app001.apple.com
- Apple Inc. -
Issued by Apple IST CA 2 - G1
About this certificate
This digital certificate with serial number 6c:15:3b:da:a4:06:04:3b was issued on by Apple Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Apple Inc.
Organization:
Apple Inc.
Organization unit: management:idms.group.1120161
Organization unit: management:idms.group.1120161
State / Province:
California
Country: US
Country: US
Apple Inc.
Organization:
Apple Inc.
Organization unit: Certification Authority
Organization unit: Certification Authority
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 6c:15:3b:da:a4:06:04:3bSerial Number (int): 7788196940847907899
Serial Number lenght: 63 bits, 8 octets
SubjectKeyId: c7:2c:f2:98:34:29:68:b9:34:b6:02:28:63:1b:ef:6c:6a:60:15:62
AuthorityKeyId: d8:7a:94:44:7c:90:70:90:16:9e:dd:17:9c:01:44:03:86:d6:2a:29
Fingerprint (sha1): c8:6a:f0:ab:8a:fa:e6:d5:ca:90:40:51:34:51:b5:dc:d0:3b:03:65
Fingerprint (sha256): 00:0d:80:c2:e0:02:06:e4:b1:6c:db:50:4f:c2:5a:26:3e:f9:c3:d8:20:ae:3f:ba:03:ca:4b:05:9a:d8:5e:62
Issuing Certificate URL: http://certs.apple.com/appleistca2g1.der
Revocation information
OCSP Server: http://ocsp.apple.com/ocsp03-appleistca2g120CRL Distribution Point: http://crl.apple.com/appleistca2g1.crl
Check the revocation status for certificate app001.apple.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for app001.apple.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
app001.apple.com
rn-app001-prod.apple.com
rn-app001-prod.apple.com
Other certificates including the domain name apple.com
(limited to 100 certificates)
itunes.apple.com
ja.ls.apple.com
origin-discussions2-us-dr-prz.apple.com
training.apple.com
reserves-prime.prz.apple.com
app001.apple.com
deployment-pv50.ls.apple.com
itunes.apple.com
reserve-prime.apple.com
gsp81-ssl-e1118.ls.apple.com
gsp102-ssl-e1502.ls.apple.com
api.searchads.apple.com
idmsa-uat.apple.com
webpay-sh-pilot.apple.com
mzstatic.com
store-029.blobstore.apple.com
beatsglobalquality-uat.corp.apple.com
rw.apple.com
stg-pod1-smp.corp.apple.com
gr-api-video-h-aapne1a.smoot.apple.com
web-ext-mmap-ce01.apple.com
usl-expe1405.apple.com
store-995.blobstore.apple.com
sapecc-prd-ext.sap.apple.com
swdlp.apple.com
gsx.apple.com
gsp-ssl-e1134.ls.apple.com
clx-dev.apple.com
noodle.apple.com
gsp11-ty21-dlb-2.ls.apple.com
mzuserxp.itunes.apple.com
gsp64-st14-ssl-dlb.ls.apple.com
gsp45-ssl-e1356.ls.apple.com
gsp12-st14-dlb-2.ls.apple.com
discussions-uat.apple.com
dc-portal.apple.com
supplier.apple.com
gsp48-kittyhawk-qs55-ssl.ls.apple.com
gsp81-ssl-e1502.ls.apple.com
gsp48-ssl-e691.ls.apple.com
mapsconnectapi.ls.apple.com
wdg01-uat.apple.com
wellnessclassic.apple.com
api-partner-connect-uat1.apple.com
people.apple.com
supplier-registration.apple.com
gsp60-ssl-e997.ls.apple.com
ssuat.apple.com
locate.apple.com
itunes.apple.com
suppliernet.apple.com
gsp79-am31-dlb.ls.apple.com
smp-device-qa3.apple.com
eurored3.apple.com
devcon-oomnshuttleist-test.apple.com
coreservices-e1506-ms11-bistunium-k8straefik.ls.apple.com
dinah05.corp.apple.com
gsp1-ssl.apple.com
gspe85-cn-ssl.ls.apple.com
vorpal-relay.apple.com
bswe.apple.com
cma.itunes.apple.com
gsp-ssl-apne1-ash.ls.apple.com
theloop-stage.apple.com
tokenvalidation.apple.com
linkmaker.itunes.apple.com
gsp70-ssl-e1633.ls.apple.com
gsp63-ms12-kittyhawk-ssl.ls.apple.com
gsp-ssl-sl61-ipv6.ls.apple.com
aws-onepulse.apple.com
gsp12-kh-st14-1.ls.apple.com
gsp59-ssl-e506.ls.apple.com
mr-apple-com2.apple.com
ocservice.apple.com
marketing.apple.com
ioss-callbackservices-qa3.apple.com
gsp19-kh-ms12.ls.apple.com
madeforipodandiphone.apple.com
gspe19-ssl.ls.apple.com
gsp19-1-kittyhawk-ci77-ssl.ls.apple.com
cs-integrations-stage.apple.com
gsp35-ty21-ssl.ls.apple.com
gbiportal-apps-external.apple.com
plmtest2.apple.com
gsp3-sy02-ssl.ls.apple.com
gspe35-ssl.ls.apple.com
gsp76-ty21-01.ls.apple.com
ne-access.apple.com
profilebroker.apple.com
axm-scim-qa12.apple.com
gsp95-hk02-stage-ssl.ls.apple.com
contactretail.apple.com
caffemacs-aa-prz.apple.com
bam.corp.apple.com
gsp45-ssl-e709.ls.apple.com
caffemacs-qa.apple.com
cls-webdata.education.icloud.com
gsp82-ssl-e1277.ls.apple.com
apple-pay-gateway-qa2.apple.com
gsp57-ci77-ssl.ls.apple.com
ja.ls.apple.com
origin-discussions2-us-dr-prz.apple.com
training.apple.com
reserves-prime.prz.apple.com
app001.apple.com
deployment-pv50.ls.apple.com
itunes.apple.com
reserve-prime.apple.com
gsp81-ssl-e1118.ls.apple.com
gsp102-ssl-e1502.ls.apple.com
api.searchads.apple.com
idmsa-uat.apple.com
webpay-sh-pilot.apple.com
mzstatic.com
store-029.blobstore.apple.com
beatsglobalquality-uat.corp.apple.com
rw.apple.com
stg-pod1-smp.corp.apple.com
gr-api-video-h-aapne1a.smoot.apple.com
web-ext-mmap-ce01.apple.com
usl-expe1405.apple.com
store-995.blobstore.apple.com
sapecc-prd-ext.sap.apple.com
swdlp.apple.com
gsx.apple.com
gsp-ssl-e1134.ls.apple.com
clx-dev.apple.com
noodle.apple.com
gsp11-ty21-dlb-2.ls.apple.com
mzuserxp.itunes.apple.com
gsp64-st14-ssl-dlb.ls.apple.com
gsp45-ssl-e1356.ls.apple.com
gsp12-st14-dlb-2.ls.apple.com
discussions-uat.apple.com
dc-portal.apple.com
supplier.apple.com
gsp48-kittyhawk-qs55-ssl.ls.apple.com
gsp81-ssl-e1502.ls.apple.com
gsp48-ssl-e691.ls.apple.com
mapsconnectapi.ls.apple.com
wdg01-uat.apple.com
wellnessclassic.apple.com
api-partner-connect-uat1.apple.com
people.apple.com
supplier-registration.apple.com
gsp60-ssl-e997.ls.apple.com
ssuat.apple.com
locate.apple.com
itunes.apple.com
suppliernet.apple.com
gsp79-am31-dlb.ls.apple.com
smp-device-qa3.apple.com
eurored3.apple.com
devcon-oomnshuttleist-test.apple.com
coreservices-e1506-ms11-bistunium-k8straefik.ls.apple.com
dinah05.corp.apple.com
gsp1-ssl.apple.com
gspe85-cn-ssl.ls.apple.com
vorpal-relay.apple.com
bswe.apple.com
cma.itunes.apple.com
gsp-ssl-apne1-ash.ls.apple.com
theloop-stage.apple.com
tokenvalidation.apple.com
linkmaker.itunes.apple.com
gsp70-ssl-e1633.ls.apple.com
gsp63-ms12-kittyhawk-ssl.ls.apple.com
gsp-ssl-sl61-ipv6.ls.apple.com
aws-onepulse.apple.com
gsp12-kh-st14-1.ls.apple.com
gsp59-ssl-e506.ls.apple.com
mr-apple-com2.apple.com
ocservice.apple.com
marketing.apple.com
ioss-callbackservices-qa3.apple.com
gsp19-kh-ms12.ls.apple.com
madeforipodandiphone.apple.com
gspe19-ssl.ls.apple.com
gsp19-1-kittyhawk-ci77-ssl.ls.apple.com
cs-integrations-stage.apple.com
gsp35-ty21-ssl.ls.apple.com
gbiportal-apps-external.apple.com
plmtest2.apple.com
gsp3-sy02-ssl.ls.apple.com
gspe35-ssl.ls.apple.com
gsp76-ty21-01.ls.apple.com
ne-access.apple.com
profilebroker.apple.com
axm-scim-qa12.apple.com
gsp95-hk02-stage-ssl.ls.apple.com
contactretail.apple.com
caffemacs-aa-prz.apple.com
bam.corp.apple.com
gsp45-ssl-e709.ls.apple.com
caffemacs-qa.apple.com
cls-webdata.education.icloud.com
gsp82-ssl-e1277.ls.apple.com
apple-pay-gateway-qa2.apple.com
gsp57-ci77-ssl.ls.apple.com
Certificate
The complete raw certificate details for app001.apple.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIRjCCBy6gAwIBAgIIbBU72qQGBDswDQYJKoZIhvcNAQELBQAwYjEcMBoGA1UE AxMTQXBwbGUgSVNUIENBIDIgLSBHMTEgMB4GA1UECxMXQ2VydGlmaWNhdGlvbiBB dXRob3JpdHkxEzARBgNVBAoTCkFwcGxlIEluYy4xCzAJBgNVBAYTAlVTMB4XDTE5 MDIwNjE4MzkyMVoXDTIxMDMwNzE4MzkyMVowejEZMBcGA1UEAwwQYXBwMDAxLmFw cGxlLmNvbTEmMCQGA1UECwwdbWFuYWdlbWVudDppZG1zLmdyb3VwLjExMjAxNjEx EzARBgNVBAoMCkFwcGxlIEluYy4xEzARBgNVBAgMCkNhbGlmb3JuaWExCzAJBgNV BAYTAlVTMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhP3nmJATpo9x Lz1AHFCYup/fmFKOA65XrKFYndYn3rEV/P6Oqm7DE7ykSpIc/9VEoEli16swSRy0 WWqNn/PO0NDwlbpHDpvBjIto0CTKmmLZ0H4eDcNXe4yyIypvbO+4h2asbQEk5F4a YuOqwUPd8cpwq00Bu6fGwTXOu7BfjmLFkCBCekPDA0JmxnLeH9vP1w5VeQzjGnkc EYQ1Xv29UqRZN5G4WjvHnQDZ+DiJY0JilLnMcBPNUO8V+txsPAOwrsbWTxGcgMvL iPAVK40ueBiGJ8aibsXDZLezJgs+PMGks5SNcuvuA/SgBRvlvBPweoKOaiALDwt6 arrVs5y7uwIDAQABo4IE5jCCBOIwDAYDVR0TAQH/BAIwADAfBgNVHSMEGDAWgBTY epREfJBwkBae3RecAUQDhtYqKTB+BggrBgEFBQcBAQRyMHAwNAYIKwYBBQUHMAKG KGh0dHA6Ly9jZXJ0cy5hcHBsZS5jb20vYXBwbGVpc3RjYTJnMS5kZXIwOAYIKwYB BQUHMAGGLGh0dHA6Ly9vY3NwLmFwcGxlLmNvbS9vY3NwMDMtYXBwbGVpc3RjYTJn MTIwMDUGA1UdEQQuMCyCEGFwcDAwMS5hcHBsZS5jb22CGHJuLWFwcDAwMS1wcm9k LmFwcGxlLmNvbTCB/wYDVR0gBIH3MIH0MIHxBgoqhkiG92NkBQsEMIHiMIGkBggr BgEFBQcCAjCBlwyBlFJlbGlhbmNlIG9uIHRoaXMgY2VydGlmaWNhdGUgYnkgYW55 IHBhcnR5IGFzc3VtZXMgYWNjZXB0YW5jZSBvZiBhbnkgYXBwbGljYWJsZSB0ZXJt cyBhbmQgY29uZGl0aW9ucyBvZiB1c2UgYW5kL29yIGNlcnRpZmljYXRpb24gcHJh Y3RpY2Ugc3RhdGVtZW50cy4wOQYIKwYBBQUHAgEWLWh0dHA6Ly93d3cuYXBwbGUu Y29tL2NlcnRpZmljYXRlYXV0aG9yaXR5L3JwYTAdBgNVHSUEFjAUBggrBgEFBQcD AgYIKwYBBQUHAwEwNwYDVR0fBDAwLjAsoCqgKIYmaHR0cDovL2NybC5hcHBsZS5j b20vYXBwbGVpc3RjYTJnMS5jcmwwHQYDVR0OBBYEFMcs8pg0KWi5NLYCKGMb72xq YBViMA4GA1UdDwEB/wQEAwIFoDCCAm8GCisGAQQB1nkCBAIEggJfBIICWwJZAHYA u9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFoxCShgwAABAMARzBF AiBA4W5JzwXp26EyAUOlm45gabLsnsvEj7r64qznY5LM7gIhALjIcAMqZPnQTs2m UUMRFIMFgcY0boSS8qUTgCGkHUKcAHUApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+4 43fNDsgN3BAAAAFoxCShhAAABAMARjBEAiA7xES6+SvFUM3tlNWf67cAxzFqpmTB 1L3tu9npqegO3AIgDJZ4lypHRrfEnn8Zo5mAtOhg388RugFRFCtiXqGCQDwAdwBW FAaaL9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAWjEJKJIAAAEAwBIMEYC IQDPl/TG08S3dht8xfu0VrbFvwutYaj7A5Rsfnqqr2y3sAIhAN98EsemT+lXKwS2 ie1ZkQHEC7cMF1qxfJMlHv2vqgTRAHYA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiD AMR7iXqo/csAAAFoxCShhgAABAMARzBFAiBc4IwGMVOdJ7RlmxBBCStTFBvtkiRT N91Caw/r7+ScggIhAM/PhC8zVeguGx/kINCjDDecggR+8OpvdF6uoCSaDx57AHcA b1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFoxCSj2wAABAMASDBG AiEAlRrSaP6otozUJkMDesNbNdoqoivNzMrzvIxC8vopOzUCIQCCIsgHJDsS89ch AtkLP0/rkMW4fnjaAvLwzx6WJQ7wNzANBgkqhkiG9w0BAQsFAAOCAQEAHSB+blQT hFc5dgHwdHBJlVWsFjWJEoxyfrNJG3Ujqkn6tlR9hQtb7niv7n8NmWw08AL4R6bV t3PTiwM4Sb9HImVfuzGRdEA38OFSaAnQQn9kjWRACCYZe+OCpqMranP70SOz7GyW TuL24xQek0sAkTyaCmzTGR83Ko0ParJDKsv9AaH6pT2xLPvlJawRz/YOy2s6nyEn FCGB+qe82Ukc6CDXSD1xoVccEeGfxUrI9BboSfmbzejXn8XmT8UccbhS018TwcvZ UItizy4LSYIZszfZXLMl0puywBTeqmcWE7hEvWhjOufhpgWAJQlXLWr0gWA817+T CCoxLOJj0RqpgA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhP3nmJATpo9xLz1AHFCY up/fmFKOA65XrKFYndYn3rEV/P6Oqm7DE7ykSpIc/9VEoEli16swSRy0WWqNn/PO 0NDwlbpHDpvBjIto0CTKmmLZ0H4eDcNXe4yyIypvbO+4h2asbQEk5F4aYuOqwUPd 8cpwq00Bu6fGwTXOu7BfjmLFkCBCekPDA0JmxnLeH9vP1w5VeQzjGnkcEYQ1Xv29 UqRZN5G4WjvHnQDZ+DiJY0JilLnMcBPNUO8V+txsPAOwrsbWTxGcgMvLiPAVK40u eBiGJ8aibsXDZLezJgs+PMGks5SNcuvuA/SgBRvlvBPweoKOaiALDwt6arrVs5y7 uwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7788196940847907899 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Apple IST CA 2 - G1' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Apple Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-06 18:39:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-07 18:39:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'app001.apple.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'management:idms.group.1120161' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Apple Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16788661315578474788123723428022792346022489397634056944979014944024249917844533245470280796139103922837949984349959626956444829703991337576761347699831410504723220224720036295587389394527294656294431903590262386411259945172013673360306421728640952478835250579111021328269849354980746470807440093029588274130261591160493190166897126087647989645329243749548587351474330138110117428425736691361482527260443885047379191936832897281439401475148216566417659358683298560680541870335564189443077013515954262388156743227894621001719374094981987366210723844654744683267673367163922912273320020866661810377505650316274206292923 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d87a94447c907090169edd179c01440386d62a29 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (114 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certs.apple.com/appleistca2g1.der' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.apple.com/ocsp03-appleistca2g120' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app001.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rn-app001-prod.apple.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113635.100.5.11.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Reliance on this certificate by any party assumes acceptance of any applicable terms and conditions of use and/or certification practice statements.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.apple.com/certificateauthority/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.apple.com/appleistca2g1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c72cf298342968b934b60228631bef6c6a601562 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (607 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (603 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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