$ openssl version
OpenSSL 1.0.2h-fips  3 May 2016
$ openssl verify -CAfile globalsign_root.pem -verbose -purpose sslserver -policy_check -policy_print -untrusted alphassl_intermediate.pem lsst.codes.pem
Require explicit Policy: False
Authority Policies:
  Policy: 1.3.6.1.4.1.4146.1.10.10
    Non Critical
    CPS: https://www.globalsign.com/repository/
  Policy: 2.23.140.1.2.1
    Non Critical
    No Qualifiers
User Policies: <empty>
lsst.codes.pem: OK
