ICBC

HTTP/1.1 200 OK
Date: Fri, 07 Jun 2024 23:49:41 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Age: 0
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate
content-security-policy: default-src 'self'; img-src data: images.ctfassets.net https://*.googleapis.com https://*.gstatic.com *.google.com *.googleusercontent.com www.googletagmanager.com www.google.ca i.ytimg.com *.qualtrics.com www.facebook.com tr.snapchat.com data: 'self'; child-src www.googletagmanager.com 'self'; font-src use.typekit.net https://fonts.gstatic.com 'self'; form-action https://www.icbcsurveys.com 'self'; frame-src www.googletagmanager.com *.google.com bid.g.doubleclick.net td.doubleclick.net https://www.icbcsurveys.com *.snapchat.com open.spotify.com www.youtube.com e.issuu.com issuu.com 'self'; media-src 'self'; style-src *.typekit.net 'self' 'unsafe-inline' www.googletagmanager.com https://fonts.googleapis.com; script-src https://apps.icbc.com www.googletagmanager.com googleads.g.doubleclick.net www.googleadservices.com *.google.com www.googleoptimize.com https://*.gstatic.com https://*.googleapis.com www.google-analytics.com https://*.ggpht.com *.googleusercontent.com www.youtube.com form.simplesurvey.com *.qualtrics.com connect.facebook.net sc-static.net *.snapchat.com blob: 'self' 'unsafe-inline' 'unsafe-eval'; connect-src https://apps.icbc.com https://*.googleapis.com https://www.google-analytics.com *.google.com https://*.gstatic.com google.ca *.google.ca *.googlesyndication.com https://stats.g.doubleclick.net *.qualtrics.com *.snapchat.com data: blob: 'self'; worker-src blob:;
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-matched-path: /
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: pdx1
x-vercel-id: sfo1::pdx1::bwvjj-1717804180573-f98530d945b7
x-xss-protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 89048a407d1715e7-SJC

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:9f:d6:13:ba:a7:ff:d3:fc:ca:36:2b:32:78:4a:f2:3a:fa
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E1
        Validity
            Not Before: May  2 01:52:53 2024 GMT
            Not After : Jul 31 01:52:52 2024 GMT
        Subject: CN=partners.icbc.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:87:e5:25:5b:dc:ad:0a:36:9c:8d:e8:cc:87:12:
                    64:03:e7:43:13:60:d9:e1:62:28:7c:9a:2d:c0:33:
                    f8:7d:e6:f1:c5:d0:77:f6:7d:da:f3:68:50:92:17:
                    83:00:7d:b6:29:69:ce:a6:e6:c7:15:45:69:4e:e4:
                    89:26:3e:6d:5b
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D0:37:B2:E9:DF:8D:A0:18:1C:9B:76:69:02:85:B8:D7:5B:15:52:3D
            X509v3 Authority Key Identifier: 
                5A:F3:ED:2B:FC:36:C2:37:79:B9:52:30:EA:54:6F:CF:55:CB:2E:AC
            Authority Information Access: 
                OCSP - URI:http://e1.o.lencr.org
                CA Issuers - URI:http://e1.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:partners.icbc.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : May  2 02:52:53.681 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B5:CE:0B:68:EB:CA:E3:CE:F4:0D:B7:
                                31:65:75:51:52:CE:F9:AE:BF:1C:56:B7:5E:FB:0A:AA:
                                02:9B:FE:8A:C3:02:20:0A:ED:2F:B8:80:A9:73:28:D0:
                                5B:DB:EF:25:A2:66:D5:44:C2:66:19:7A:17:52:44:B3:
                                E6:4A:ED:56:69:60:8D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : May  2 02:52:53.760 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:25:92:4C:78:E8:51:2E:FD:51:46:B3:26:
                                62:11:3F:DB:F3:E0:5F:D5:AB:D6:66:D3:24:38:11:70:
                                2B:24:74:9B:02:20:1A:0F:C4:7E:A5:4C:E6:38:BD:89:
                                53:9E:D0:68:A2:CC:1B:F9:77:5A:B7:25:2B:E5:E1:07:
                                E4:E7:1F:1A:CC:7C
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:66:02:31:00:e4:6c:64:7b:5a:9b:b9:d5:a4:75:7a:3f:c3:
        45:59:e2:8b:8a:75:76:be:4c:c4:19:b9:a2:b6:b8:58:f3:6a:
        59:78:4f:bf:46:bc:34:75:fb:ba:69:36:f0:f7:50:82:b8:02:
        31:00:b2:73:ec:c9:51:6f:09:e7:b1:b3:d9:19:d2:b7:5a:1d:
        23:e5:46:5a:e3:87:fa:4b:fb:01:a4:46:b2:34:ed:4c:1a:9b:
        57:6a:04:45:47:14:38:4f:8b:9b:a9:01:65:25