mail.microsoft.com
- Microsoft Corporation -
Issued by Microsoft Azure TLS Issuing CA 02
About this certificate
This digital certificate with serial number 33:00:5a:bd:e2:9f:a1:6f:cc:bd:41:d8:f6:00:00:00:5a:bd:e2 was issued on by Microsoft Corporation.
With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Microsoft Corporation
Organization:
Microsoft Corporation
State / Province:
WA
Locality: Redmond
Country: US
Locality: Redmond
Country: US
Microsoft Corporation
Organization:
Microsoft Corporation
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 33:00:5a:bd:e2:9f:a1:6f:cc:bd:41:d8:f6:00:00:00:5a:bd:e2Serial Number (int): 1137368882938872651519500469950919323489582562
Serial Number lenght: 150 bits, 19 octets
SubjectKeyId: 49:fd:01:1c:d9:fc:26:fb:b2:99:90:ba:3f:34:6d:03:09:68:b4:37
AuthorityKeyId: 00:ab:91:fc:21:62:26:97:9a:a8:79:1b:61:41:90:60:a9:62:67:fd
Fingerprint (sha1): ba:57:24:70:f2:6d:8b:dd:4f:8e:5c:80:b2:99:6e:79:1e:fd:af:95
Fingerprint (sha256): 00:0f:eb:d5:19:02:2c:08:2d:53:b6:ad:23:a3:60:6e:da:6f:0c:53:62:60:c9:4a:4c:32:88:04:b8:d2:cb:af
Issuing Certificate URL: http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2002%20-%20xsign.crt
Revocation information
OCSP Server: http://oneocsp.microsoft.com/ocspCRL Distribution Point: http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2002.crl
Check the revocation status for certificate mail.microsoft.com
14
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mail.microsoft.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
12 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mail.microsoft.com
aps.mail.microsoft.com
autodiscover.microsoft.com
beta.mail.microsoft.com
emea.mail.microsoft.com
hybrid.microsoft.com
mail.exchange.microsoft.com
mail.windows.microsoft.com
mail.winse.microsoft.com
mailint.microsoft.com
owa.microsoft.com
reno.mail.microsoft.com
spa.mail.microsoft.com
windows.mail.microsoft.com
aps.mail.microsoft.com
autodiscover.microsoft.com
beta.mail.microsoft.com
emea.mail.microsoft.com
hybrid.microsoft.com
mail.exchange.microsoft.com
mail.windows.microsoft.com
mail.winse.microsoft.com
mailint.microsoft.com
owa.microsoft.com
reno.mail.microsoft.com
spa.mail.microsoft.com
windows.mail.microsoft.com
Other certificates including the domain name microsoft.com
(limited to 100 certificates)
ppe.gallery.expression.microsoft.com
KeyRecoveryAgent.manage-dogfood.microsoft.com
phoneregistration.gtm.corp.microsoft.com
iot.dps.mp.microsoft.com
gmevpn.glbdns2.microsoft.com
workflowservice-int.dps.mp.microsoft.com
FCS1.AMSU1.sconline-int.microsoft.com
azure-management.azurepilot.cp.microsoft.com
politemail4msft.cloudapp.net
app.aladdindev.microsoft.com
e.microsoft.com
exp3days.ossdatabases-test1.microsoft.com
tip2.vnet.powerplatform.microsoft.com
pitstop.microsoft.com
mail.microsoft.com
solutionsauthor.partners.extranet.microsoft.com
storemanagement-int-client.microsoft.com
000dtk5o40pl2.redmond.corp.microsoft.com
*.contentexplorer.mc.microsoft.com
tip1.api.bap.microsoft.com
quote.mocksubscription.l2o.microsoft.com
tip1.api.bap.microsoft.com
supportactions-dcsteam-actions.services.microsoft.com
*.nus.onlinebackup.microsoft.com
adkaulfake131.ustcms.microsoft.com
afsppweu-cp.afs.azure.net
FCS1.DAMSUA0102.manage-dogfood.microsoft.com
listingsmanagement-int.dps.mp.microsoft.com
selync-lct.redmond.corp.microsoft.com
portfolios.officeppe.com
*.daas.microsoft.com
auth.hcs.microsoft.com
optimizer.asimov.microsoft.com
testdrive.microsoft.com
telemetry.urs.microsoft.com
identity.microsoft.com
vstfmscisext.partners.extranet.microsoft.com
mygroups.microsoft.com
code.msdn.microsoft.com
config.edog.officeapps.live.com
services.awasa.microsoft.com
wus-int.GENEVA.KEYVAULT.slkv2.MICROSOFT.COM
eastus2.vnet.powerplatform.microsoft.com
fp.wd.microsoft.com
mygroups.microsoft.com
download.oemsoc.microsoft.com
msats-ppe.commerce.microsoft.com
ATPAppID.manage-selfhost.microsoft.com
edsystems.parttest.extranettest.microsoft.com
*.daas.microsoft.com
tip2.vnet.powerplatform.microsoft.com
netscan.corp.microsoft.com
mail.protection.outlook.com
detego.partners.extranet.microsoft.com
settings.data.microsoft.com
sfcluster.dev.asi.microsoft.com
*.falconprod-sf.trafficmanager.net
OpsToolReadOnly.manage.microsoft.com
guidesideasaccess4.microsoft.com
mpn-mlxint.microsoft.com
*.redmond.corp.microsoft.com
tip2.vnet.powerplatform.microsoft.com
SpyNet2.Microsoft.com
mysignins-ppe.microsoft.com
regmgmtu1.partners.extranet.microsoft.com
soumay1.ustcms.microsoft.com
i4.services.social.microsoft.com
msit-bcwebatmpoc-sc.cloudapp.net
CH1MBISPOWA.corp.microsoft.com
kailani10.one.microsoft.com
bmslt.partners.extranet.microsoft.com
fulfillmentquery.mcapi.commerce.microsoft.com
azuresqldataloadervcscert4.microsoft.com
testaadoutage.ustcms.microsoft.com
identity.microsoft.com
threatintel-stg.trafficmanager.net
rm2.partners.extranet.microsoft.com
preview.viewer.messaging.microsoft.com
debugoutputest.smltenant.microsoft.com
developertools-test.powerplatform.microsoft.com
zbcmp.pfgold.dev.ustcms.microsoft.com
tip2.vnet.powerplatform.microsoft.com
e.microsoft.com
presence.teams.microsoft.com
beijing-portal.msftvpn.ras.microsoft.com
myprofile-ppe.microsoft.com
adkaulfake050.ustcms.microsoft.com
*.redmond.corp.microsoft.com
home.diagnostics.support.microsoft.com
fasttrack.microsoft.com
pas.windows.net
social.technet.microsoft.com
adkaulfake038.ustcms.microsoft.com
licensing.powerplatform.microsoft.com
alerts.serviceshub.microsoft.com
adkaulfake010.ustcms.microsoft.com
appmanagement.activedirectory.microsoft.com
*.acs.voiceapps.infra.teams.microsoft.com
techprofile.microsoft.com
noam.eersapi.teams.microsoft.com
KeyRecoveryAgent.manage-dogfood.microsoft.com
phoneregistration.gtm.corp.microsoft.com
iot.dps.mp.microsoft.com
gmevpn.glbdns2.microsoft.com
workflowservice-int.dps.mp.microsoft.com
FCS1.AMSU1.sconline-int.microsoft.com
azure-management.azurepilot.cp.microsoft.com
politemail4msft.cloudapp.net
app.aladdindev.microsoft.com
e.microsoft.com
exp3days.ossdatabases-test1.microsoft.com
tip2.vnet.powerplatform.microsoft.com
pitstop.microsoft.com
mail.microsoft.com
solutionsauthor.partners.extranet.microsoft.com
storemanagement-int-client.microsoft.com
000dtk5o40pl2.redmond.corp.microsoft.com
*.contentexplorer.mc.microsoft.com
tip1.api.bap.microsoft.com
quote.mocksubscription.l2o.microsoft.com
tip1.api.bap.microsoft.com
supportactions-dcsteam-actions.services.microsoft.com
*.nus.onlinebackup.microsoft.com
adkaulfake131.ustcms.microsoft.com
afsppweu-cp.afs.azure.net
FCS1.DAMSUA0102.manage-dogfood.microsoft.com
listingsmanagement-int.dps.mp.microsoft.com
selync-lct.redmond.corp.microsoft.com
portfolios.officeppe.com
*.daas.microsoft.com
auth.hcs.microsoft.com
optimizer.asimov.microsoft.com
testdrive.microsoft.com
telemetry.urs.microsoft.com
identity.microsoft.com
vstfmscisext.partners.extranet.microsoft.com
mygroups.microsoft.com
code.msdn.microsoft.com
config.edog.officeapps.live.com
services.awasa.microsoft.com
wus-int.GENEVA.KEYVAULT.slkv2.MICROSOFT.COM
eastus2.vnet.powerplatform.microsoft.com
fp.wd.microsoft.com
mygroups.microsoft.com
download.oemsoc.microsoft.com
msats-ppe.commerce.microsoft.com
ATPAppID.manage-selfhost.microsoft.com
edsystems.parttest.extranettest.microsoft.com
*.daas.microsoft.com
tip2.vnet.powerplatform.microsoft.com
netscan.corp.microsoft.com
mail.protection.outlook.com
detego.partners.extranet.microsoft.com
settings.data.microsoft.com
sfcluster.dev.asi.microsoft.com
*.falconprod-sf.trafficmanager.net
OpsToolReadOnly.manage.microsoft.com
guidesideasaccess4.microsoft.com
mpn-mlxint.microsoft.com
*.redmond.corp.microsoft.com
tip2.vnet.powerplatform.microsoft.com
SpyNet2.Microsoft.com
mysignins-ppe.microsoft.com
regmgmtu1.partners.extranet.microsoft.com
soumay1.ustcms.microsoft.com
i4.services.social.microsoft.com
msit-bcwebatmpoc-sc.cloudapp.net
CH1MBISPOWA.corp.microsoft.com
kailani10.one.microsoft.com
bmslt.partners.extranet.microsoft.com
fulfillmentquery.mcapi.commerce.microsoft.com
azuresqldataloadervcscert4.microsoft.com
testaadoutage.ustcms.microsoft.com
identity.microsoft.com
threatintel-stg.trafficmanager.net
rm2.partners.extranet.microsoft.com
preview.viewer.messaging.microsoft.com
debugoutputest.smltenant.microsoft.com
developertools-test.powerplatform.microsoft.com
zbcmp.pfgold.dev.ustcms.microsoft.com
tip2.vnet.powerplatform.microsoft.com
e.microsoft.com
presence.teams.microsoft.com
beijing-portal.msftvpn.ras.microsoft.com
myprofile-ppe.microsoft.com
adkaulfake050.ustcms.microsoft.com
*.redmond.corp.microsoft.com
home.diagnostics.support.microsoft.com
fasttrack.microsoft.com
pas.windows.net
social.technet.microsoft.com
adkaulfake038.ustcms.microsoft.com
licensing.powerplatform.microsoft.com
alerts.serviceshub.microsoft.com
adkaulfake010.ustcms.microsoft.com
appmanagement.activedirectory.microsoft.com
*.acs.voiceapps.infra.teams.microsoft.com
techprofile.microsoft.com
noam.eersapi.teams.microsoft.com
Certificate
The complete raw certificate details for mail.microsoft.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJpDCCB4ygAwIBAgITMwBaveKfoW/MvUHY9gAAAFq94jANBgkqhkiG9w0BAQwF ADBZMQswCQYDVQQGEwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9u MSowKAYDVQQDEyFNaWNyb3NvZnQgQXp1cmUgVExTIElzc3VpbmcgQ0EgMDIwHhcN MjIwODI0MTgxNzI4WhcNMjMwODE5MTgxNzI4WjBpMQswCQYDVQQGEwJVUzELMAkG A1UECBMCV0ExEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBD b3Jwb3JhdGlvbjEbMBkGA1UEAxMSbWFpbC5taWNyb3NvZnQuY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6kfS6gMmb8ZB3i7bsfCVM+PwGCtKYEhy ympqOrIWBQK8Ia9DCbXHnXJxn3UaGM7ggvjZPcZNKPUv4TXfCgwtbbNFb0UQt5Oy jST594vwpsReUkymXb7beQV5L7Vhl+kTOHIAcWzP68as27j6woC8iyQdWjhJzLVu MyVUlNteXqgYJBIqEq8MYuvzWwdckAOLEkPn7JJ9GjvQ2pwoZJkRc8i6+CKSVkUa f4WLszNW7KOTUIXuomzYZgxVjNtk9hgDHSt1COVeI5ZZqpznoF0brM8L3DGqj6uE aKMeD4kJ7d08Y+/iQVX3d37n+NbmsikEIhf+cEdJ5WCC3bdwL3bNQQIDAQABo4IF UzCCBU8wggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB3AOg+0No+9QY1MudXKLyJ a8kD08vREWvs62nhd31tBr1uAAABgtEcB7cAAAQDAEgwRgIhANKfTYrVyhSkNdIZ E//QLvdCuYG0NmPnIMTipOoABoEXAiEAqp7tDpW8bktLJo0RZvvcvUWar3vIXp22 WJ2aylD+VNMAdQCzc3cH4YRQ+GOG1gWp3BEJSnktsWcMC4fc8AMOeTalmgAAAYLR HAgWAAAEAwBGMEQCIBGq43+fz3/f68UvX8kRyMb+x/Ffl3L/5l5DCP1SeC/wAiA4 5iPLRWMAW8de6z1sWW9IryFtxE5exdNVtNK9sdDDrwB1AHoyjFTYty22IOo44FIe 6YQWcDIThU070ivBOlejUutSAAABgtEcB8MAAAQDAEYwRAIgNyAdWbZm2/uP+BW4 AJvO21qGgw4ktvB3qcGq8/pMpTsCICMIh6rX2YSpU2iJmkDkqJMBgQPl0SK//zMB 6QAAY+dbMCcGCSsGAQQBgjcVCgQaMBgwCgYIKwYBBQUHAwIwCgYIKwYBBQUHAwEw PAYJKwYBBAGCNxUHBC8wLQYlKwYBBAGCNxUIh73XG4Hn60aCgZ0ujtAMh/DaHV2C hOVpgvOnPgIBZAIBJTCBrgYIKwYBBQUHAQEEgaEwgZ4wbQYIKwYBBQUHMAKGYWh0 dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY2VydHMvTWljcm9zb2Z0JTIw QXp1cmUlMjBUTFMlMjBJc3N1aW5nJTIwQ0ElMjAwMiUyMC0lMjB4c2lnbi5jcnQw LQYIKwYBBQUHMAGGIWh0dHA6Ly9vbmVvY3NwLm1pY3Jvc29mdC5jb20vb2NzcDAd BgNVHQ4EFgQUSf0BHNn8JvuymZC6PzRtAwlotDcwDgYDVR0PAQH/BAQDAgSwMIIB ZwYDVR0RBIIBXjCCAVqCEm1haWwubWljcm9zb2Z0LmNvbYIWYXBzLm1haWwubWlj cm9zb2Z0LmNvbYIaYXV0b2Rpc2NvdmVyLm1pY3Jvc29mdC5jb22CF2JldGEubWFp bC5taWNyb3NvZnQuY29tghdlbWVhLm1haWwubWljcm9zb2Z0LmNvbYIUaHlicmlk Lm1pY3Jvc29mdC5jb22CG21haWwuZXhjaGFuZ2UubWljcm9zb2Z0LmNvbYIabWFp bC53aW5kb3dzLm1pY3Jvc29mdC5jb22CGG1haWwud2luc2UubWljcm9zb2Z0LmNv bYIVbWFpbGludC5taWNyb3NvZnQuY29tghFvd2EubWljcm9zb2Z0LmNvbYIXcmVu by5tYWlsLm1pY3Jvc29mdC5jb22CFnNwYS5tYWlsLm1pY3Jvc29mdC5jb22CGndp bmRvd3MubWFpbC5taWNyb3NvZnQuY29tMAwGA1UdEwEB/wQCMAAwZAYDVR0fBF0w WzBZoFegVYZTaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jcmwvTWlj cm9zb2Z0JTIwQXp1cmUlMjBUTFMlMjBJc3N1aW5nJTIwQ0ElMjAwMi5jcmwwZgYD VR0gBF8wXTBRBgwrBgEEAYI3TIN9AQEwQTA/BggrBgEFBQcCARYzaHR0cDovL3d3 dy5taWNyb3NvZnQuY29tL3BraW9wcy9Eb2NzL1JlcG9zaXRvcnkuaHRtMAgGBmeB DAECAjAfBgNVHSMEGDAWgBQAq5H8IWIml5qoeRthQZBgqWJn/TAdBgNVHSUEFjAU BggrBgEFBQcDAgYIKwYBBQUHAwEwDQYJKoZIhvcNAQEMBQADggIBAIpXMOM+oDWM Es8o4mh+kUuki0xCbSSdxp/fv0t3orW59sJboRG9DxiZKGsdwQKX8QGU9ObJTJTH +Ali68Sh02qfBK0g5TsgCZYT1WSU0wjX/lbZzwkGFYGIT1a/UEQZ/G4vLioV1z42 SFtfO64YMJ/ApNa5Q3mN3SxpkbUf30A1AxdvbIROF/o+iITZI2hludElyZpF+JoL 5jWz7Jga28n1lmpaH9VMz4wsJ1vIin0wbJWbSxsjPTeHqgWmOH4LLRL8SFQ57/sQ wnEFCIkPPcRQw+YMFAEOIAMDrvoXh0UdGR4A8Fy45/rjFWWyIMMGwVYRPr8aHeCU mhHRhNJIKzcK8jt+xXC/1ohPjuXzLO2U0LPp5d5Bqiu8/rFDex0r+E/zrAUiOzKM QSykeezjoGDbnvmmxXXMp9yHDSMcDEdj7I+cBUrUiOdrdQvDVkhgXx1pZIqYsTkA 9wsKiaV3NdYy0BTL4sn3Kt8CIPXF6qHlFHsAD8aSEB7AA0V1gMg3Y42wMwPOXNzs eP+9Rz1bY+x1gLyJyvedVF8XecGhkAdOnASeBXJAdE+6afUf3p2RwoirEWL9Ix2i NqwJbEqyzk4GgY+I9V6eFGsxw+U8ZcqbHGjW90rYhdGAFPN4juesMCNgrwingBCl W22EmCS8coOmav3bsOzohwOI+svVWybp -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6kfS6gMmb8ZB3i7bsfCV M+PwGCtKYEhyympqOrIWBQK8Ia9DCbXHnXJxn3UaGM7ggvjZPcZNKPUv4TXfCgwt bbNFb0UQt5OyjST594vwpsReUkymXb7beQV5L7Vhl+kTOHIAcWzP68as27j6woC8 iyQdWjhJzLVuMyVUlNteXqgYJBIqEq8MYuvzWwdckAOLEkPn7JJ9GjvQ2pwoZJkR c8i6+CKSVkUaf4WLszNW7KOTUIXuomzYZgxVjNtk9hgDHSt1COVeI5ZZqpznoF0b rM8L3DGqj6uEaKMeD4kJ7d08Y+/iQVX3d37n+NbmsikEIhf+cEdJ5WCC3bdwL3bN QQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1137368882938872651519500469950919323489582562 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Azure TLS Issuing CA 02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-24 18:17:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-19 18:17:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mail.microsoft.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29575181038920427113270717651516346934089936349859176527554757197103313062012934430854902490753650743326081943728609928583133034799502906574766119175995495048558494643657736125683862207288671012537622628578214945347436402920761857152469379751403916367918304296521862517045828837539805106846945388813492871728111907724281443861765237403706221593570938639760103153484419971111994446969757964989682536797951567497701973122192430822919416919361761798927215169921367427966583833369846291069038040307084126647900454643767121854121721046181552405436360029445259522059862955766097603923405080020409326514473208903980476190017 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.15690651.3798470.4214446.239628.16526621.93.4272873.6083518 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 37 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (161 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2002%20-%20xsign.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://oneocsp.microsoft.com/ocsp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 49fd011cd9fc26fbb29990ba3f346d030968b437 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (350 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aps.mail.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beta.mail.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emea.mail.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hybrid.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.exchange.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.windows.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.winse.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mailint.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'owa.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'reno.mail.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'spa.mail.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'windows.mail.microsoft.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2002.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.76.509.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pkiops/Docs/Repository.htm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 00ab91fc216226979aa8791b61419060a96267fd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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