E9144178B55 D95123195FA02C1CC40573336E64C8DFA210B1773E3 346 Intermediate CN=McAfee OV SSL CA 2, O=McAfee, Inc., L=Santa Clara, ST=CA, C=US C6110B6EB26E5437E23A5 FF912D5403FDA6CBB1A724BEB60B4AD1B4F9BE5945 347 Intermediate CN=BlackCert, Inc. RSA Client Certification Authority, O=BlackCert, Inc., L=Denver, ST=CO, C=US 25EE1F16488C039F38D2EE CN=BlackCert, Inc. RSA Codesigning Certification Authority, O=BlackCert, Inc., L=Denver, ST=CO, EDB7353E1811E5F37851C620CFC7D45AE828899EB05 348 Intermediate C=US 77E4FE77674C868DCB890 249BE65F0C7AB0FE3B7648B30CE0EB3CF691402C72 349 Intermediate CN=BlackCert, Inc. RSA DV Certification Authority, O=BlackCert, Inc., L=Denver, ST=CO, C=US DACB40CF14629C603CBA36 3284E035CCD71F7A1D063AE98E29B1E5912311AD9F6 350 Intermediate CN=BlackCert, Inc. RSA OV Certification Authority, O=BlackCert, Inc., L=Denver, ST=CO, C=US D911884CAF9D771D37C4D

CN=BlackCert, Inc. RSA EV Certification Authority, OU=Controlled by COMODO exclusively for EBE0015EF641C480954ED2A68842FCCD2A8A79213AE 351 Intermediate BlackCert, Inc., O=BlackCert, Inc., L=Denver, ST=CO, C=US ED836DDFA6282E8EA8F6A

CN=TrustOcean EV SSL CA - RSA - 2019, OU=RSA Extended Validation Secure Server - 2019, 3131FFDBD967D7CD1D77742AF9772F1051FF4C9AE41 352 Intermediate OU=Controlled by Comodo exclusively for TrustOcean Ltd., O=TrustOcean Ltd., L=Denver, ST=CO, 3759F434FE1E811119E03 C=US CN=TrustOcean SSL CA - RSA - 2018, OU=RSA Domain Validation Secure Server - 2018, F6E8EC9B00775CC367103693A00156FFA5AB844E640 353 Intermediate O=TrustOcean Ltd., L=Denver, ST=CO, C=US 7B1D2853B0841F451946F CN=Trusted Secure Certificate Authority 5, O=Corporation Service Company, L=Wilmington, 14363822517E2989B087D0C9A42EEF134A774BD0B2A 354 Intermediate ST=DE, C=US 0664D455AF784BC08F4D0 CN=Trusted Secure Certificate Authority DV, O=Corporation Service Company, L=Wilmington, 583453EC0ADD8526801E62FB85078F0B24845F0B6761 355 Intermediate ST=DE, C=US 2830DDA97EC0E829F41D 3BF7CF4B61923BAE75A7C257F55070003ECF727E1CD 356 Intermediate CN=GlobeSSL DV Certification Authority 2, O=Globe Hosting, Inc., L=Wilmington, ST=DE, C=US A6B9FCB8551FC649D6FEB 9FA9FCB500F1A98355099F70034CF0D2EE743ABA63F 357 Intermediate CN=GlobeSSL OV Certification Authority 2, O=Globe Hosting, Inc., L=Wilmington, ST=DE, C=US 6EB67D55685EA9065328B

CN=GlobeSSL EV Certification Authority 2, OU=Controlled by COMODO exclusively for Globe 3FBA0AA49FBDE1C814CA830878ED03C7D24323F6348 358 Intermediate Hosting, Inc., O=Globe Hosting, Inc., L=Wilmington, ST=DE, C=US 3E52DEE8FF42C153C234F

13C6B7395BC64FC06CEF2CE53F66D4B9800C52CD88 359 Intermediate CN=K Software Certificate Authority (DV) 2, O=K Software, L=Ashland, ST=KY, C=US 16EE37532F3AB24B8165CC E942FF83F633A08DBD65E43B5719A4340DE13DB7C61 360 Intermediate CN=K Software Certificate Authority (OV) 2, O=K Software, L=Ashland, ST=KY, C=US BD6A87CDCB0BA9875A968 51911C02598A39A245594A781768F9503C546B3EEDB1 361 Intermediate CN=InCommon RSA Code Signing CA, OU=InCommon, O=Internet2, L=Ann Arbor, ST=MI, C=US B7261AFE0FA436E3374F 0A05C462756390DD1F1D5DD82794C300F04BE789DCE 362 Intermediate CN=InCommon RSA Server CA, OU=InCommon, O=Internet2, L=Ann Arbor, ST=MI, C=US 76D7E312F790D68FD385A B1774F9B26B4E2D5F751713600FFEB163B34CB7A14C 363 Intermediate CN=InCommon RSA Server CA, OU=InCommon, O=Internet2, L=Ann Arbor, ST=MI, C=US 2C079704E95364FBCCA49 CN=InCommon RSA Standard Assurance Client CA, OU=InCommon, O=Internet2, L=Ann Arbor, 64991B6986B22CF00649DAF8FA922ED9A14DC8305CC 364 Intermediate ST=MI, C=US E7CD8372CBF4865E6AF35 CN=KeyNet Systems RSA Codesigning CA, O=KeyNet Systems LLC, L=Las Vegas, ST=Nevada, EE0F647B0379D3E4BD24B4CDA6F8707B67C44D5511F 365 Intermediate C=US 5A25B31DD2993ED13B991 C5C5FCAF6E4BD0AD95BD8BEBD1AEBF165D1DBF449 366 Intermediate CN=KeyNet Systems RSA DV CA, O=KeyNet Systems LLC, L=Las Vegas, ST=Nevada, C=US A812F12C1AB6EAB6CC7915E F6E9CEB1F3C3689851F886055531DA72ED0BC5E56D1 367 Intermediate CN=KeyNet Systems RSA OV CA, O=KeyNet Systems LLC, L=Las Vegas, ST=Nevada, C=US 64925B3AE7FDCE8717D70 CN=USERTrust RSA Client Authentication and Secure Email CA, O=The USERTRUST Network, 433D103DE099CC3F3414D004F870F4DA5C9E7F41A48 368 Intermediate L=Jersey City, ST=New Jersey, C=US BA8ACBAF3F91EEFCB0D60 CN=USERTrust RSA Code Signing CA, O=The USERTRUST Network, L=Jersey City, ST=New 9210D3FEB6B1F01ECAF8C7261125758905BF887E8D0 369 Intermediate Jersey, C=US B28248CA7FA7284C2F739 CN=USERTrust RSA Domain Validation Secure Server CA, O=The USERTRUST Network, 6EE065AF58B7043CB2372FC6639E3486304FCD094D9 370 Intermediate L=Jersey City, ST=New Jersey, C=US CB6838D76A88CE20C30DD CN=USERTrust RSA Extended Validation Code Signing CA, O=The USERTRUST Network, 3EED76DB0A40CBD196DE4FB27CA40480D2A42ACE25 371 Intermediate L=Jersey City, ST=New Jersey, C=US FF36291EE1DA1028D61907 CN=USERTrust RSA Extended Validation Secure Server CA, O=The USERTRUST Network, 125A5FD7C640D5E59F5CE5763CD8C932F5E597DDDC 372 Intermediate L=Jersey City, ST=New Jersey, C=US 4EAF1D59667CF4B556A237 CN=USERTrust RSA Extended Validation Secure Server CA, O=The USERTRUST Network, 5367692ECE62B758D04D9B7E6DFB0DB307F859EBC6 373 Intermediate L=Jersey City, ST=New Jersey, C=US A6CB5F77FF24561D7CC004 CN=USERTrust RSA Organization Validation Secure Server CA, O=The USERTRUST Network, 2E4A61E5238E556E8CEDBCC0B4F3DE2178245664A0 374 Intermediate L=Jersey City, ST=New Jersey, C=US BE195B3855B4C85DBDEEFF CN=The University of Texas at Arlington RSA CA, O=The University of Texas at Arlington, 0B38AAE67FA3E9F6D320FE10B9533D8B7AE826435FF 375 Intermediate L=Arlington, ST=TX, C=US C3B16602F87B6942CCC24

13

CN=The University of Texas at Austin RSA CA, OU=Information Security Office, O=The University C368BAACDAB6C34A523E57F39FE071DE85A6D1AED 376 Intermediate of Texas at Austin, L=Austin, ST=TX, C=US FD1DDBD22FABB4B70DA5F41

CN=The University of Texas-Pan American RSA CA, OU=Information Technology, O=The 920CBCE9BD55D3CA8D446808A59EDF3C222AD5767A 377 Intermediate University of Texas-Pan American, L=Edinburg, ST=TX, C=US 4453C686EE3C6F94F55BCE

92C748ECD127AE6055B1808464F3BB113CC51AE0073 378 Intermediate CN=cPanel, Inc. Certification Authority 2, O=cPanel, Inc., L=Houston, ST=TX, C=US 591B3681EC527C617CC80

CN=The University of Texas Health Science Center at Houston RSA CA, O=The University of Texas 029523842D23EF395F5729E352522F80426585180BD36 379 Intermediate Health Science Center at Houston, L=Houston, ST=TX, C=US 768C1ACADD22D8EA7DA

CN=The University of Texas at Dallas RSA CA, OU=Information Security Office, O=The University C18C5714E486189DD2C3E6F563C5A97434D0CE0A539 380 Intermediate of Texas at Dallas, L=Richardson, ST=TX, C=US 330F23F58213EB8568AB2

CN=University of Texas Health Science Center at San Antonio RSA CA, O=The University of Texas 2D06B1B5E7350D949A0BD58053DFED6F0260AE5315D 381 Intermediate Health Science Center at San Antonio, L=San Antonio, ST=TX, C=US 4132A0CC83FF0895C93CA

1AD51684198AF91EA2439DB9C79203F47A749EBD896 382 Intermediate CN=Network Solutions DV Server CA 2, O=Network Solutions L.L.C., L=Herndon, ST=VA, C=US 279B77DC627F83FFE49D6 DE2CCB08746EAF02998E6C95E24A3D2CFB6FF4A3D4 383 Intermediate CN=Network Solutions OV Server CA 2, O=Network Solutions L.L.C., L=Herndon, ST=VA, C=US 1EAFBF83FD570066F2F2A8 CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The 43F257412D440D627476974F877DA8F1FC2444565A36 384 Root USERTRUST Network, L=Salt Lake City, ST=UT, C=US 7AE60EDDC27A412531AE 84DC1F4F25046096E8CADBEE53AC716A6EECA1B8FA 385 Intermediate CN=AusCERT Client CA, OU=Certificate Services, O=AusCERT, C=AU 96644CEEBD927D3AFBA7F2 CN=TrustSign BR Certification Authority (S/Mime), OU=Security Dept., O=TrustSign Certificadora D1D60A98435111BFB5E455BE39CA6984CA8CB516FD 386 Intermediate Digital, C=BR ABE71EEAD40400F3956F9E CN=SSL Blindado e-mail, OU=Certificação Digital, O=Site Blindado S.A., L=Sao Paulo, ST=SP, 5A2431CB0AB9F9583F9004C3DCDABE99A48E7D50C2 387 Intermediate C=BR 647BD0D33B415F940F7DA7 F68A23EB9737A8C744EE67112F2FC024AADC503BBB 388 Intermediate CN=The Code Project Secure Email (S/mime) CA, O=The Code Project, C=CA B04F25CDED4F2576C93485 057BA7D3C8E1FF28905A02932D8AB11E644F9E10A55 389 Intermediate CN=icewarp.com (IceWarp SMIME Certification Authority), O=IceWarp Limited, C=CY 11EB4493496B007CE883C 2618C415C146BA98A5F0AD7EA498AA58780BA55FA8E 390 Intermediate CN=EuropeanSSL Client CA, O=EUNETIC GmbH, C=DE 3B072D13C330D41010717 4F2C0C1701BDE01B6BEEDA6D17C336042421AF73117 391 Intermediate CN=GlobalSSL Secure E-Mail and Client Authentication CA, O=GlobalSSL, C=DE 063347F7E97B76AD897F5 B9648E456BFD1A8D902CA086A8D37BD610671074973 392 Intermediate CN=Signtrust CERT Root CA 5:PN, O=SCA Deutsche Post Signtrust und DMDA GmbH, C=DE F32C37F62669ACDA9BBF8 E81049211150E411860ECA1C53A0C70319DACFEDBD 393 Intermediate CN=WebSpace-Forum Client CA, O=WebSpace-Forum, Thomas Wendt, C=DE 0F9E3E59DE84BDCF743464 CN=PSW GROUP Secure E-Mail and Client Authentication CA, OU=http://www.psw.net/, O=PSW 485ACD317A0B8C8F9AD440FAB45F33D87484AC5170A 394 Intermediate GROUP, L=Fulda, ST=Hessen, C=DE A45AC43C5A020EF615164 F017E510918B77DA67E4D020E2B76A42461876E822F6 395 Intermediate CN=Gandi Secure Email CA, O=GANDI SAS, C=FR 20C5573BCBC3BBB37406

CN=TBS X509 CA institutionnel, OU=TBS INTERNET CA, OU=Terms and Conditions: 149A19E10DB9935D1579C2C5C5EC9E80B6BE396285F 396 Intermediate http://www.tbs-internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR 1517C19FA07F8286E6070

CN=TBS X509 CA persona, OU=TBS INTERNET CA, OU=Terms and Conditions: http://www.tbs- 4B05D5DFCC6EE6675DD2EBAD632B020846A5CD9EF0 397 Intermediate internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR 7AB9CC03853CED4A42728B

99E7B2B5B581154D0B18AFBF98526DB984BFE8C525A 398 Intermediate CN=Formidable CA Services Personal Validation, O=Formidable CA Services Ltd., C=GB 3BD7DE9424087E0263445 CN=COMODO Client Authentication and Secure Email CA, O=COMODO CA Limited, L=Salford, 17E7BD3805BEA35A1BC27062A9B014E93BD5FED7003 399 Intermediate ST=Greater Manchester, C=GB 97C10B7D6EDFAF812B7F8 CN=COMODO/HP Secure Email CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, FD029ADE3F7A80A98D6FFFC9429046585EF1D8CB819 400 Intermediate C=GB 3A17F6214317D0652D7C3 CN=COMODO/PKWARE Secure Email CA, O=COMODO CA Limited, L=Salford, ST=Greater C0A1CA36475D33B471E4E58E5574DD9294D354C4572 401 Intermediate Manchester, C=GB 95954DB555B24EAD2AA4B

CN=Digi-Sign CA Digi-ID Xp, OU=Terms and Conditions of use: http://www.digi-sign.com/repository, 4709D81E77C0990C38EC8D4577701F9753BAC0723A7 402 Intermediate O=Digi-Sign Limited, L=Dublin, ST=Dublin, C=IE ECD90706F8FF5568F5BB8

B8E245058AE555E096B0E01366A7009DF3E7DFD71F6 403 Intermediate CN=SecuriMail SSLGenie, OU=http://www.sslgenie.com, O=MindGenies, L=Noida, ST=UP, C=IN 5F9D1678C8E7104A55AAF 5CBA97D78652A5A323905DD8030F06A7F29FDB68B36 404 Intermediate CN=ASJ Certification Authority, O=Admiral Systems Inc., C=JP C52FE98BF1897CC7CC3FA 90F5A5C17CB9B1B0B221084AA9A42CEE42B6BCFC25 405 Intermediate CN=CSP SSL Service CA, O=CENTRAL SECURITY PATROLS CO., LTD., C=JP 9B2E061E10205808D7C264 F64FD4856765CCDE491A58550C1B4E1FE02A889B0F2 406 Intermediate CN=eBiz Networks Certificate Services, O=eBiz Networks Ltd, C=KR B4ECD704E717A78881D6A 5F0A35BA4F84A65F68B16D4A33F6517C097708393EA 407 Intermediate CN=SGTRUST EMAIL AND CLIENT CA, O=SGssl, C=KR AFD2856FB9A93418719F4 805C85D6316D1223F8A7CA82C1258D96F9E1B0EC76D 408 Intermediate CN=Flextronics Client CA, O=Flextronics International, L=Ebene, C=MU 9DF0C83282A7AC3CA164A F405077C7174703B9781C79544A7BE994263854D1517 409 Intermediate CN=TERENA eScience Personal CA, O=TERENA, C=NL 3E61A8D19A28CF7A4AB1 62616E9B11BD0E3A358360C83B78DBC5BEEA575C90 410 Intermediate CN=TERENA Personal CA, O=TERENA, C=NL B97E68244833FB30437C6B CN=MarketWare Secure Email / Client Authentication CA, OU=Certificate Services, O=MarketWare, 42F65B0AE9464D507C3A1980EBAC695B20FBAD0C153 411 Intermediate C=PT 6498AA8B1C846A728A287 CN=GLOBE SSL SECURE EMAIL CA, O=GLOBE HOSTING CERTIFICATION AUTHORITY, 8F7240F160936F1FD406BF028B35B5D609B64B3BD0E 412 Intermediate C=RO 31E13CC6DD9AB7CA12E6F

14

5B521127B62E3CDF9AA48D27A819929120841F2CB6B 413 Intermediate CN=RBC HC Client Services CA, O=RBC Hosting Center, C=RU 9A2D6CC2B9CD7F41DAD80 06A7B450F163DFD7846E535FDC6F78081C83F44229E 414 Intermediate CN=AddTrust Class 1 CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE F0135C26BC48C8C03C48E CN=Coöperatieve Spaar- en kredietbank Godo G.A. CA, O=Coöperatieve Spaar- en kredietbank 92D350BA9597EB4AD98C0F74769B5D3EA2F3BBB7CF 415 Intermediate Godo G.A., L=Paramaribo, C=SR D4095A67EE9CF4FC0B7B7C BC375012EF6B4B2F7E8D21246D910295CC2C75E42EA 416 Intermediate CN=GlobalTrust Client Signing CA, OU=Client Signing CA, O=Global Digital Inc., C=TW 50D7FBCD12715A1E492CD CN=CoSign Certificate Authority by ARX, OU=The CoSign Trust Network, OU=www.arx.com, 8807D5F73348A3D883363276CC84161430E6E16C86A5 417 Intermediate O=ARX (Algorithmic Research), C=US 6238E6439CE57888BA14 E904A057D839BCBE631092B4215DD8CC4F8849BA87B 418 Intermediate CN=DREAMHOST SECURE EMAIL CA, O=DREAMHOST CERTIFICATION AUTHORITY, C=US 51AAF2728B71E64ACE751 15938E1984FAF8DE10BD3DCE4EA8553594B6AFDE50 419 Intermediate CN=GlobeSSL CA, OU=GlobeSSL Client Auth Certification Authority, O=Globe Hosting, Inc., C=US 7AAB43D1968CE1208E9BF4 3C792601DA481A5BCAC32F563EED5E77E5E2726D76 420 Intermediate CN=InCommon Standard Assurance Client CA, OU=InCommon, O=Internet2, C=US CDF507B44E3CB752F6C207 A7EA6F189531567AB42D64A58ABAC3C263715DFE57E 421 Intermediate CN=NYSE Euronext, O=NYSE Euronext, Inc., C=US 5A1F5A43671205E76B1F5 7F62FF73B54E2C2912C3CBE5D31369958E134AA0DC 422 Intermediate CN=Registry Pro CA, O=Registry Pro, C=US C6A15647102E8E5A371255 0BBAC5CEB39A41B6F74FB1A14705E194C9391FB31B8 423 Intermediate CN=SSL.com Client Authentication and Email CA, O=SSL.com, C=US 376B9D5AA059132EFA91C F1E72183C28B10C62B4BC19E97D121C00C36E69D7B 424 Intermediate CN=SSL.com Client Authentication and Email CA, OU=www.ssl.com, O=SSL.com, C=US BA82412A143D07911445DD 59E6D1C051D70281F94496DDB5A19500132F3607E7A2 425 Intermediate CN=The University of Texas at Arlington CA, O=The University of Texas at Arlington, C=US 02CF53958F546B37DB87 CN=The University of Texas at Austin, OU=Information Security Office, O=The University of Texas 5291F423F819AA3652A8705025B8854C775EF0DC6F41 426 Intermediate at Austin, C=US 7721051C8600BAF6CB66 CN=The University of Texas at Dallas CA, OU=Information Security Office, O=The University of BFCC6EC4080AF177DE67549E0DA8A003D2FA19663D 427 Intermediate Texas at Dallas, C=US 39C2F5DC85454E7D4EB0C2 CN=The University of Texas Health Science Center at Houston CA, O=The University of Texas 1F72D672ED9770586F7131D46F906EFFADB53FFD967 428 Intermediate Health Science Center at Houston, C=US 5787A2D9EFBFCB92C893B CN=The University of Texas Health Science Center at San Antonio CA, O=The University of Texas B7FCDBE6A4377E49D32F88153F7F4D1C34D05440C4E 429 Intermediate Health Science Center at San Antonio, C=US 365960A65D5A1E3786C31 CN=The University of Texas-Pan American CA, OU=Information Technology, O=The University of 5827E6A517C96B12485C7F247522BE95E119DAA81ED 430 Intermediate Texas-Pan American, C=US EFDA1496B694D5F10FAFE 6A8BC98C527338344B3D849909C57D206636A8920575 431 Intermediate CN=WoSign Client Authority, O=WoSign, Inc., C=US 0783DC9139961420E1E2 29F7C8E81F37F778383F6D2EA223035C1688B5994758 432 Intermediate CN=WoTrust Client Authority, O=Wotone Communications, Inc., C=US 8A71D0C1F4787E3EE0B2 FE333670664A02CBA1037CAE5EEE327D412956BCCE 433 Intermediate CN=Open Finance Network, O=Open Finance Network, postalCode=28203, C=US 5743BD9BF92BE18031887A 37154708E5109A915877C35C086777500DA5A223B181 434 Intermediate CN=McAfee Client/Email CA, O=McAfee, Inc., L=Santa Clara, ST=CA, C=US 92009BD2F40810F7E789 9F3122596C388C8B2867BD86F22395AEFD8C5BAE20A 435 Intermediate CN=Southbridge Savings Bank CA, O=Southbridge Savings Bank, L=Southbridge, ST=MA, C=US E65DB72D0364F429ED4B0 CN=State of Oregon Office of State Treasurer CA, OU=Office of State Treasurer, O=State of 4B3EEC502338390167E6E81DA2F267A3A7F650186842 436 Intermediate Oregon, L=Salem, ST=OR, C=US B4E2AD849DECB95F4E32 CN=Harleysville Savings Bank CA, O=Harleysville Savings Bank, L=Harleysville, ST=Pennsylvania, B99015F2B3E325FFB67D9CB156F57AA944A1614E7C5 437 Intermediate C=US 7EB4AF941BC426605C749 E6E3B1804D0D363D177BCABE540E05F828BB423AE59 438 Intermediate CN=BankNewport CA, O=BankNewport, L=Middletown, ST=Rhode Island, C=US 9226DF6CA0067B0DAE5F7 C3815B65AE9C6D87F2E519D68F66AB0A6EE0DAC736 439 Intermediate CN=Heartland Payment Systems CA, O=Heartland Payment Systems, L=Frisco, ST=TX, C=US 8EA044E2FB4E59F8C8CD45 6A092770C0F4D3EC728F465A6CD28B38B43F23F7295 440 Intermediate CN=ReliaSite Trusted ID CA, O=ReliaSite, LLC, L=Cheyenne, ST=WY, C=US EA33FA503F158E4AFAB24 CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, 6EA54741D004667EED1B4816634AA3A79E6E4B96950 441 Root L=Salt Lake City, ST=UT, C=US F8279DAFC8D9BD8812137 B2EBFEF062395EA2DC8BCD5817CC6170EB0B53AF5F 442 Intermediate CN=AusCERT Server CA, OU=Certificate Services, O=AusCERT, C=AU 640819BFAF0D0C85200F4F BD31FA39DC84297F53BD22D7B9C203C86B2E3AA778 443 Intermediate CN=The Code Project Premium SSL Security CA, O=The Code Project, C=CA 6A6950915C8761C2AEDE96 3012BE2E9ADC29F436B251E1D09114134B356A56506 444 Intermediate CN=The Code Project SSL Security CA, O=The Code Project, C=CA A39A98E9127AEE8A28340 0B24C30485258D4AD9042BD29FCE773568EF6C427F7 445 Intermediate CN=EuropeanSSL High Assurance Server CA, O=EUNETIC GmbH, C=DE B266CD1DDAE08AC123F2E 9E00D24964FF1CE6BD64116A1E352CE01BD3CECABB 446 Intermediate CN=EuropeanSSL Server CA, O=EUNETIC GmbH, C=DE BB529A9E53F5A89D7C188D BD9513FE089D44F802F4B3953AABA65D4C7656849B8 447 Intermediate CN=GlobalSSL Domain Validation SSL CA, O=GlobalSSL, C=DE 21329C4601895C8192AEE 5E4398C07B51539B4997CBB0198E722F6D7B879C5F7 448 Intermediate CN=GlobalSSL Organization Validation SSL CA, O=GlobalSSL, C=DE 349364ECFB34C022C5737 C6CDDDF08CAEA218F8664254641E96C33145DF7954 449 Intermediate CN=WebSpace-Forum Essential CA, O=WebSpace-Forum e.K., C=DE C5F765780342BF2A043894 C12799CA2DD2D122612D1E3DEDCD3AE2051ABD0EE 450 Intermediate CN=WebSpace-Forum Server CA, O=WebSpace-Forum, Thomas Wendt, C=DE D237EBEFC9DF8A6FA495197 302C1506AEA14DF6BEB6CA4EDFE9BFDE430B94DC1 451 Intermediate CN=Gandi Pro SSL CA, O=GANDI SAS, C=FR 800635AE30CF32339B39E8F 25C205E29B2E94215705C41125C8AA2C295BFF059CA 452 Intermediate CN=Gandi Standard SSL CA, O=GANDI SAS, C=FR 8E33E0BB2FD9B7A0B719A

15

305EF601C7364138603C8C0965229EDFFD27961584D2 453 Intermediate CN=OVH Secure Certification Authority, O=OVH SAS, OU=High Assurance, C=FR 7C769F5C5FD38D41DAF3 451D4BB1DE5B3E9F60D4D5F2AF05ABF1485F23F6542 454 Intermediate CN=OVH Secure Certification Authority, O=OVH SAS, OU=Low Assurance, C=FR 28AB867A8EAA063817626 CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater 665C4DE8D0F419377345E228736143EF648BD727119E 455 Intermediate Manchester, C=GB 60D32F50DCF1FE83864B CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, ST=Greater B00DAA3BE3630F729834AADBDEE5A19C5538F916556 456 Intermediate Manchester, C=GB 425F83669B0CDC45B3590 779CB35726297A2CAF8139628357AAB257DAE513E7A 457 Intermediate CN=COMODO EV SSL CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, C=GB EE35E1956258C41B75CA7 395820494E7132A94A2F2317D974A81B13A0519C31E7 458 Intermediate CN=OptimumSSL CA, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB 5DEFE851ACC95C27E056 E8EB600F62046E372DB8180BA38FD9F23F83A8690B9 459 Intermediate CN=PositiveSSL CA, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB 10AD18458B2255C8D8C52

CN=Digi-Sign CA Digi-SSL Xp, OU=Terms and Conditions of use: http://www.digi- CCB7410DA7CA0E512E4EF8A28D0F50444FE33F368B8 460 Intermediate sign.com/repository, O=Digi-Sign Limited, L=Dublin, ST=Dublin, C=IE 05851CE27F4DA3CE9E1F8

CN=Digi-Sign CA Digi-SSL Xs, OU=Terms and Conditions of use: http://www.digi- CD4CA7AF910D112A4C885EF65BF5B2111C8AB0B6E4 461 Intermediate sign.com/repository, O=Digi-Sign Limited, L=Dublin, ST=Dublin, C=IE 416304C5F860ABAC2EDB8A

CFDFC091644220D57EAA2033108509C9D1624860FBA 462 Intermediate CN=Flash SSLGenie, OU=http://www.sslgenie.com, O=MindGenies, L=Noida, ST=UP, C=IN 77EC4D47D1D6A97BA4D99 23EB8063169E3E6CEF17F5FDDA7CBEB558447B041D 463 Intermediate CN=Premium SSLGenie, OU=http://www.sslgenie.com, O=MindGenies, L=Noida, ST=UP, C=IN 88C6E32CE8F51725A23BB1 8E6B09A023A1C80F3D038470FFC2EE1D61220767C0F 464 Intermediate CN=ASJ Certification Authority, O=Admiral Systems Inc., C=JP A945FC16C3752DD4F44AC D412950CFCEE6A277C02BC77BD2ABA6F85194030D0 465 Intermediate CN=CSP SSL Service CA, O=CENTRAL SECURITY PATROLS CO., LTD., C=JP E6101ADF5B13A20C8BF232 2BB0F546FFC8DCF768C5C99B4C9CA10A79902E1C23 466 Intermediate CN=CSP SSL Service CA, O=CENTRAL SECURITY PATROLS CO., LTD., C=JP 3723FE8B3AAEA88D970406 46027AC87577E136B691EA8694169B56512CF7117E93 467 Intermediate CN=eBiz Networks Certificate Services, O=eBiz Networks Ltd, C=KR B58F2C5EF4358B2D5E98 362BACE8985C4D7C06D4BB083AE25488615745A245A 468 Intermediate CN=eBiz Networks Certificate Services, O=eBiz Networks Ltd, C=KR 0A9F79CAB2136808ECA0A 5B63BC301288AD116C215C972B086DF866AB058F22B 469 Intermediate CN=SGTRUST CERTIFICATION AUTHORITY, O=SGssl, C=KR ABFE83E65E2D68B7AF2BE C2A26A69FC6660945A89BF616A1E8E2B379FC33233B 470 Intermediate CN=TERENA eScience SSL CA, O=TERENA, C=NL BAFF8BDA889D73A3B3852 5C428B013B2E3F0D30ABB5BEBD92D066DC06DC2233 471 Intermediate CN=TERENA SSL CA, O=TERENA, C=NL 29EB0FC735609946CF8E1C 77EDDB158A350AAA23F07BFACF12A1669F6EBD3DA9 472 Intermediate CN=GLOBE SSL CA, O=GLOBE HOSTING CERTIFICATION AUTHORITY, C=RO 83D3480DB31B1F0D48F8FA CN=GLOBE SSL Domain Validated CA, O=GLOBE HOSTING CERTIFICATION AUTHORITY, 620DF0041152B190980B8258A07FBFE1E348958493FB 473 Intermediate C=RO 8C5F0F0CF2A528E7A57A BB29621269E943B52E785E3FE9150C63DADB190C8E2 474 Intermediate CN=RBC HC High Assurance Services CA, O=RBC Hosting Center, C=RU CFD1F4550D1EE04113E5D A3794D33BCB881CAA6B4065480AD8D1B468CE4C924 475 Intermediate CN=RBC HC Low Assurance Services CA, O=RBC Hosting Center, C=RU E4979FC041BB543202F274 CD9987EAAEB446853A9D6B0C69A19A9AA25546676D 476 Intermediate CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE E72E921154FBE067CFE1AB ABC566BED75E481F8681C4408113ECCF9F7B8E79091 477 Intermediate CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE 688C0B139D55058622311 39261380802DB0FBCC2F0C9DCB9BC9DFE5CEA74E20 478 Intermediate CN=DREAMHOST SSL CA, O=DREAMHOST CERTIFICATION AUTHORITY, C=US AF3A882424517B61C4ACAB CN=DREAMHOST SSL DOMAIN VALIDATED CA, O=DREAMHOST CERTIFICATION 03206BDBD6789469B5D93FE68AE784FEBC372DEB93 479 Intermediate AUTHORITY, C=US E7B16542FEA874509FAE94 6C50659E56F671419C712E19924FF2B1F7D1912B4A03 480 Intermediate CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US 7C24A57947F3930D07D8 82A6C3EDE04772D1336B99BE2DC2D8B6D49BBECE1 481 Intermediate CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US AD9D1E1FF8E4253A70BF1EA 462B93B27711E4A61B4EEF99A37C3392017436791402 482 Intermediate CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US 2918E7749A069AFE56EE F6D1ADAE705E1B9ACB019F489D7D8E15FB73DF4AA9 483 Intermediate CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US D21CFC1E39E3209FCDF907 D5E71937C7383DE159BB8F8DB8949AFC8DE08FF8BC 484 Intermediate CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US 7D7E1D0CBEDB6FB8317F9A 90069A1A6004D384F9FE48B88E53B3BC1A68DFC0C52 485 Intermediate CN=Register.com CA SSL Services (DV), O=Register.com, C=US CB1977B013FF25EFBC48C 1DEAF08C0CBE397A2C1CE0CF2FDF25860891C6BC3A 486 Intermediate CN=Register.com CA SSL Services (OV), O=Register.com, C=US AA5716196558DD7A4DBABB B02BB245F05CA38B747146E2FA94945E29B57E74C8A 487 Intermediate CN=ResellerFly Certificate Services, O=RegisterFly.com, inc., C=US 74B131D01CE79ED365C41 7FBCD05253BBC430B7D0D766A2268862C75D025B840 488 Intermediate CN=Registry Pro CA, O=Registry Pro, C=US 5E5149288A8C5D1E13A5A 5D60FABAB688B9FF9B176906F976C343EA5D19235A1 489 Intermediate CN=Secure Business Services CA, O=Secure Business Services, Inc., C=US 0A807B329EF3667C28D2E 778E8CE43EF5ED134FA2D0CA6330518072C1FF88C84 490 Intermediate CN=WoSign Premium Server Authority, O=WoSign, Inc., C=US 21505068E00303F21E9FB 75C3023ADBE27D64D665DE14D75B8C7A92DD0D39A4 491 Intermediate CN=WoSign Server Authority, O=WoSign, Inc., C=US C3B2E8AAF3790008E97F5A

16

EB4BBABEA053D18F5977F124C6673ABC0001BF4756F 492 Intermediate CN=WoTrust Premium Server Authority, O=Wotone Communications, Inc., C=US 1AAC5EDDE28F032EAE73D B572A23D579F2055141C259AA02AF48ED8E34EA001D 493 Intermediate CN=WoTrust Premium Server Authority, O=Wotone Communications, Inc., C=US DDA6E17D610EEC294976C 4BBAB5991DC4362D0F34832CB999564DDD1C1842B4 494 Intermediate CN=WoTrust Server Authority, O=Wotone Communications, Inc., C=US E7F91E8D21E38B674D1A96 2CA1BF84736411F0E12ABB38727B5FDE3399F1EDC43 495 Intermediate CN=WoTrust Server Authority, O=Wotone Communications, Inc., C=US D79C4DF2AA93216C33F1B 8CB35CAA9B9880E1E4D624910ABD00E8D9E2BA70A6 496 Intermediate CN=OptimumSSL CA, O=OptimumSSL CA, L=Jersey City, ST=New Jersey, C=US 5E6CADFD6EFD376643937E 74121FCF0460A1BFDBA6D0DAD3F558BDEEA297B205 497 Intermediate CN=LiteSSL CA, O=Positive Software Corporation, L=Jersey City, ST=New Jersey, C=US 2E080CEC05DA56055C269E CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt 6FFF78E400A70C11011CD85977C459FB5AF96A3DF05 498 Root Lake City, ST=UT, C=US 40820D0F4B8607875E58F 63CD6FF79BD6D4BCC8DC0AA8DF525D0C114526F345 499 Intermediate CN=AusCERT Code Signing CA, OU=Certificate Services, O=AusCERT, C=AU 5A36AD86B05FA375F6E607 CN=TrustSign BR Certification Authority (Code Signing), OU=Security Dept., O=TrustSign 75291D381B2BD36A2C097CFD194EDA7FDA28796ED4 500 Intermediate Certificadora Digital, C=BR 5954BA689290882316CDB6 CN=SSL Blindado Code Signing, OU=Certificação Digital, O=Site Blindado S.A., L=Sao Paulo, A23498482ED897959E17A855B4F7C543BAB6EACC644 501 Intermediate ST=SP, C=BR D51C33DFC8C858B1EA097 191085D3535FDB5C4BFA68A72CD081E0564AC69F194 502 Intermediate CN=The Code Project Code Signing CA, O=The Code Project, C=CA 36B02DD872E749D4AE9AA BE9EF677064AA687CE460543E638FE95EF1041DCFBB 503 Intermediate CN=Certification Authority of WoSign, O=WoSign CA Limited, C=CN C74E99F1BE1573D1C4AB7 DD1CF83C62CCD0E0B45CE2F6AC77E7A67B77EDA2D 504 Intermediate CN=Certification Authority of WoSign, O=WoSign CA Limited, C=CN 8F5602AD0F62317DD234FD7 E2ABC9107C21D7CD1F0255DCC5F511BA5204E70DB7 505 Intermediate CN=icewarp.com (IceWarp Code Signing Certification Authority), O=IceWarp Limited, C=CY 445E8F0584AB2B6128B30F 5F89245A21DC650A8640C76A8BA160661ABEE7BE822 506 Intermediate CN=EuropeanSSL Object CA, O=EUNETIC GmbH, C=DE D26E5F68FD12D9B1951CB 22363951677D5CC19CD37135FE154B1D10DE9A6877F 507 Intermediate CN=GlobalSSL Organization Validation Code Signing CA, O=GlobalSSL, C=DE A50F473A35A4FA5901A02 65C32C079BFD2B9174696A439879699D36C6E8BF88D 508 Intermediate CN=WebSpace-Forum Object CA, O=WebSpace-Forum, Thomas Wendt, C=DE 9EBE5C5C5C252B6F93B65 CN=PSW GROUP Code Signing CA, OU=http://www.psw.net/, O=PSW GROUP, L=Fulda, 275FA78DD63539D30157D949E06C0C6DDE8CDF13AE 509 Intermediate ST=Hessen, C=DE 4909677521FD91D5BC7A0C 84E4EAA03833967E068C88CD3398F27B200266D3C5C 510 Intermediate CN=Gandi CodeSigning CA, O=GANDI SAS, C=FR 9A1DAEA9A5AF39D9D2A80

CN=TBS X509 CA signature composants, OU=TBS INTERNET CA, OU=Terms and Conditions: 0D3F3D05705D8EA97ADE1528865D605D379459ACE0F 511 Intermediate http://www.tbs-internet.com/CA/repository, O=TBS INTERNET, L=Caen, ST=Calvados, C=FR 33F43AF34404AAF2742D7

B84FD27E5BE6029FB020015D1B66C5905262C1867C1 512 Intermediate CN=Formidable CA Services Code Signing, O=Formidable CA Services Ltd., C=GB 99E2BD88F67C023008D35 CN=COMODO Code Signing CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, B56803703EDBBE2935E21EA5010926EFA04AFAE4685 513 Intermediate C=GB 8DB70DC933A9C242C6E1C CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, 8EF8F2565BE30E7CE7BA6302BB18B42A3ACD148A0D 514 Intermediate C=GB DB4779E4C03E862F39589B CN=COMODO Extended Validation Code Signing CA, O=COMODO CA Limited, L=Salford, 4D109320A7A346F8AD702DFFF1A7758EFCB6135BFB2 515 Intermediate ST=Greater Manchester, C=GB FA38241172569F0332C83 CN=COMODO Time Stamping CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, 84DA491AF5A7CDFA54268FB0C4A22F4226FB4D28632 516 Intermediate C=GB 8F18FC8A5A8426B5098AB CN=COMODO Time Stamping CA, O=COMODO CA Limited, L=Salford, ST=Greater Manchester, 11F217FB819BCED8205DE3E00AB2072A14CDEBF0D6 517 Intermediate C=GB 4BE1C076C9586D038907F7

CN=Digi-Sign CA Digi-Code Xs, OU=Terms and Conditions of use: http://www.digi- 66622D41062C0042AEB2ABAAFF85CD107456768680E 518 Intermediate sign.com/repository, O=Digi-Sign Limited, L=Dublin, ST=Dublin, C=IE B274ECCECC0205B6B8ADA

3B14FEADAA57EF990D241C67FDDFAC4004AA089973 519 Intermediate CN=SecuriCode SSLGenie, OU=http://www.sslgenie.com, O=MindGenies, L=Noida, ST=UP, C=IN 2BFF61404D1AED741D2276 26B68C37E6EB1D93B265FFB0406661E4A3B19734C62 520 Intermediate CN=ASJ Certification Authority, O=Admiral Systems Inc., C=JP 7DB4E14D8D3C954385627 38A15631A8181C51A1EA2C034E94E334191DE9C87AD 521 Intermediate CN=CSP Code Signing Service CA, O=CENTRAL SECURITY PATROLS CO., LTD., C=JP 5B24EBB5D0E54F80A5988 179BA20FFE57CCA2F2F7A0D092FDA11E3B8F73F8365 522 Intermediate CN=InnoSSL TrustSign OV Code Signing Certification Authority, O=Dotname Korea Corp., C=KR C989988FC20A45991D913 0BBB8C2A857C872127F751B5A7FAA2D02E28B7BF4A1 523 Intermediate CN=eBiz Networks Certificate Services, O=eBiz Networks Ltd, C=KR 3798D82000431821A0C6E E18B784D33818E3E2B0749288293594B335394972D66 524 Intermediate CN=SGTRUST CODE SIGNING CA, O=SGssl, C=KR 443FD4CDDE7134EAA0B1 EA110A59B6315F5A529B5441DD5B3394F600BFB2351 525 Intermediate CN=TERENA Code Signing CA, O=TERENA, C=NL F80372E0832C90982764B 6AE5A5975D076D5457AE53A017CF52301CBDBB21F12 526 Intermediate CN=MarketWare Code Signing CA, OU=Certificate Services, O=MarketWare, C=PT 2EC1A2BAF0F8B44EBA8CC CN=GLOBE SSL CODE SIGNING CA, O=GLOBE HOSTING CERTIFICATION AUTHORITY, 7638D67F03E55E28208BF36D8120DAB7719DE29D901 527 Intermediate C=RO B0AF99FC2A569DF76193A 70871AA4B299F59F5EB41FB6D2FDE30D2BF52DFE0D 528 Intermediate CN=RBC HC Object Services CA, O=RBC Hosting Center, C=RU 99A196FBDE383F2EA5436E 7568C5239AF9A8D8BA05922C5D653C767581D1C7E4E 529 Intermediate CN=AddTrust Qualified CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE 3E7DDC10D830C56CA2B1B 45FABF005B6C776FFB4BB18A32F99A271D16D4AFEB2 530 Intermediate CN=GlobalTrust Code Signing CA, OU=Code Signing CA, O=Global Digital Inc., C=TW D12B4BBE4024A1E469D02

17

FB847A4EF30FBE061CCD701524013FF26120E9A55BF 531 Intermediate CN=DREAMHOST CODE SIGNING CA, O=DREAMHOST CERTIFICATION AUTHORITY, C=US 3A3E227EE1278A4350EF6 CN=GlobeSSL CA, OU=GlobeSSL Code Signing Certification Authority, O=Globe Hosting, Inc., EBF7574DAC8BBDE7F83491C3EBA1E2330C0C83148E 532 Intermediate C=US B4FA85DBF7685BB17B4F4C 0DA05D49B28C9FB2355B0F5ACD0DFF37BDBDBFC09 533 Intermediate CN=InCommon Code Signing CA, OU=InCommon, O=Internet2, C=US C8D41501A45DAA5FF054F8F AFF90E8EDC0DC38D08CF5AAAA1891F4D410563AAC1 534 Intermediate CN=SSL.com Object CA, O=SSL.com, C=US D1D729C7A49EFADC0354BE CC1B1F49519B4CF7C1C0707D8ED4C2AF6E495DC818 535 Intermediate CN=SSL.com Object CA, OU=www.ssl.com, O=SSL.com, C=US 47FC635900EAD34E70AA8E 08E739FBB3ED76F7D5426C006E09108F2E3C0CF041A 536 Intermediate CN=WoSign Code Signing Authority, O=WoSign, Inc., C=US 7755235B8D573702754F3 549C51BCE935F29D06BB20A494120512B06C01056881 537 Intermediate CN=WoTrust Code Signing Authority, O=Wotone Communications, Inc., C=US 068FB4B3A90A9FB4FC20 F8F324EA82FE4AD94B6A1434236924CB19108F67D1A 538 Intermediate CN=McAfee Code Signing CA, O=McAfee, Inc., L=Santa Clara, ST=CA, C=US 897668D72FE37C0C21BE0 CN=USERTrust Extended Validation Code Signing CA, O=The USERTRUST Network, L=Jersey BCEB5F6F190E74306F74699E2BF6DF3DA3B83274C94 539 Intermediate City, ST=New Jersey, C=US DA6273077DEC63024BC2B 3B4DFDFC36D143DDAFAF1708BC3AA1C1446856822D 540 Intermediate CN=ReliaSite Code Signing CA, O=ReliaSite, LLC, L=Cheyenne, ST=WY, C=US E1CF0100B8974250C8E9B4

18

Appendix B: Locations

Location Function Bradford, UK Back End Office Support Chennai, IN Back End Office Support Iasi, Romania Back End Office Support Kanata, ON Canada Back End Office Support Manchester, UK Back End Office Support Mandaluyong City, PH Back End Office Support Murray, UT USA Back End Office Support Roseland, NJ USA Back End Office Support

19

Appendix C: Incidents publicly reported

Matter Topic Matter Description Bugzilla Link Technical non-compliance issue due to Mis-issuance using "CNAME CSR Sectigo using an underscore before the https://bugzilla.mozilla.org/sh 1 Hash 2" method of domain control domain name. It was not necessary to ow_bug.cgi?id=1461391 validation revoke any certificate due to this incident. Sectigo revoked certificates outside the https://bugzilla.mozilla.org/sh 2 Failure to revoke within 24 hours expected timing. ow_bug.cgi?id=1492006 Sectigo issued one certificate with an invalid https://bugzilla.mozilla.org/sh 3 Invalid DNS name DNS name. However, the certificate was ow_bug.cgi?id=1524730 revoked the same day.

20