*.allyou.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0b:e5:8e:ed:36:7f:47:71:c9:c2:04:c4:c3:cf:7b:66 was issued on by Amazon.
With 23 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.allyou.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:e5:8e:ed:36:7f:47:71:c9:c2:04:c4:c3:cf:7b:66Serial Number (int): 15813442830342846043207814982640040806
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ad:2a:fd:70:ae:a5:cc:79:f3:17:f9:78:bd:bc:b7:58:3b:d0:93:85
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): ad:57:3b:a4:60:95:9b:06:6f:76:c7:9a:01:25:20:e1:b8:8a:b8:c7
Fingerprint (sha256): 00:85:9e:7a:a5:f7:5e:a0:a3:f4:ca:d4:4f:cb:01:08:11:6e:95:7e:6a:cd:19:25:75:55:e6:54:5f:fa:7e:cc
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.allyou.com
23
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.allyou.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.allyou.com
*.coastalliving.com
*.cookinglight.com
*.departures.com
*.ew.com
*.foodandwine.com
*.fortune.com
*.health.com
*.instyle.com
*.money.com
*.myrecipes.com
*.people.com
*.peopleenespanol.com
*.peoplepets.com
*.peoplestylewatch.com
*.realsimple.com
*.si.com
*.sikids.com
*.southernliving.com
*.time.com
*.timeforkids.com
*.timeinc.net
*.travelandleisure.com
*.coastalliving.com
*.cookinglight.com
*.departures.com
*.ew.com
*.foodandwine.com
*.fortune.com
*.health.com
*.instyle.com
*.money.com
*.myrecipes.com
*.people.com
*.peopleenespanol.com
*.peoplepets.com
*.peoplestylewatch.com
*.realsimple.com
*.si.com
*.sikids.com
*.southernliving.com
*.time.com
*.timeforkids.com
*.timeinc.net
*.travelandleisure.com
Other certificates including the domain name allyou.com
(limited to 100 certificates)
*.allyou.com
office.timeinc.com
qa-subscription.ecommerce.timeinc.com
qa-subscription.ecommerce.timeinc.com
qa-subscription.ecommerce.timeinc.com
office.timeinc.com
qa-subscription.ecommerce.timeinc.com
subscription.timeinc.com
qa-profiles-uat.timeinc.net
qa-profiles.timeinc.net
tmpcaa.enterprise.corpad.timeinc.com
profiles.timeinc.net
dev-profiles.timeinc.net
rails.timeinc.net
promotions.rslifestylers.com
office.timeinc.com
qa-profiles.timeinc.net
realitycheckers.allyou.com
*.allyou.com
allyoga.me
subscription-assets.timeinc.com
rails.timeinc.net
subscription.timeinc.com
pages.email.time.com
*.health.com
*.health.com
office.timeinc.com
promotions.rslifestylers.com
tls.automattic.com
office.timeinc.com
*.allyou.com
rails.timeinc.net
subscription.timeinc.com
www.allyou.com
qa-profiles.timeinc.net
rails.timeinc.net
*.health.com
office.timeinc.com
qa-subscription.ecommerce.timeinc.com
office.timeinc.com
dailysavings.allyou.com
office.timeinc.com
subscription-assets.timeinc.com
*.health.com
*.health.com
*.allyou.com
qa-subscription.ecommerce.timeinc.com
office.timeinc.com
*.allyou.com
subscription.timeinc.com
promotions.rslifestylers.com
*.allyou.com
coupons.allyou.com
www.allyou.com
subscription.timeinc.com
rails.timeinc.net
subscription-assets.timeinc.com
*.allyou.com
dev-profiles.timeinc.net
www.ahventure.com
rails.timeinc.net
office.timeinc.com
*.allyou.com
subscription-assets.timeinc.com
subscription-assets.timeinc.com
subscription.timeinc.com
www.tidrupal.timeinc.net
qa-subscription.ecommerce.timeinc.com
subscription-assets.timeinc.com
dev-profiles.timeinc.net
subscription-assets.timeinc.com
promotions.rslifestylers.com
office.timeinc.com
promotions.rslifestylers.com
office.timeinc.com
rails.timeinc.net
qa-subscription.timeinc.com
dailysavings.allyou.com
office.timeinc.com
*.allyou.com
subscription-assets.timeinc.com
office.timeinc.com
*.allyou.com
subscription-assets.timeinc.com
subscription-assets.timeinc.com
dailysavings.allyou.com
office.timeinc.com
*.allyou.com
profiles.timeinc.net
dailysavings.allyou.com
*.allyou.com
dev-aws-subscription.timeinc.com
office.timeinc.com
rails.timeinc.net
rails.timeinc.net
office.timeinc.com
*.allyou.com
subscription-assets.timeinc.com
tiads.timeinc.net
realitycheckersdev.allyou.com
office.timeinc.com
qa-subscription.ecommerce.timeinc.com
qa-subscription.ecommerce.timeinc.com
qa-subscription.ecommerce.timeinc.com
office.timeinc.com
qa-subscription.ecommerce.timeinc.com
subscription.timeinc.com
qa-profiles-uat.timeinc.net
qa-profiles.timeinc.net
tmpcaa.enterprise.corpad.timeinc.com
profiles.timeinc.net
dev-profiles.timeinc.net
rails.timeinc.net
promotions.rslifestylers.com
office.timeinc.com
qa-profiles.timeinc.net
realitycheckers.allyou.com
*.allyou.com
allyoga.me
subscription-assets.timeinc.com
rails.timeinc.net
subscription.timeinc.com
pages.email.time.com
*.health.com
*.health.com
office.timeinc.com
promotions.rslifestylers.com
tls.automattic.com
office.timeinc.com
*.allyou.com
rails.timeinc.net
subscription.timeinc.com
www.allyou.com
qa-profiles.timeinc.net
rails.timeinc.net
*.health.com
office.timeinc.com
qa-subscription.ecommerce.timeinc.com
office.timeinc.com
dailysavings.allyou.com
office.timeinc.com
subscription-assets.timeinc.com
*.health.com
*.health.com
*.allyou.com
qa-subscription.ecommerce.timeinc.com
office.timeinc.com
*.allyou.com
subscription.timeinc.com
promotions.rslifestylers.com
*.allyou.com
coupons.allyou.com
www.allyou.com
subscription.timeinc.com
rails.timeinc.net
subscription-assets.timeinc.com
*.allyou.com
dev-profiles.timeinc.net
www.ahventure.com
rails.timeinc.net
office.timeinc.com
*.allyou.com
subscription-assets.timeinc.com
subscription-assets.timeinc.com
subscription.timeinc.com
www.tidrupal.timeinc.net
qa-subscription.ecommerce.timeinc.com
subscription-assets.timeinc.com
dev-profiles.timeinc.net
subscription-assets.timeinc.com
promotions.rslifestylers.com
office.timeinc.com
promotions.rslifestylers.com
office.timeinc.com
rails.timeinc.net
qa-subscription.timeinc.com
dailysavings.allyou.com
office.timeinc.com
*.allyou.com
subscription-assets.timeinc.com
office.timeinc.com
*.allyou.com
subscription-assets.timeinc.com
subscription-assets.timeinc.com
dailysavings.allyou.com
office.timeinc.com
*.allyou.com
profiles.timeinc.net
dailysavings.allyou.com
*.allyou.com
dev-aws-subscription.timeinc.com
office.timeinc.com
rails.timeinc.net
rails.timeinc.net
office.timeinc.com
*.allyou.com
subscription-assets.timeinc.com
tiads.timeinc.net
realitycheckersdev.allyou.com
Certificate
The complete raw certificate details for *.allyou.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG3jCCBcagAwIBAgIQC+WO7TZ/R3HJwgTEw897ZjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA5MTkwMDAwMDBaFw0yMDEwMTkx MjAwMDBaMBcxFTATBgNVBAMMDCouYWxseW91LmNvbTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAOvjGniIXI+P+36MMZA9K3F9euGBSNfgvtwJ1DBfnIez YDAbvoCLgOqcGezsqkorc9ISiOoDGuhvYbd8vLmdxCqOnAQm3gQ9U9M0fPLPqMt2 sriLX2tbcouychzGhbBi77/VytqzjZ35LqD92eIvLDueetDiWfndtBBiEm/qbyYA Awl4/pJOt9dkzEhQaRhcm9cy5IyvftM4purdR6Dxb9E18a7kuSYd9nNWe21wHryG 4ZkskENtPihzs6WlTDVnnbESjSgR5qFgx6oPMZN+5pYHdONjBOrAahExqXcd51ou +b3nhRlroMf+9AFbxh0VpPsbhKOZLeMZcNdvisYnFLMCAwEAAaOCA/UwggPxMB8G A1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBStKv1wrqXM efMX+Xi9vLdYO9CThTCCAZIGA1UdEQSCAYkwggGFggwqLmFsbHlvdS5jb22CEyou Y29hc3RhbGxpdmluZy5jb22CEiouY29va2luZ2xpZ2h0LmNvbYIQKi5kZXBhcnR1 cmVzLmNvbYIIKi5ldy5jb22CESouZm9vZGFuZHdpbmUuY29tgg0qLmZvcnR1bmUu Y29tggwqLmhlYWx0aC5jb22CDSouaW5zdHlsZS5jb22CCyoubW9uZXkuY29tgg8q Lm15cmVjaXBlcy5jb22CDCoucGVvcGxlLmNvbYIVKi5wZW9wbGVlbmVzcGFub2wu Y29tghAqLnBlb3BsZXBldHMuY29tghYqLnBlb3BsZXN0eWxld2F0Y2guY29tghAq LnJlYWxzaW1wbGUuY29tgggqLnNpLmNvbYIMKi5zaWtpZHMuY29tghQqLnNvdXRo ZXJubGl2aW5nLmNvbYIKKi50aW1lLmNvbYIRKi50aW1lZm9ya2lkcy5jb22CDSou dGltZWluYy5uZXSCFioudHJhdmVsYW5kbGVpc3VyZS5jb20wDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCg LqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcmww IAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkw ZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3QuY29t MDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9z Y2ExYi5jcnQwDAYDVR0TAQH/BAIwADCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABbUbh5rgAAAQDAEcw RQIhAP9Zz4iarPMmvUe1UHDukZiiARRotqbrgWTfIizoOs7bAiA15KAV+MVN7s72 p5oAnZOIbOKWBX/Haw9IP3tck2IjNAB2AId1v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1 YMG06v9eoIMPAAABbUbh5ysAAAQDAEcwRQIhAO6t2bEsRT3yrRyYJ1GdUB20g7Wj 8jLHtjUfv7zddZ8oAiBcY8oETPnNycfB18vvQZ3q+UDBrZSt3YKdJGo8VLywKDAN BgkqhkiG9w0BAQsFAAOCAQEASJ2kOq9SAk4OtLRTwRG04OzOWtnvnNIP7YRmY8/6 RriKEKqcu5VuJFeWZBw1QI9pZMPSfGeth1Tovlp1dNNiYRhSykSq4QfyGg/7uhYd pXLUXK4YQ8h2/jkJaO9d6dSMxk7i9xBzMUH0qQvcWgwYLsnubdbbzgFPKYPSInv8 KM1DaadtBrxMwAwUp4JMR9vxSsQlnv8AGtMj72M6ee4SzzqnftWmDMeFyjOb56Ym 6Sr8K5s3WkK9K+qsPKb3o91iZefbYJIfYiGbn/CNwwlNTTrHEhP7Pa1Dt7RBpiGe Q0g50T3VHvpAodj3/O27M46vVg8f+KksMAvLtoI9kGZ6sw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6+MaeIhcj4/7fowxkD0r cX164YFI1+C+3AnUMF+ch7NgMBu+gIuA6pwZ7OyqSitz0hKI6gMa6G9ht3y8uZ3E Ko6cBCbeBD1T0zR88s+oy3ayuItfa1tyi7JyHMaFsGLvv9XK2rONnfkuoP3Z4i8s O5560OJZ+d20EGISb+pvJgADCXj+kk6312TMSFBpGFyb1zLkjK9+0zim6t1HoPFv 0TXxruS5Jh32c1Z7bXAevIbhmSyQQ20+KHOzpaVMNWedsRKNKBHmoWDHqg8xk37m lgd042ME6sBqETGpdx3nWi75veeFGWugx/70AVvGHRWk+xuEo5kt4xlw12+KxicU swIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15813442830342846043207814982640040806 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-10-19 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.allyou.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29777990528275420690638836974343340787441314965087253879149040830333689592448263437927857683979806851491936887084058582244929275784008506881216342496235980000802739773929788544042502057448214777787776034318684559218251056572228341472495342961165992997152574644086952897399645602745793648950631749870823565822746248937492976058967304662719969110352268993165516611082135726777832271208497418665181209718298712042820473991549187906452910945620615218845969111170072754113386816603103186355157443752600786430841710955177304444535276591227664904786306115529709461729947761872316850345041097280564160912499856625861233415347 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ad2afd70aea5cc79f317f978bdbcb7583bd09385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (393 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.allyou.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.coastalliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cookinglight.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.departures.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ew.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.foodandwine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fortune.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.health.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.instyle.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.money.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.myrecipes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.people.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.peopleenespanol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.peoplepets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.peoplestylewatch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.realsimple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.si.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sikids.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.southernliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.time.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.timeforkids.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.timeinc.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.travelandleisure.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000016d46e1e6b80000040300473045022100ff59cf889aacf326bd47b55070ee9198a2011468b6a6eb8164df222ce83acedb022035e4a015f8c54deecef6a79a009d93886ce296057fc76b0f483f7b5c936223340076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016d46e1e72b0000040300473045022100eeadd9b12c453df2ad1c9827519d501db483b5a3f232c7b6351fbfbcdd759f2802205c63ca044cf9cdc9c7c1d7cbef419deaf940c1ad94addd829d246a3c54bcb028 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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