qa-athena-mongo-image.huffpo.net
- AOL, Inc -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0a:3c:d7:cd:05:6f:24:7e:e2:14:f6:df:59:43:68:66 was issued on by DigiCert Inc.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
AOL, Inc
Organization:
AOL, Inc
State / Province:
Virginia
Locality: Dulles
Country: US
Locality: Dulles
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:3c:d7:cd:05:6f:24:7e:e2:14:f6:df:59:43:68:66Serial Number (int): 13608194730881137080938258685982107750
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 39:58:b8:82:c9:fa:7f:ed:7e:81:f5:05:5d:0c:1e:5a:47:11:30:a0
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): b9:e2:b0:dd:d9:a2:65:01:3d:a2:94:13:5c:bc:f6:44:52:15:24:bc
Fingerprint (sha256): 00:0f:db:78:3f:78:5b:1d:39:d9:c9:ce:6c:e6:c4:40:c9:8c:4f:73:80:89:9f:5d:d0:77:e3:24:ba:c8:5e:57
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g5.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g5.crl
Check the revocation status for certificate qa-athena-mongo-image.huffpo.net
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for qa-athena-mongo-image.huffpo.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
qa-athena-mongo-image.huffpo.net
qa-athena-ea-mongo-image-61-112.use1.huffpo.net
qa-athena-ea-mongo-image-66-254.use1.huffpo.net
qa-athena-ea-mongo-image-69-255.use1.huffpo.net
qa-athena-ea-mongo-image-01.use1.huffpo.net
qa-athena-ea-mongo-image-02.use1.huffpo.net
qa-athena-ea-mongo-image-03.use1.huffpo.net
qa-athena-ea-mongo-image-61-112.use1.huffpo.net
qa-athena-ea-mongo-image-66-254.use1.huffpo.net
qa-athena-ea-mongo-image-69-255.use1.huffpo.net
qa-athena-ea-mongo-image-01.use1.huffpo.net
qa-athena-ea-mongo-image-02.use1.huffpo.net
qa-athena-ea-mongo-image-03.use1.huffpo.net
Other certificates including the domain name huffpo.net
(limited to 100 certificates)
qa-athena-mongo-image.huffpo.net
production-athenizer.use1.huffpo.net
staging-origin-life.huffpo.net
qa.mapi.huffpost.com
*.app-west.buzzfeed.io
production-athena-mongo-cms.huffpo.net
buildbot.office.aol.com
staging-content-transform.use1.huffpo.net
qa.mapi.huffpost.com
src5.yahoo.com
staging-origin-life.huffpo.net
production-modulous-tag-manager.use1.huffpo.net
beta-origin-cambria-alb.huffpo.net
production-kraken-valencia-preview.use1.huffpo.net
qa.preview.www.huffpost.com
*.utils.huffpo.net
qa.preview.www.huffpost.com
www.huffpost.com
origin-kraken.huffpo.net
origin-hanami.huffpo.net
beta-origin-cambria-alb.huffpo.net
qa.preview.www.huffpost.com
www.huffingtonpost.com
www.huffingtonpost.com
staging-modulous-api-lb.use1.huffpo.net
qa-origin-life.huffpo.net
staging-athena-mongo-cms.huffpo.net
beta.www.huffpost.com
src5.yahoo.com
src5.yahoo.com
qa-origin-life.huffpo.net
*.prod.buzzfeed.io
qa-origin-life.huffpo.net
origin-kraken.huffpo.net
src5.yahoo.com
staging-modulous-api-varnish.use1.huffpo.net
qa-origin-life.huffpo.net
staging-mtkiller-mongo.use1.huffpo.net
origin-identifiers.huffpost.net
www.huffingtonpost.com
staging-origin-hanami-alb.huffpo.net
origin-hanami-alb.huffpo.net
qa.preview.www.huffpost.com
production-athenizer.use1.huffpo.net
*.stage.buzzfeed.io
staging.modulous.aol.com
*.prod.buzzfeed.io
*.stage.buzzfeed.io
staging-athena-mongo-cms.huffpost.net
staging.preview.www.huffpost.com
*.use1.huffpo.net
preview.www.huffpost.com
preview.beta.www.huffpost.com
staging-athena-mongo-cms.huffpo.net
*.app-west.buzzfeed.io
*.edge.huffpo.net
qa.mapi.huffpost.com
beta.www.huffpost.com
preview.www.huffpost.com
origin-kraken.huffpo.net
qa-origin-life.huffpo.net
qa.www.huffpost.com
*.edge.huffpo.net
*.app-west.buzzfeed.io
src5.yahoo.com
www.huffpost.com
staging.preview.www.huffpost.com
origin-identifiers.huffpost.net
production-trait-manager.use1.huffpo.net
production-athenizer.use1.huffpo.net
production-kraken-valencia-preview.use1.huffpo.net
*.amp.edge.huffpo.net
*.prod.buzzfeed.io
qa-origin-life.huffpo.net
*.games.yahoo.com
src5.yahoo.com
www.huffpost.com
production-kraken-valencia-preview.use1.huffpo.net
*.cambria-production.huffpo.net
production-athenizer.use1.huffpo.net
www.huffingtonpost.com
qa.preview.www.huffpost.com
*.utils.huffpo.net
origin-hanami.huffpo.net
staging.preview.www.huffpost.com
modulous.aol.com
*.stage.buzzfeed.io
staging-audiogram.use1.huffpo.net
src5.yahoo.com
www.huffingtonpost.com
qa-athena-mongo-cms.huffpo.net
staging-content-transform.use1.huffpo.net
*.app-west.buzzfeed.io
*.use1.huffpo.net
src5.yahoo.com
origin-identifiers.huffpost.net
*.use1.huffpo.net
src5.yahoo.com
beta-preview-origin-cambria-alb.huffpo.net
*.app-west.buzzfeed.io
production-athenizer.use1.huffpo.net
staging-origin-life.huffpo.net
qa.mapi.huffpost.com
*.app-west.buzzfeed.io
production-athena-mongo-cms.huffpo.net
buildbot.office.aol.com
staging-content-transform.use1.huffpo.net
qa.mapi.huffpost.com
src5.yahoo.com
staging-origin-life.huffpo.net
production-modulous-tag-manager.use1.huffpo.net
beta-origin-cambria-alb.huffpo.net
production-kraken-valencia-preview.use1.huffpo.net
qa.preview.www.huffpost.com
*.utils.huffpo.net
qa.preview.www.huffpost.com
www.huffpost.com
origin-kraken.huffpo.net
origin-hanami.huffpo.net
beta-origin-cambria-alb.huffpo.net
qa.preview.www.huffpost.com
www.huffingtonpost.com
www.huffingtonpost.com
staging-modulous-api-lb.use1.huffpo.net
qa-origin-life.huffpo.net
staging-athena-mongo-cms.huffpo.net
beta.www.huffpost.com
src5.yahoo.com
src5.yahoo.com
qa-origin-life.huffpo.net
*.prod.buzzfeed.io
qa-origin-life.huffpo.net
origin-kraken.huffpo.net
src5.yahoo.com
staging-modulous-api-varnish.use1.huffpo.net
qa-origin-life.huffpo.net
staging-mtkiller-mongo.use1.huffpo.net
origin-identifiers.huffpost.net
www.huffingtonpost.com
staging-origin-hanami-alb.huffpo.net
origin-hanami-alb.huffpo.net
qa.preview.www.huffpost.com
production-athenizer.use1.huffpo.net
*.stage.buzzfeed.io
staging.modulous.aol.com
*.prod.buzzfeed.io
*.stage.buzzfeed.io
staging-athena-mongo-cms.huffpost.net
staging.preview.www.huffpost.com
*.use1.huffpo.net
preview.www.huffpost.com
preview.beta.www.huffpost.com
staging-athena-mongo-cms.huffpo.net
*.app-west.buzzfeed.io
*.edge.huffpo.net
qa.mapi.huffpost.com
beta.www.huffpost.com
preview.www.huffpost.com
origin-kraken.huffpo.net
qa-origin-life.huffpo.net
qa.www.huffpost.com
*.edge.huffpo.net
*.app-west.buzzfeed.io
src5.yahoo.com
www.huffpost.com
staging.preview.www.huffpost.com
origin-identifiers.huffpost.net
production-trait-manager.use1.huffpo.net
production-athenizer.use1.huffpo.net
production-kraken-valencia-preview.use1.huffpo.net
*.amp.edge.huffpo.net
*.prod.buzzfeed.io
qa-origin-life.huffpo.net
*.games.yahoo.com
src5.yahoo.com
www.huffpost.com
production-kraken-valencia-preview.use1.huffpo.net
*.cambria-production.huffpo.net
production-athenizer.use1.huffpo.net
www.huffingtonpost.com
qa.preview.www.huffpost.com
*.utils.huffpo.net
origin-hanami.huffpo.net
staging.preview.www.huffpost.com
modulous.aol.com
*.stage.buzzfeed.io
staging-audiogram.use1.huffpo.net
src5.yahoo.com
www.huffingtonpost.com
qa-athena-mongo-cms.huffpo.net
staging-content-transform.use1.huffpo.net
*.app-west.buzzfeed.io
*.use1.huffpo.net
src5.yahoo.com
origin-identifiers.huffpost.net
*.use1.huffpo.net
src5.yahoo.com
beta-preview-origin-cambria-alb.huffpo.net
*.app-west.buzzfeed.io
Certificate
The complete raw certificate details for qa-athena-mongo-image.huffpo.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGmTCCBYGgAwIBAgIQCjzXzQVvJH7iFPbfWUNoZjANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNzA1MDEwMDAwMDBaFw0yMDA1MDgxMjAwMDBa MG8xCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhWaXJnaW5pYTEPMA0GA1UEBxMGRHVs bGVzMREwDwYDVQQKEwhBT0wsIEluYzEpMCcGA1UEAxMgcWEtYXRoZW5hLW1vbmdv LWltYWdlLmh1ZmZwby5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+JJJBJ7qnCQUNWPHLvwLilHQwsr7H0kMROhyhjYVAHxY1RqI01AEUKKp6pIja uyAo4DqD3MOlW3D4OvmlgZnmXUCDWMfM0z3wE1veSHZC9eYuRR7bqDmpc5Zc1/4P UB2bjNwh8yvK6q0gXwPMyrKYgTy8YBBPDhrAQrrgAiKF1PtJeGhhuk28PxjUJjiv KUAFbNNMFIntzIZLjTSQZqArCBQllbGu6DLdBdbV3uvz3BSvneIzQg3R3Vir9t9R YYD7nDMImOkZ6ycfHY2GjysFYPyossKEXK6SX9uhTcgkNcnf4lyNpDMySVsWno5F JPh1slf9/+pEjfEQunkYHfDbAgMBAAGjggMuMIIDKjAfBgNVHSMEGDAWgBRRaP+Q rwIHdTzM2WVkYqISuFlyOzAdBgNVHQ4EFgQUOVi4gsn6f+1+gfUFXQweWkcRMKAw ggFJBgNVHREEggFAMIIBPIIgcWEtYXRoZW5hLW1vbmdvLWltYWdlLmh1ZmZwby5u ZXSCL3FhLWF0aGVuYS1lYS1tb25nby1pbWFnZS02MS0xMTIudXNlMS5odWZmcG8u bmV0gi9xYS1hdGhlbmEtZWEtbW9uZ28taW1hZ2UtNjYtMjU0LnVzZTEuaHVmZnBv Lm5ldIIvcWEtYXRoZW5hLWVhLW1vbmdvLWltYWdlLTY5LTI1NS51c2UxLmh1ZmZw by5uZXSCK3FhLWF0aGVuYS1lYS1tb25nby1pbWFnZS0wMS51c2UxLmh1ZmZwby5u ZXSCK3FhLWF0aGVuYS1lYS1tb25nby1pbWFnZS0wMi51c2UxLmh1ZmZwby5uZXSC K3FhLWF0aGVuYS1lYS1tb25nby1pbWFnZS0wMy51c2UxLmh1ZmZwby5uZXQwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNV HR8EbjBsMDSgMqAwhi5odHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc2hhMi1oYS1z ZXJ2ZXItZzUuY3JsMDSgMqAwhi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hh Mi1oYS1zZXJ2ZXItZzUuY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYI KwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQIC MIGDBggrBgEFBQcBAQR3MHUwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2lj ZXJ0LmNvbTBNBggrBgEFBQcwAoZBaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29t L0RpZ2lDZXJ0U0hBMkhpZ2hBc3N1cmFuY2VTZXJ2ZXJDQS5jcnQwDAYDVR0TAQH/ BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEASv+B U6b8l8Zu+pZovX4JDeyXdh7lyGYDviNjlKTdVh8Uy9nqaHRodiuoJwlN+MMTqtYf 4kI5N8MpM0orCL9jOttoTzt5sNsmvZSsGHeVLe0UzTGjAQAYITUXhYdcyBkXfCzh 6JzvY+pOdUMWh75XcOsF8ocYPq5AjJIB14LI8vGpv3xhJV0/Xj5xVA7V/Zlz2xzE 2RlSwZ+PMjWlZ2gx1BvMNITCvP+Xi69D4NA7O+XUYZEUhQxfDJ7rykaAMqmCIwtP IBVSiEGStAZR52Dz1NEyuMhnlUeR0WtirOvYkjrL0cvJvQ/2ldlNLnFSXuzAdYc4 fdH3GqmR7nn1O6YXNQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAviSSQSe6pwkFDVjxy78C 4pR0MLK+x9JDETocoY2FQB8WNUaiNNQBFCiqeqSI2rsgKOA6g9zDpVtw+Dr5pYGZ 5l1Ag1jHzNM98BNb3kh2QvXmLkUe26g5qXOWXNf+D1Adm4zcIfMryuqtIF8DzMqy mIE8vGAQTw4awEK64AIihdT7SXhoYbpNvD8Y1CY4rylABWzTTBSJ7cyGS400kGag KwgUJZWxrugy3QXW1d7r89wUr53iM0IN0d1Yq/bfUWGA+5wzCJjpGesnHx2Nho8r BWD8qLLChFyukl/boU3IJDXJ3+JcjaQzMklbFp6ORST4dbJX/f/qRI3xELp5GB3w 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13608194730881137080938258685982107750 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-08 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Virginia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Dulles' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AOL, Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'qa-athena-mongo-image.huffpo.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24003311927015414507619772495167828953103254643843293873668535136976296765259772388936869866536302279120214808314301787676242601669638741468603843469858001567026746797442004560698087469960427628265872183630799129129658360089273299458723502547579661713194994570524946680340127143548601911402768729157913633529485900654038250270410546840012698446357142987659572651468470214656890388944291834363964671309276587101466267643501996512231772580661742276397701129533684064228863185799360161940148076651820210696842147823148369328583290094319104492769620848762457825605600874590457942104153968405469382368420071502512129962203 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3958b882c9fa7fed7e81f5055d0c1e5a471130a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (320 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-athena-mongo-image.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-athena-ea-mongo-image-61-112.use1.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-athena-ea-mongo-image-66-254.use1.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-athena-ea-mongo-image-69-255.use1.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-athena-ea-mongo-image-01.use1.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-athena-ea-mongo-image-02.use1.huffpo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-athena-ea-mongo-image-03.use1.huffpo.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g5.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g5.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 004aff8153a6fc97c66efa9668bd7e090dec97761ee5c86603be236394a4dd561f14cbd9ea687468762ba827094df8c313aad61fe2423937c329334a2b08bf633adb684f3b79b0db26bd94ac1877952ded14cd31a301001821351785875cc819177c2ce1e89cef63ea4e75431687be5770eb05f287183eae408c9201d782c8f2f1a9bf7c61255d3f5e3e71540ed5fd9973db1cc4d91952c19f8f3235a5676831d41bcc3484c2bcff978baf43e0d03b3be5d4619114850c5f0c9eebca468032a982230b4f201552884192b40651e760f3d4d132b8c867954791d16b62acebd8923acbd1cbc9bd0ff695d94d2e71525eecc07587387dd1f71aa991ee79f53ba61735