HTTP/1.1 400 Bad Request
Date: Wed, 29 May 2024 01:04:59 GMT
Content-Type: text/html; charset=UTF-8
Connection: close
x-oag-host: 736305402b20d63d1ec8b0f42e41e7bc1bf0d930de94d6ab334deafaf884a3f4
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Cache-Control: no-cache,no-store,must-revalidate
Pragma: no-cache
Set-Cookie: BIGipServerokta-ig-prod-pool=!exv9TBXLhqAOJoeVFeFyYGxuFW0wKtMO4AFMr6F7uIuvNHgZnq1BdVeHLXXTJ800O+RgFUMaccVJA0o=; path=/; Httponly; Secure
pfg-js-injection: true
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Content-Security-Policy: default-src 'self'; script-src 'self' www.principalcdn.com; connect-src 'self'; img-src 'self'; style-src 'self';base-uri 'self';form-action 'self'
Set-Cookie: TS01a754cf=0150299315ea4fd1c9b959ee38ffed47aa37c4479f9c16191793751226940cd2ba9b4101ad3a571fb733f09bc776a73c1000805d8f; Path=/; Secure; HttpOnly;
Set-Cookie: TScccf3753027=08f8d5b31cab2000aaff99cad100c047b3fd56d2e1fb19a49408a2b5da1d00b8dc8503ceb86c20f8081a644e851130006dff729a13cd64a2e675d2950e7f28ee68dbfc2a1264b5359f35bfeee1ff00fc8e099f5325793f09704789935f53f277; Secure; Path=/
Transfer-Encoding: chunked
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:ae:3d:7e:f6:3e:f0:b4:c2:b1:8f:9c:d9:4a:a7:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=DigiCert Inc, CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
Validity
Not Before: Dec 18 00:00:00 2023 GMT
Not After : Dec 17 23:59:59 2024 GMT
Subject: C=US, ST=Iowa, L=Des Moines, O=Principal Financial Group, Inc., CN=custodysolutions.principal.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d8:f6:61:3e:6d:db:10:b7:3a:9b:28:b8:7c:90:
8a:02:5a:73:3e:37:2e:38:da:f2:09:d8:62:33:b3:
87:51:0f:c8:cd:5b:36:34:18:eb:6d:02:85:96:dc:
0e:4a:62:5e:bb:ec:54:ce:b8:1f:dd:cd:20:54:66:
e9:79:40:65:d0:b2:dc:e6:07:57:30:8e:0e:bf:4c:
e1:bd:1e:ba:ff:2a:6a:cc:ab:b2:12:4c:4e:32:a2:
76:07:24:ee:a2:ae:25:4a:ed:2f:3a:2d:e5:de:ce:
db:37:10:27:0e:55:60:e5:1d:21:90:44:ee:a6:7b:
dc:c1:51:40:8d:20:ef:17:8b:bf:e8:e8:24:85:77:
e9:ae:0a:20:5d:49:47:a3:a8:21:ce:cd:a3:53:08:
4d:60:f1:e4:c6:b9:4a:f7:c4:4c:59:a2:2c:cd:2c:
c5:f7:08:d0:b0:d4:4d:34:29:71:06:4c:b9:0d:e5:
6d:1f:c8:b0:ef:94:f6:99:74:58:24:fc:b2:cd:44:
4a:5b:80:2d:68:65:b3:4e:d2:68:f2:e4:ee:29:f9:
c5:03:26:ee:71:b2:30:c8:4b:3f:88:06:aa:d4:17:
ba:52:22:e1:03:2a:95:fc:d8:45:6a:d9:9b:4e:f2:
5c:7a:c3:b1:07:42:d7:6a:ff:87:51:6c:ac:86:51:
94:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
74:85:80:C0:66:C7:DF:37:DE:CF:BD:29:37:AA:03:1D:BE:ED:CD:17
X509v3 Subject Key Identifier:
AF:AE:8D:E8:01:25:08:72:21:D1:B7:BC:AB:FC:0F:90:B2:72:F1:55
X509v3 Subject Alternative Name:
DNS:custodysolutions.principal.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.2
CPS: http://www.digicert.com/CPS
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Full Name:
URI:http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Authority Information Access:
OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
X509v3 Basic Constraints: critical
CA:FALSE
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Dec 18 18:25:23.307 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:8D:DC:52:F0:84:55:C7:1D:E7:68:CC:
7A:33:B7:66:F4:07:BE:DC:F0:EA:76:89:44:44:C7:E5:
AF:3D:5F:22:33:02:20:3A:01:A7:51:58:A2:87:28:27:
04:86:50:33:4A:8A:3C:E1:CF:AE:DF:46:F7:F8:DD:ED:
CD:20:13:D2:A0:3A:80
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Dec 18 18:25:23.276 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:AB:0A:2A:D0:D7:A5:7F:BB:3C:22:E4:
09:2E:14:D3:77:FD:63:67:E5:AA:C7:7E:D9:85:36:89:
91:72:C7:82:40:02:20:2C:23:B0:6F:FF:81:DD:DA:73:
D5:B7:98:9D:A2:14:EB:3C:EB:B9:E3:01:78:17:38:5E:
9B:85:25:42:63:01:B4
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Dec 18 18:25:23.288 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:9B:18:C5:95:F9:F7:0B:31:29:A7:A4:
46:71:8B:12:8A:D8:1F:39:AB:9D:66:2D:BC:6C:7A:AE:
4C:BC:E8:48:AA:02:21:00:9E:67:4F:A4:83:41:89:72:
28:25:BD:3A:0B:9A:28:11:23:09:1C:3F:85:6C:88:35:
65:19:71:3A:D6:B7:01:A8
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
3a:e1:d1:18:c5:79:65:0e:6e:f9:7b:6e:92:a5:7d:5f:bb:f1:
fd:de:8b:b5:8d:02:32:3e:9e:da:85:b0:c6:3f:13:61:71:91:
33:19:24:bd:b7:62:4a:e5:19:e9:86:35:05:41:77:00:15:7d:
24:db:ad:1f:e5:df:8b:19:61:17:72:f8:c4:16:f5:1d:ab:f3:
65:e1:a0:60:3e:69:18:8d:44:34:02:3d:f9:ba:0f:53:9b:f9:
1f:62:29:e3:81:ba:73:ce:45:48:f4:49:3b:19:fb:16:9c:e1:
ab:cc:63:aa:74:48:86:57:b2:de:bc:90:d9:5b:3b:2d:42:8a:
39:06:e4:9c:52:9a:53:70:ad:25:54:c1:9d:d5:3b:13:6a:1a:
cc:05:ad:53:41:ad:c8:6f:a6:15:b7:18:d1:79:1e:d4:33:4d:
aa:80:a2:6e:61:63:4e:19:38:cf:89:1a:cf:d2:8c:e0:a9:b6:
a8:2c:dc:56:11:64:3c:75:35:e8:dc:28:e4:98:94:79:dd:56:
6b:d5:b6:34:47:4a:b2:ee:56:ed:23:29:88:25:12:f3:58:39:
48:af:01:51:ff:55:bd:2e:99:07:0b:2c:98:4c:37:ab:41:0d:
09:3f:9e:fd:f7:99:e4:6e:0b:3d:b6:ac:7f:1e:6b:9d:d9:94:
44:6b:d4:24