afsint01.afstest.azure.net
Issued by Microsoft IT TLS CA 5
About this certificate
This digital certificate with serial number 6e:00:11:ba:48:a8:f5:2c:63:8b:5d:33:39:00:00:00:11:ba:48 was issued on by Microsoft Corporation.
With 23 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=afsint01.afstest.azure.net
Microsoft Corporation
Organization:
Microsoft Corporation
Organization unit: Microsoft IT
Organization unit: Microsoft IT
State / Province:
Washington
Locality: Redmond
Country: US
Locality: Redmond
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 6e:00:11:ba:48:a8:f5:2c:63:8b:5d:33:39:00:00:00:11:ba:48Serial Number (int): 2453088004252285660782579528576219027516537416
Serial Number lenght: 151 bits, 19 octets
SubjectKeyId: cc:35:ee:5d:b8:ac:48:f3:06:30:fe:10:83:69:df:57:6d:07:7d:34
AuthorityKeyId: 08:fe:25:9f:74:ea:87:04:c2:bc:bb:8e:a8:38:5f:33:c6:d1:6c:65
Fingerprint (sha1): 14:34:ff:01:b7:d0:9b:ba:fb:20:e9:5d:08:d3:c6:87:1b:d2:dd:56
Fingerprint (sha256): 00:6c:b8:e0:4e:7b:7c:dd:3a:52:91:b1:d6:09:3c:a5:ad:e3:60:f8:6d:ee:d0:5a:a1:20:41:e1:ea:6f:bb:9d
Issuing Certificate URL: http://www.microsoft.com/pki/mscorp/Microsoft%20IT%20TLS%20CA%205.crt
Revocation information
OCSP Server: http://ocsp.msocsp.comCRL Distribution Point: http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%205.crl
CRL Distribution Point: http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%205.crl
Check the revocation status for certificate afsint01.afstest.azure.net
23
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for afsint01.afstest.azure.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tmwestcentraluskailaniintprisvc.one.microsoft.com
tmwestus2kailaniintsecsvc.one.microsoft.com
kailani-int.one.microsoft.com
kailani-int1.one.microsoft.com
kailani-int2.one.microsoft.com
kailani-int3.one.microsoft.com
kailani-int4.one.microsoft.com
kailani-int5.one.microsoft.com
kailani-int6.one.microsoft.com
kailani-int7.one.microsoft.com
kailani-int8.one.microsoft.com
kailani-int9.one.microsoft.com
kailani-int10.one.microsoft.com
kailani-getloc-int-01.one.microsoft.com
kailani-getloc-int-02.one.microsoft.com
kailani-getloc-int-03.one.microsoft.com
kailani-getloc-int-04.one.microsoft.com
kailani-getloc-int-05.one.microsoft.com
francecentralint01.afstest.azure.net
tm-francecentralint01.afstest.azure.net
tm-uksouthint01.afstest.azure.net
uksouthint01.afstest.azure.net
afsint01.afstest.azure.net
tmwestus2kailaniintsecsvc.one.microsoft.com
kailani-int.one.microsoft.com
kailani-int1.one.microsoft.com
kailani-int2.one.microsoft.com
kailani-int3.one.microsoft.com
kailani-int4.one.microsoft.com
kailani-int5.one.microsoft.com
kailani-int6.one.microsoft.com
kailani-int7.one.microsoft.com
kailani-int8.one.microsoft.com
kailani-int9.one.microsoft.com
kailani-int10.one.microsoft.com
kailani-getloc-int-01.one.microsoft.com
kailani-getloc-int-02.one.microsoft.com
kailani-getloc-int-03.one.microsoft.com
kailani-getloc-int-04.one.microsoft.com
kailani-getloc-int-05.one.microsoft.com
francecentralint01.afstest.azure.net
tm-francecentralint01.afstest.azure.net
tm-uksouthint01.afstest.azure.net
uksouthint01.afstest.azure.net
afsint01.afstest.azure.net
Other certificates including the domain name azure.net
(limited to 100 certificates)
adeidentity-PN1PrdApp07.diskencryption.azure.net
azattesttest.westus.cloudapp.azure.com
*.blob.core.windows.net
adeidentity-BLAPrdHPC02.diskencryption.azure.net
*.blob.core.windows.net
*.file.core.windows.net
*.table.core.windows.net
*.table.core.windows.net
adeidentity-DB4PrdHPC01.diskencryption.azure.net
*.file.core.windows.net
*.queue.core.windows.net
*.account.core.windows.net
adeidentity-MWH04PrdApp14.diskencryption.azure.net
*.file.core.windows.net
*.web.core.windows.net
*.eventgrid-int.azure.net
afsppweu-cp.afs.azure.net
*.dfs.core.windows.net
b2b.azure.net
*.table.core.windows.net
*.dfs.core.windows.net
*.blob.core.windows.net
*.queue.core.windows.net
adeidentity-BY4PrdDDC15.diskencryption.azure.net
*.queue.core.windows.net
*.queue.core.windows.net
*.account.core.windows.net
*.blob.core.windows.net
*.table.core.windows.net
*.file.core.windows.net
*.queue.core.windows.net
*.blob.core.windows.net
afsppjpw-dp.afs.azure.net
*.dfs.core.windows.net
*.account.core.windows.net
*.dfs.core.windows.net
*.queue.core.windows.net
*.queue.core.windows.net
*.file.core.windows.net
cvprhkn01v.cloudvideo.azure.net
*.file.core.windows.net
*.dfs.core.windows.net
*.dfs.core.windows.net
*.blob.core.windows.net
*.table.core.windows.net
*.blob.core.windows.net
CBN06PrdApp01.prod.idns.azure.net
*.dfs.core.windows.net
adeidentity-BL6PrdApp10.diskencryption.azure.net
*.blob.core.windows.net
*.file.core.windows.net
adeidentity-AMS20PrdHPC01.diskencryption.azure.net
*.dfs.core.windows.net
*.blob.core.windows.net
*.dfs.core.windows.net
vault.azure.net
CBZ07PrdApp01.prod.idns.azure.net
*.web.core.windows.net
*.queue.core.windows.net
*.queue.core.windows.net
*.blob.core.windows.net
*.identity.azure.net
*.dfs.core.windows.net
*.table.core.windows.net
*.file.core.windows.net
*.queue.core.windows.net
servicefabricmanagement.eventgrid.azure.net
*.web.core.windows.net
*.file.core.windows.net
*.blob.core.windows.net
*.blob.core.windows.net
*.web.core.windows.net
adeidentity-ZRH20PrdApp03.diskencryption.azure.net
*.table.core.windows.net
CW1PrdApp02.prod.idns.azure.net
*.dfs.core.windows.net
*.blob.core.windows.net
adfmonitoringclienteastus2euap.azure.net
*.web.core.windows.net
*.eventgrid-int.azure.net
*.web.core.windows.net
afsint01.afstest.azure.net
*.file.core.windows.net
*.table.core.windows.net
*.table.core.windows.net
*.file.core.windows.net
*.file.core.windows.net
adeidentity-SG2PrdApp35.diskencryption.azure.net
*.dfs.core.windows.net
*.web.core.windows.net
*.account.core.windows.net
adeidentity-TYO20PrdApp06.diskencryption.azure.net
*.web.core.windows.net
*.queue.core.windows.net
*.account.core.windows.net
adeidentity-ML1PrdApp05.diskencryption.azure.net
*.file.core.windows.net
*.file.core.windows.net
adeidentity-SG2PrdApp06.diskencryption.azure.net
adeidentity-SYD23PrdApp06.diskencryption.azure.net
azattesttest.westus.cloudapp.azure.com
*.blob.core.windows.net
adeidentity-BLAPrdHPC02.diskencryption.azure.net
*.blob.core.windows.net
*.file.core.windows.net
*.table.core.windows.net
*.table.core.windows.net
adeidentity-DB4PrdHPC01.diskencryption.azure.net
*.file.core.windows.net
*.queue.core.windows.net
*.account.core.windows.net
adeidentity-MWH04PrdApp14.diskencryption.azure.net
*.file.core.windows.net
*.web.core.windows.net
*.eventgrid-int.azure.net
afsppweu-cp.afs.azure.net
*.dfs.core.windows.net
b2b.azure.net
*.table.core.windows.net
*.dfs.core.windows.net
*.blob.core.windows.net
*.queue.core.windows.net
adeidentity-BY4PrdDDC15.diskencryption.azure.net
*.queue.core.windows.net
*.queue.core.windows.net
*.account.core.windows.net
*.blob.core.windows.net
*.table.core.windows.net
*.file.core.windows.net
*.queue.core.windows.net
*.blob.core.windows.net
afsppjpw-dp.afs.azure.net
*.dfs.core.windows.net
*.account.core.windows.net
*.dfs.core.windows.net
*.queue.core.windows.net
*.queue.core.windows.net
*.file.core.windows.net
cvprhkn01v.cloudvideo.azure.net
*.file.core.windows.net
*.dfs.core.windows.net
*.dfs.core.windows.net
*.blob.core.windows.net
*.table.core.windows.net
*.blob.core.windows.net
CBN06PrdApp01.prod.idns.azure.net
*.dfs.core.windows.net
adeidentity-BL6PrdApp10.diskencryption.azure.net
*.blob.core.windows.net
*.file.core.windows.net
adeidentity-AMS20PrdHPC01.diskencryption.azure.net
*.dfs.core.windows.net
*.blob.core.windows.net
*.dfs.core.windows.net
vault.azure.net
CBZ07PrdApp01.prod.idns.azure.net
*.web.core.windows.net
*.queue.core.windows.net
*.queue.core.windows.net
*.blob.core.windows.net
*.identity.azure.net
*.dfs.core.windows.net
*.table.core.windows.net
*.file.core.windows.net
*.queue.core.windows.net
servicefabricmanagement.eventgrid.azure.net
*.web.core.windows.net
*.file.core.windows.net
*.blob.core.windows.net
*.blob.core.windows.net
*.web.core.windows.net
adeidentity-ZRH20PrdApp03.diskencryption.azure.net
*.table.core.windows.net
CW1PrdApp02.prod.idns.azure.net
*.dfs.core.windows.net
*.blob.core.windows.net
adfmonitoringclienteastus2euap.azure.net
*.web.core.windows.net
*.eventgrid-int.azure.net
*.web.core.windows.net
afsint01.afstest.azure.net
*.file.core.windows.net
*.table.core.windows.net
*.table.core.windows.net
*.file.core.windows.net
*.file.core.windows.net
adeidentity-SG2PrdApp35.diskencryption.azure.net
*.dfs.core.windows.net
*.web.core.windows.net
*.account.core.windows.net
adeidentity-TYO20PrdApp06.diskencryption.azure.net
*.web.core.windows.net
*.queue.core.windows.net
*.account.core.windows.net
adeidentity-ML1PrdApp05.diskencryption.azure.net
*.file.core.windows.net
*.file.core.windows.net
adeidentity-SG2PrdApp06.diskencryption.azure.net
adeidentity-SYD23PrdApp06.diskencryption.azure.net
Certificate
The complete raw certificate details for afsint01.afstest.azure.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILajCCCVKgAwIBAgITbgARukio9Sxji10zOQAAABG6SDANBgkqhkiG9w0BAQsF ADCBizELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEVMBMGA1UE CxMMTWljcm9zb2Z0IElUMR4wHAYDVQQDExVNaWNyb3NvZnQgSVQgVExTIENBIDUw HhcNMjAwMjEzMTgwNTMzWhcNMjIwMjEzMTgwNTMzWjAlMSMwIQYDVQQDExphZnNp bnQwMS5hZnN0ZXN0LmF6dXJlLm5ldDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAJl400c0/HSD0Kb0lRRYUArNBO4EkIolBYEtcQU+VL3j3qCVfGunuZ+U lQ018lD05b4xo/x2R37WXl2ySO2wVEAwzdW1vhAsFM70fIgC6tUGhNGwbpS4AmTB dDR98r3QMEy8ylD4SOueI65/KERgdpYRf4V+FOpo5r7J73OwzbeVUUCbTOsIQJqX 6aenpaRk2Jm+nJs5A4nVuKNZ/UcBoJ7+W/eJVVkAI3HSC9ZaklGHz6XjSilnogDG JPO2u4JApSJ1G7woIZBbG95VG0u1OZ1IXePHfebqcd4jR+N6QZSz8GUIvZwJllm8 VUyl0SB4Cs+njhJLBUYyt4FykaDO3eUCAwEAAaOCByowggcmMIIBewYKKwYBBAHW eQIEAgSCAWsEggFnAWUAdQCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3c EAAAAXA/w2xTAAAEAwBGMEQCIHpo1vCMnRgYJhJ+vzz2t1NBRtvZEIb/z4nt6+mP dPOvAiA472ZRq/dnkOMD8ndkI1Idmeei5twgBPvnXjhBE5V0dQB1AEHIyrHfIkZK EMahOglCh15OMYsbA+vrS8do8JBilgb2AAABcD/DbHAAAAQDAEYwRAIgDdspQGAD SxXAEHlPSN9X6NRijHEfz87m1C0S5CRNbPMCICLPLVEzhfh2sIo2bSE7WKmgyla2 jVVQB/TjIFSnCP4cAHUAIkVFB1lVJFaWP6Ev8fdthuAjJmOtwEt/XcaDXG7iDwIA AAFwP8NsxwAABAMARjBEAiAaabsAftw68LCM4benl3XJvqoVk3x4dDCJGYMTaDVb dwIgFUgquy+TPXlMlhg2aXg5AoHPD5/0nDCWYvlFq7FRwlkwJwYJKwYBBAGCNxUK BBowGDAKBggrBgEFBQcDAjAKBggrBgEFBQcDATA+BgkrBgEEAYI3FQcEMTAvBicr BgEEAYI3FQiH2oZ1g+7ZAYLJhRuBtZ5hhfTrYIFdhNLfQoLnk3oCAWQCAR0wgYUG CCsGAQUFBwEBBHkwdzBRBggrBgEFBQcwAoZFaHR0cDovL3d3dy5taWNyb3NvZnQu Y29tL3BraS9tc2NvcnAvTWljcm9zb2Z0JTIwSVQlMjBUTFMlMjBDQSUyMDUuY3J0 MCIGCCsGAQUFBzABhhZodHRwOi8vb2NzcC5tc29jc3AuY29tMB0GA1UdDgQWBBTM Ne5duKxI8wYw/hCDad9XbQd9NDALBgNVHQ8EBAMCBLAwggNIBgNVHREEggM/MIID O4IxdG13ZXN0Y2VudHJhbHVza2FpbGFuaWludHByaXN2Yy5vbmUubWljcm9zb2Z0 LmNvbYIrdG13ZXN0dXMya2FpbGFuaWludHNlY3N2Yy5vbmUubWljcm9zb2Z0LmNv bYIda2FpbGFuaS1pbnQub25lLm1pY3Jvc29mdC5jb22CHmthaWxhbmktaW50MS5v bmUubWljcm9zb2Z0LmNvbYIea2FpbGFuaS1pbnQyLm9uZS5taWNyb3NvZnQuY29t gh5rYWlsYW5pLWludDMub25lLm1pY3Jvc29mdC5jb22CHmthaWxhbmktaW50NC5v bmUubWljcm9zb2Z0LmNvbYIea2FpbGFuaS1pbnQ1Lm9uZS5taWNyb3NvZnQuY29t gh5rYWlsYW5pLWludDYub25lLm1pY3Jvc29mdC5jb22CHmthaWxhbmktaW50Ny5v bmUubWljcm9zb2Z0LmNvbYIea2FpbGFuaS1pbnQ4Lm9uZS5taWNyb3NvZnQuY29t gh5rYWlsYW5pLWludDkub25lLm1pY3Jvc29mdC5jb22CH2thaWxhbmktaW50MTAu b25lLm1pY3Jvc29mdC5jb22CJ2thaWxhbmktZ2V0bG9jLWludC0wMS5vbmUubWlj cm9zb2Z0LmNvbYIna2FpbGFuaS1nZXRsb2MtaW50LTAyLm9uZS5taWNyb3NvZnQu Y29tgidrYWlsYW5pLWdldGxvYy1pbnQtMDMub25lLm1pY3Jvc29mdC5jb22CJ2th aWxhbmktZ2V0bG9jLWludC0wNC5vbmUubWljcm9zb2Z0LmNvbYIna2FpbGFuaS1n ZXRsb2MtaW50LTA1Lm9uZS5taWNyb3NvZnQuY29tgiRmcmFuY2VjZW50cmFsaW50 MDEuYWZzdGVzdC5henVyZS5uZXSCJ3RtLWZyYW5jZWNlbnRyYWxpbnQwMS5hZnN0 ZXN0LmF6dXJlLm5ldIIhdG0tdWtzb3V0aGludDAxLmFmc3Rlc3QuYXp1cmUubmV0 gh51a3NvdXRoaW50MDEuYWZzdGVzdC5henVyZS5uZXSCGmFmc2ludDAxLmFmc3Rl c3QuYXp1cmUubmV0MIGsBgNVHR8EgaQwgaEwgZ6ggZuggZiGS2h0dHA6Ly9tc2Ny bC5taWNyb3NvZnQuY29tL3BraS9tc2NvcnAvY3JsL01pY3Jvc29mdCUyMElUJTIw VExTJTIwQ0ElMjA1LmNybIZJaHR0cDovL2NybC5taWNyb3NvZnQuY29tL3BraS9t c2NvcnAvY3JsL01pY3Jvc29mdCUyMElUJTIwVExTJTIwQ0ElMjA1LmNybDBNBgNV HSAERjBEMEIGCSsGAQQBgjcqATA1MDMGCCsGAQUFBwIBFidodHRwOi8vd3d3Lm1p Y3Jvc29mdC5jb20vcGtpL21zY29ycC9jcHMwHwYDVR0jBBgwFoAUCP4ln3TqhwTC vLuOqDhfM8bRbGUwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMA0GCSqG SIb3DQEBCwUAA4ICAQBtNQKFdBKV64O4S6vKG8t6ooxdFv53G/konhwqX+fSCSOC cVs0Ca/HFYMv4sAMCkJhZcBrIZihAkB87E92nXOMWzp+3mC26yYNZ/sfUWmwA6Lw U1/oPTuxonAG8MpW1/zSoLBK/6Hw/CVzNaM/Cyev0bVflTCwLZSO1dHgvW5+o57r CFSq0z374JF/1GmfnhlAXiwqVTNuBEAWW+/qZO+rituWhZ3XubGJc8xsPKgmvtzy iyDkFpygMUmdT4sOJ1TK1XjgmS9Su3faIrKT1yBjASr+zEl6ioYQ8QiTEQRJ4ujZ VhBbcqP9D9qHIBI8tkF561hSjFXwl1S9E7edcT/wOTnjDHTJFN9x8asvhZSe2UkQ Uex8ewBWhhI/i1wKj2uo7YJMXuz1/b+yLdNOixCBzfRW+18uwkDCaHPxyTvoCgb9 G4+VHH1wlHzJTqELkx4zfDVzIj1RqlRqjrhJrZC7/0NjO4nK70qjvWynwT7lLS2h VLjnFt4GLRRXb2P+jtj/9JSi5djirPsSMAqlb1iLf1VlPYp5MHIKhahDb582aSUc bxZDXb7zFu67iF/zDrpx+lQdJeV1VMiMuiaq4hRf+I0AHwFuz3XzXNTJeKGPqiKl z8ook4jwpNMxjb9JNh6e86ebu1Df3x2btcIH0u5Vr3ZEq/kbFzEHUCe4arX8ug== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXjTRzT8dIPQpvSVFFhQ Cs0E7gSQiiUFgS1xBT5UvePeoJV8a6e5n5SVDTXyUPTlvjGj/HZHftZeXbJI7bBU QDDN1bW+ECwUzvR8iALq1QaE0bBulLgCZMF0NH3yvdAwTLzKUPhI654jrn8oRGB2 lhF/hX4U6mjmvsnvc7DNt5VRQJtM6whAmpfpp6elpGTYmb6cmzkDidW4o1n9RwGg nv5b94lVWQAjcdIL1lqSUYfPpeNKKWeiAMYk87a7gkClInUbvCghkFsb3lUbS7U5 nUhd48d95upx3iNH43pBlLPwZQi9nAmWWbxVTKXRIHgKz6eOEksFRjK3gXKRoM7d 5QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2453088004252285660782579528576219027516537416 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT TLS CA 5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-13 18:05:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-13 18:05:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'afsint01.afstest.azure.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19374041838462582817860352768394412585041367380233717668654800133862245351065849710644579803069508138996239629007214290314042512046759935160356948366449311246179137916682056941601187948084978516745915457995051214909004393030507541188950671365934022850619587393209093087674808148011703793625378533301382335915686928195288889469567925011179310901257079859640577905003930490120016056885134165895307443636469735798956999708159230983119536595010756972274303796867042435115586899109631905261221099351692639172057190410413236046687670911001647976033185422110597270562856893204134930112614376821267984566487095181543002267109 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (359 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.16155509.8105089.5391003.2969441.12400096.221.9744322.5884410 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pki/mscorp/Microsoft%20IT%20TLS%20CA%205.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.msocsp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cc35ee5db8ac48f30630fe108369df576d077d34 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (831 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmwestcentraluskailaniintprisvc.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmwestus2kailaniintsecsvc.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int1.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int2.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int3.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int4.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int5.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int6.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int7.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int8.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int9.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-int10.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-getloc-int-01.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-getloc-int-02.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-getloc-int-03.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-getloc-int-04.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kailani-getloc-int-05.one.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'francecentralint01.afstest.azure.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tm-francecentralint01.afstest.azure.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tm-uksouthint01.afstest.azure.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uksouthint01.afstest.azure.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'afsint01.afstest.azure.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (164 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%205.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%205.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.42.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pki/mscorp/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 08fe259f74ea8704c2bcbb8ea8385f33c6d16c65 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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