kaizalamessaging.osi.office-int.net
Issued by Microsoft IT SSL SHA2
About this certificate
This digital certificate with serial number 5a:00:06:27:10:2c:9c:8c:f8:fd:5c:55:6f:00:01:00:06:27:10 was issued on by Microsoft Corporation.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=kaizalamessaging.osi.office-int.net
Microsoft Corporation
Organization:
Microsoft Corporation
Organization unit: Microsoft IT
Organization unit: Microsoft IT
State / Province:
Washington
Locality: Redmond
Country: US
Locality: Redmond
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 5a:00:06:27:10:2c:9c:8c:f8:fd:5c:55:6f:00:01:00:06:27:10Serial Number (int): 2007069161485831022962096049055776368509724432
Serial Number lenght: 151 bits, 19 octets
SubjectKeyId: 19:87:49:03:b3:75:b1:c5:be:e4:07:18:39:70:c3:11:6f:09:38:f0
AuthorityKeyId: 51:af:24:26:9c:f4:68:22:57:80:26:2b:3b:46:62:15:7b:1e:cc:a5
Fingerprint (sha1): 40:c2:27:ed:11:bf:ac:32:b1:ee:39:45:ec:57:5c:0e:b1:1d:e5:ac
Fingerprint (sha256): 00:ba:27:6f:ef:57:87:ec:f2:c2:5e:8e:1a:92:2c:78:ee:a8:e3:92:7b:3d:79:be:ea:aa:46:68:a3:c0:ad:d6
Issuing Certificate URL: http://www.microsoft.com/pki/mscorp/msitwww2.crt
Revocation information
OCSP Server: http://ocsp.msocsp.comCRL Distribution Point: http://mscrl.microsoft.com/pki/mscorp/crl/msitwww2.crl
CRL Distribution Point: http://crl.microsoft.com/pki/mscorp/crl/msitwww2.crl
Check the revocation status for certificate kaizalamessaging.osi.office-int.net
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kaizalamessaging.osi.office-int.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kaizalamessaging.osi.office-int.net
*.kaiza.la
*.kaizalamessaging.osi.office-int.net
*.kaiza.la
*.kaizalamessaging.osi.office-int.net
Other certificates including the domain name office-int.net
(limited to 100 certificates)
officernr.osi.office-int.net
kaizalamessaging.osi.office-int.net
*.osi.office-int.net
augmentation.osi.office-int.net
*.osi.office-int.net
OsiDataEncrypt-Carmine-ALL-DEK.osi.office-int.net
icmconnector.griffinosiplatformtest.osi.office-int.net
kasmgmtportal.osi.office-int.net
Aqua-INT-MdmAdministrator.osi.office-int.net
msa-sapi.graph.office-int.net
Cobalt-INT-MdmAdministrator.osi.office-int.net
manage.osi.office-int.net
Cobalt-INT-MdmAdministrator.osi.office-int.net
inclient.store.office-int.com
store.office-int.com
Wheat-INT-MdmAdministrator.osi.office-int.net
Caelum-INT-MdmAdministrator.osi.office-int.net
insertmedia.osi.office-int.net
captions.officeapps.live-int.com
ssu.office-int.com
oliml.office-int.net
tasks.office-int.com
*.osi.office-int.net
graph.office-int.net
support.office-int.com
wdgfabric.osi.office-int.net
*.osi.office-int.net
*.osi.office-int.net
GriffinOsiPlatformTest-DataEncryptionCertife.office-int.net
manage.osi.office-int.net
entity-sti-int.osi.office-int.net
samplegateway.omex.office-int.net
manage.osi.office-int.net
Vela-INT-MdmAdministrator.osi.office-int.net
GriffinOsiPlatformTest-DataEncryptionCertife.office-int.net
griffinosiplatformtest.osi.office-int.net
*.osi.office-int.net
hubblecontent.osi.office-int.net
hubble.officeapps.live-int.com
Caelum-INT-MdmAdministrator.osi.office-int.net
icms.osi.office-int.net
*.accesscontrol.identity.office-int.net
oxocompliance-test.office-int.net
*.osi.office-int.net
*.osi.office-int.net
Wheat-INT-MdmAdministrator.osi.office-int.net
Mint-INT-Mds.osi.office-int.net
kevlar.marketwatch.office-int.net
validationgateway.omex.office-int.net
scram.osi.office-int.net
Bronze-INT-Mds.osi.office-int.net
enceladus.osi.office-int.net
officecheckoutpurchase.omex.office-int.net
helene.cosmosproxy.osi.office-int.net
arms.osi.office-int.net
arms.osi.office-int.net
cornsilkint-mds.osi.office-int.net
Wheat-INT-MdmAdministrator.osi.office-int.net
ogma.osi.office-int.net
externalgateway.omex.office-int.net
addinslicensing.store.office-int.com
augmentation.osi.office-int.net
tellmeservice.osi.office-int.net
Antlia-INT-MdmAdministrator.osi.office-int.net
eridanus-Int-Mdm.osi.office-int.net
Russet-INT-Mds.osi.office-int.net
macommunication.geneva.keyvault.fullvalue.omex.office-int.net
Aqua-INT-MdmAdministrator.osi.office-int.net
setup.office-int.com
Aqua-INT-MdmAdministrator.osi.office-int.net
*.graph.office-int.net
Carpo-INT-Mds.osi.office-int.net
*.osi.office-int.net
cluster.fullvalue.omex.office-int.net
*.osi.office-int.net
dataencryption.omex.office-int.net
hubble.officeapps.live-int.com
forms.office-int.com
Manatee-INT-Mds.osi.office-int.net
checkout.office-int.com
GriffinOsiPlatformTest-gcpcert.office-int.net
config.officeapps.live-int.com
GriffinOsiPlatformTest-gcpcert.office-int.net
pptcast-rps-int.osi.office-int.net
store.office-int.com
aurigasentryportal.office-int.net
tasman.osi.office-int.net
Asparagus-INT-Mds.osi.office-int.net
support.office-int.com
stores.office-int.com
diagnosticsgateway.omex.office-int.net
checkout.office-int.com
usershardextension-sti-int.osi.office-int.net
*.identity.office-int.net
Lynx-INT-Mds.osi.office-int.net
Snow-INT-Mds.osi.office-int.net
loopback.osi.office-int.net
patriarch.cosmosproxy.osi.office-int.net
mdoipdomainmgmt.office-int.net
uci.officeapps.live-int.com
kaizalamessaging.osi.office-int.net
*.osi.office-int.net
augmentation.osi.office-int.net
*.osi.office-int.net
OsiDataEncrypt-Carmine-ALL-DEK.osi.office-int.net
icmconnector.griffinosiplatformtest.osi.office-int.net
kasmgmtportal.osi.office-int.net
Aqua-INT-MdmAdministrator.osi.office-int.net
msa-sapi.graph.office-int.net
Cobalt-INT-MdmAdministrator.osi.office-int.net
manage.osi.office-int.net
Cobalt-INT-MdmAdministrator.osi.office-int.net
inclient.store.office-int.com
store.office-int.com
Wheat-INT-MdmAdministrator.osi.office-int.net
Caelum-INT-MdmAdministrator.osi.office-int.net
insertmedia.osi.office-int.net
captions.officeapps.live-int.com
ssu.office-int.com
oliml.office-int.net
tasks.office-int.com
*.osi.office-int.net
graph.office-int.net
support.office-int.com
wdgfabric.osi.office-int.net
*.osi.office-int.net
*.osi.office-int.net
GriffinOsiPlatformTest-DataEncryptionCertife.office-int.net
manage.osi.office-int.net
entity-sti-int.osi.office-int.net
samplegateway.omex.office-int.net
manage.osi.office-int.net
Vela-INT-MdmAdministrator.osi.office-int.net
GriffinOsiPlatformTest-DataEncryptionCertife.office-int.net
griffinosiplatformtest.osi.office-int.net
*.osi.office-int.net
hubblecontent.osi.office-int.net
hubble.officeapps.live-int.com
Caelum-INT-MdmAdministrator.osi.office-int.net
icms.osi.office-int.net
*.accesscontrol.identity.office-int.net
oxocompliance-test.office-int.net
*.osi.office-int.net
*.osi.office-int.net
Wheat-INT-MdmAdministrator.osi.office-int.net
Mint-INT-Mds.osi.office-int.net
kevlar.marketwatch.office-int.net
validationgateway.omex.office-int.net
scram.osi.office-int.net
Bronze-INT-Mds.osi.office-int.net
enceladus.osi.office-int.net
officecheckoutpurchase.omex.office-int.net
helene.cosmosproxy.osi.office-int.net
arms.osi.office-int.net
arms.osi.office-int.net
cornsilkint-mds.osi.office-int.net
Wheat-INT-MdmAdministrator.osi.office-int.net
ogma.osi.office-int.net
externalgateway.omex.office-int.net
addinslicensing.store.office-int.com
augmentation.osi.office-int.net
tellmeservice.osi.office-int.net
Antlia-INT-MdmAdministrator.osi.office-int.net
eridanus-Int-Mdm.osi.office-int.net
Russet-INT-Mds.osi.office-int.net
macommunication.geneva.keyvault.fullvalue.omex.office-int.net
Aqua-INT-MdmAdministrator.osi.office-int.net
setup.office-int.com
Aqua-INT-MdmAdministrator.osi.office-int.net
*.graph.office-int.net
Carpo-INT-Mds.osi.office-int.net
*.osi.office-int.net
cluster.fullvalue.omex.office-int.net
*.osi.office-int.net
dataencryption.omex.office-int.net
hubble.officeapps.live-int.com
forms.office-int.com
Manatee-INT-Mds.osi.office-int.net
checkout.office-int.com
GriffinOsiPlatformTest-gcpcert.office-int.net
config.officeapps.live-int.com
GriffinOsiPlatformTest-gcpcert.office-int.net
pptcast-rps-int.osi.office-int.net
store.office-int.com
aurigasentryportal.office-int.net
tasman.osi.office-int.net
Asparagus-INT-Mds.osi.office-int.net
support.office-int.com
stores.office-int.com
diagnosticsgateway.omex.office-int.net
checkout.office-int.com
usershardextension-sti-int.osi.office-int.net
*.identity.office-int.net
Lynx-INT-Mds.osi.office-int.net
Snow-INT-Mds.osi.office-int.net
loopback.osi.office-int.net
patriarch.cosmosproxy.osi.office-int.net
mdoipdomainmgmt.office-int.net
uci.officeapps.live-int.com
Certificate
The complete raw certificate details for kaizalamessaging.osi.office-int.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGxTCCBK2gAwIBAgITWgAGJxAsnIz4/VxVbwABAAYnEDANBgkqhkiG9w0BAQsF ADCBizELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEVMBMGA1UE CxMMTWljcm9zb2Z0IElUMR4wHAYDVQQDExVNaWNyb3NvZnQgSVQgU1NMIFNIQTIw HhcNMTcwMTE4MjI1ODMzWhcNMTgwMzE4MjI1ODMzWjAuMSwwKgYDVQQDEyNrYWl6 YWxhbWVzc2FnaW5nLm9zaS5vZmZpY2UtaW50Lm5ldDCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAMFqB9gFXoGSncjXATssEb2uCDEMzNQ4rfkyXpGNdBnw HWYzzUHPOQNGcL6f4rCbpFxw9f0ut2vy16tUuW0uzmndLbVAQDC2RN8Q/1tGQC2u I6MAGfbye0B84KRs0o0/qrkFBppaIjg9012ty2o5sTlm+PQWdkYakAqkOtZ1ueWl Cz7netYjXkqD1MOyYq1bsyqqdJCe0MKV0iUGIaNRELfQF52Z8kRSrgkrX4qflONx qW1jLhGKreY5LVxNDQRse08iNfHX0vWYpTnQEhDOZ4vXEYEMyEQ3WwyRAo9TVaqb yD+kuoqnCutT9vUF2HEc30WRjfA4Uj445Eoh3J3f9b0CAwEAAaOCAnwwggJ4MAsG A1UdDwQEAwIEsDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwYQYDVR0R BFowWIIja2FpemFsYW1lc3NhZ2luZy5vc2kub2ZmaWNlLWludC5uZXSCCioua2Fp emEubGGCJSoua2FpemFsYW1lc3NhZ2luZy5vc2kub2ZmaWNlLWludC5uZXQwHQYD VR0OBBYEFBmHSQOzdbHFvuQHGDlwwxFvCTjwMB8GA1UdIwQYMBaAFFGvJCac9Ggi V4AmKztGYhV7HsylMH0GA1UdHwR2MHQwcqBwoG6GNmh0dHA6Ly9tc2NybC5taWNy b3NvZnQuY29tL3BraS9tc2NvcnAvY3JsL21zaXR3d3cyLmNybIY0aHR0cDovL2Ny bC5taWNyb3NvZnQuY29tL3BraS9tc2NvcnAvY3JsL21zaXR3d3cyLmNybDBwBggr BgEFBQcBAQRkMGIwPAYIKwYBBQUHMAKGMGh0dHA6Ly93d3cubWljcm9zb2Z0LmNv bS9wa2kvbXNjb3JwL21zaXR3d3cyLmNydDAiBggrBgEFBQcwAYYWaHR0cDovL29j c3AubXNvY3NwLmNvbTA9BgkrBgEEAYI3FQcEMDAuBiYrBgEEAYI3FQiDz4lNrfIC haGfDIL6yn2B4ft0gU+HtM98gc26MgIBZAIBGTBOBgNVHSAERzBFMEMGCSsGAQQB gjcqATA2MDQGCCsGAQUFBwIBFihodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20vcGtp L21zY29ycC9jcHMAMCcGCSsGAQQBgjcVCgQaMBgwCgYIKwYBBQUHAwEwCgYIKwYB BQUHAwIwDQYJKoZIhvcNAQELBQADggIBAKEDkzzDtRTEyk8PA6lxO9Q1mDpxPjMi yuVVWSn8ymMVw/qU71EG7F/zzm+f/aAuZIt0GoNb+btOnZkz2lhWj7j7AdnWCTVp Kf4Y6XOIp3gSAXsBupUjjYhlfqlAwG8vvLkMGyHk9JblNUnd1OQwf4rnPEzAZh4+ ScQs8rIK1SYjUa7mYpBLTM4LMJDLAcQFBf4/XUi4N+SiO3Fq+VeJ3CaNK5cCPXXf JXsQaAlKYP+K9RztYpNMGA6i6P5iBg6NcVXWfQZKNWTTkrkcO87GwNFBNhg2jFsZ d3pveZ0R/mfNk86o90zzNr4JZ8Hov2zs7+rK31ad2ukhvS4YFSIv0Fhg0Xd77n0B DqE0XLlIWuMPiHiGQBYGm2saM9655wTnxhiY/rYf1W5QgYtTYQA2mLWCaED8BSpB 76ZTGx1GQy7Oa+M73v2jo3pb1JbsZbH/44ASaiiLxHc4V9C/temksUDNSg9Xs79L dd2Non6f+qyMDZmC3Cfddu4emZ9bhHNt6XT7L+34lgr1+OggVZ5bs47omAbQKxdd xsL8zxOLu77EEoKrbkz0hdxmAPbmVyZhKrpK8Oq3Yp8M7vCKvBppccYn6New/FIN bn+HNPoUDqxEVZfnAZdnJ89I+0dUKKrkB35tHoUL1D1SMJSA1IaMsKNBaa9/LRAk d52LzA3fmIoj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWoH2AVegZKdyNcBOywR va4IMQzM1Dit+TJekY10GfAdZjPNQc85A0Zwvp/isJukXHD1/S63a/LXq1S5bS7O ad0ttUBAMLZE3xD/W0ZALa4jowAZ9vJ7QHzgpGzSjT+quQUGmloiOD3TXa3Lajmx OWb49BZ2RhqQCqQ61nW55aULPud61iNeSoPUw7JirVuzKqp0kJ7QwpXSJQYho1EQ t9AXnZnyRFKuCStfip+U43GpbWMuEYqt5jktXE0NBGx7TyI18dfS9ZilOdASEM5n i9cRgQzIRDdbDJECj1NVqpvIP6S6iqcK61P29QXYcRzfRZGN8DhSPjjkSiHcnd/1 vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2007069161485831022962096049055776368509724432 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT SSL SHA2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-18 22:58:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-18 22:58:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kaizalamessaging.osi.office-int.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24416278515730897710603735592945937342381646838125300607022112190505248123343744521741419200137379515999151733236464649325814352416833643436868150013632247245466770450362380767857779262381778160934124041207969087086742547837316015338191627794825369736071255777622035910521262599351698669395586364417572729519730064429753193951929143252643571049877718102598221534261852360937563616668703453041335174001946358032513826142008801966768712616895808396868597835657475421578979419161906655658340219633594036154903164373579231317899581338342400691718740147402511230597641443952388445235686450688429785747613195173281300215229 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kaizalamessaging.osi.office-int.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kaiza.la' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kaizalamessaging.osi.office-int.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 19874903b375b1c5bee407183970c3116f0938f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 51af24269cf468225780262b3b4662157b1ecca5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mscrl.microsoft.com/pki/mscorp/crl/msitwww2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.microsoft.com/pki/mscorp/crl/msitwww2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pki/mscorp/msitwww2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.msocsp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.7587021.751874.11030412.6202749.3702260.207.15542268.3366194 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (71 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.42.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pki/mscorp/cps�' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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