*.datorama.com
Issued by Amazon
About this certificate
This digital certificate with serial number 01:e5:32:22:c2:31:0e:96:93:d3:a0:bf:0d:f2:86:7e was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.datorama.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:e5:32:22:c2:31:0e:96:93:d3:a0:bf:0d:f2:86:7eSerial Number (int): 2519280850726497629642431942458771070
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: b6:ee:56:5c:70:bd:38:f0:0d:c1:2a:2c:fa:5e:83:8f:8f:73:e9:b8
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 8b:79:8e:5f:72:37:0f:23:ef:4e:18:13:06:8e:6b:b7:f6:d7:4d:68
Fingerprint (sha256): 00:e6:01:23:8f:40:e6:c0:15:03:27:ae:aa:67:10:ab:da:e0:93:25:93:a2:b5:f4:8b:7c:31:f6:87:c9:c4:15
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.datorama.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.datorama.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.datorama.com
*.datorama.net
*.datorama.io
*.dev.datorama.io
*.datorama.net
*.datorama.io
*.dev.datorama.io
Other certificates including the domain name datorama.com
(limited to 100 certificates)
mindadmedia.datorama.com
incapsula.com
ivgeny-test-eu2.azure.datorama.com
incapsula.com
white-label-eu.datorama.com
app.datorama.com
*.datorama.com
app-eu2.datorama.com
white-label.datorama.com
white-label-us2.datorama.com
incapsula.com
white-label.datorama.com
arkiv.status.geoikt.no
app.datorama.com
support.wunderbar.com
datorama.com
*.datorama.com
white-label.datorama.com
app-eu2.datorama.com
app-eu2.datorama.com
mindadmedia.datorama.com
white-label-us2.datorama.com
app.datorama.com
white-label-us2.datorama.com
app-eu2.datorama.com
app.datorama.com
datapitt.datorama.com
white-label-us-origin.datorama.com
*.datorama.com
app-eu.datorama.com
custom-app.datorama.com
api-eu2.datorama.com
arkiv.status.geoikt.no
app-eu2.datorama.com
*.databricks.datorama.com
incapsula.com
incapsula.com
white-label-us2.datorama.com
incapsula.com
*.datorama.com
incapsula.com
dev.datorama.com
incapsula.com
info.datorama.com
ps-jenkins.datorama.com
stg.datorama.com
white-label.datorama.com
white-label.datorama.com
idp.datorama.com
app-eu2.datorama.com
incapsula.com
alb-stg-sftp.datorama.com
dev.datorama.com
custom-app.datorama.com
mindadmedia.datorama.com
support.datorama.com
incapsula.com
incapsula.com
mindadmedia.datorama.com
app-eu.datorama.com
mindadmedia.datorama.com
white-label-eu.datorama.com
dev.datorama.com
blog-jp.datorama.com
app-us2.datorama.com
*.datorama.com
app-eu2.datorama.com
blog-jp.datorama.com
*.datorama.com
white-label-eu.datorama.com
white-label-eu.datorama.com
*.datorama.com
white-label.datorama.com
white-label-eu.datorama.com
white-label-eu.datorama.com
white-label-eu-origin.datorama.com
app-us2.datorama.com
incapsula.com
trust.datorama.com
pulse.datorama.com
arkiv.status.geoikt.no
fdus-3.freshdesk.com
stg.datorama.com
*.datorama.com
incapsula.com
app.datorama.com
white-label.datorama.com
stg.datorama.com
dev.datorama.com
imperva.com
azure-eu-ftp.datorama.com
white-label-us2.datorama.com
blog-jp.datorama.com
www.datorama.com
blog-jp.datorama.com
white-label-eu-origin.datorama.com
integration-service-prod-us2.datorama.com
pulse.datorama.com
stg.datorama.com
datapitt.datorama.com
incapsula.com
ivgeny-test-eu2.azure.datorama.com
incapsula.com
white-label-eu.datorama.com
app.datorama.com
*.datorama.com
app-eu2.datorama.com
white-label.datorama.com
white-label-us2.datorama.com
incapsula.com
white-label.datorama.com
arkiv.status.geoikt.no
app.datorama.com
support.wunderbar.com
datorama.com
*.datorama.com
white-label.datorama.com
app-eu2.datorama.com
app-eu2.datorama.com
mindadmedia.datorama.com
white-label-us2.datorama.com
app.datorama.com
white-label-us2.datorama.com
app-eu2.datorama.com
app.datorama.com
datapitt.datorama.com
white-label-us-origin.datorama.com
*.datorama.com
app-eu.datorama.com
custom-app.datorama.com
api-eu2.datorama.com
arkiv.status.geoikt.no
app-eu2.datorama.com
*.databricks.datorama.com
incapsula.com
incapsula.com
white-label-us2.datorama.com
incapsula.com
*.datorama.com
incapsula.com
dev.datorama.com
incapsula.com
info.datorama.com
ps-jenkins.datorama.com
stg.datorama.com
white-label.datorama.com
white-label.datorama.com
idp.datorama.com
app-eu2.datorama.com
incapsula.com
alb-stg-sftp.datorama.com
dev.datorama.com
custom-app.datorama.com
mindadmedia.datorama.com
support.datorama.com
incapsula.com
incapsula.com
mindadmedia.datorama.com
app-eu.datorama.com
mindadmedia.datorama.com
white-label-eu.datorama.com
dev.datorama.com
blog-jp.datorama.com
app-us2.datorama.com
*.datorama.com
app-eu2.datorama.com
blog-jp.datorama.com
*.datorama.com
white-label-eu.datorama.com
white-label-eu.datorama.com
*.datorama.com
white-label.datorama.com
white-label-eu.datorama.com
white-label-eu.datorama.com
white-label-eu-origin.datorama.com
app-us2.datorama.com
incapsula.com
trust.datorama.com
pulse.datorama.com
arkiv.status.geoikt.no
fdus-3.freshdesk.com
stg.datorama.com
*.datorama.com
incapsula.com
app.datorama.com
white-label.datorama.com
stg.datorama.com
dev.datorama.com
imperva.com
azure-eu-ftp.datorama.com
white-label-us2.datorama.com
blog-jp.datorama.com
www.datorama.com
blog-jp.datorama.com
white-label-eu-origin.datorama.com
integration-service-prod-us2.datorama.com
pulse.datorama.com
stg.datorama.com
datapitt.datorama.com
Certificate
The complete raw certificate details for *.datorama.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBTCCBO2gAwIBAgIQAeUyIsIxDpaT06C/DfKGfjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMTA5MDEwMDAwMDBaFw0yMjA5MzAy MzU5NTlaMBkxFzAVBgNVBAMMDiouZGF0b3JhbWEuY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAnJlwy0FgTgCSGGtRNVhnmXhEAHTu/16yDdN+K9lv +eZhQdjHe3Px2N1FTvesvv78K2A8rJY5pm7vbwx796G7HX97jLZxNxQRFhlJoADO LoIUOmG9gHuG/Z0YYpV4nLLNrsES4m1+8K+spLJvDMDDmQSGM8CtXGBL6V7uKJ6D VfFCALgrL6h1DdudJXW+9NNgk2HcYFubG/pX+84Slk/bf0xZs2kMzdAbTtiNfhCo mmJ//xDyqcRRhIl8XNUzh4gskAyNu4EpOKRLkS1WVLR7MDM5Wv0Rf+3QmSh8d+KN 6gT06aRHq1S4qF3ljc3zWmmI7o8zvnUZo+o+4RmUncS64QIDAQABo4IDGjCCAxYw HwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFLbuVlxw vTjwDcEqLPpeg4+Pc+m4MEsGA1UdEQREMEKCDiouZGF0b3JhbWEuY29tgg4qLmRh dG9yYW1hLm5ldIINKi5kYXRvcmFtYS5pb4IRKi5kZXYuZGF0b3JhbWEuaW8wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNV HR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9z Y2ExYi5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0G CCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYI KwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFi LmNydDAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgAp eb7wnjk5IfBWc59jpXflvld9nGAK+PlNXSZcJV3HhAAAAXug9u4OAAAEAwBHMEUC IQC52eNh2dO3XqJifaEanew6f33a2Dp8i/6JEwxYzUR5yAIgOxmIuR+EiDs8Iv+3 ttf7vpqhqeG+3XYq2+SvSG/xKIgAdwBRo7D1/QF5nFZtuDd4jwykeswbJ8v3nohC mg3+1IsF5QAAAXug9u5sAAAEAwBIMEYCIQCGrR7AA+jnke2nqJXE2kN8QlTcoTu6 Z4haSSuGrNdnMwIhAI70sNGK+n+dFnJObvEx6SJLN22nY8ZxZDjeHsigiRdDAHYA QcjKsd8iRkoQxqE6CUKHXk4xixsD6+tLx2jwkGKWBvYAAAF7oPbuQgAABAMARzBF AiEA/+pZZdPixS+xZaaau9dw/uhLAJXxv0ia+HF3A1fDCKcCIDKmXXzXuHixVPYL 4nraeD7s5QcOXJipar1dZeFpPTiCMA0GCSqGSIb3DQEBCwUAA4IBAQAuEXdA1nf2 KRzY31oV8ZhJkJIYgLYzcFwJlGYbr/G7tH7pJGbadqf515cqLJXPDHA1GDxKewLk QSzfRC+jAmjBDZ4xlrrN+Cj9HdCr4MAbG3qXAGiDdUQeUBRDEBcdhaeoG0TXUXD8 2zEd1zCA+z8pMHsTLPS6zMWtpKnaSaw3IGZi0Ghg+SP2rP0JJG+ypEY4M4yjtRX/ A6Svct71DrtdED1WQ+wcKVJ23wNRiIHfhGmY6dGGQQ8Ek2iJ4ET3MOU3OXTQ0YIL c9q0ENKR5IXS+EB4fzbzBB/nx4zTV9WDEsm01DhMyVjikajBfBSPKRxgxTK4IR4+ EdHx3FO8ZGgF -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJlwy0FgTgCSGGtRNVhn mXhEAHTu/16yDdN+K9lv+eZhQdjHe3Px2N1FTvesvv78K2A8rJY5pm7vbwx796G7 HX97jLZxNxQRFhlJoADOLoIUOmG9gHuG/Z0YYpV4nLLNrsES4m1+8K+spLJvDMDD mQSGM8CtXGBL6V7uKJ6DVfFCALgrL6h1DdudJXW+9NNgk2HcYFubG/pX+84Slk/b f0xZs2kMzdAbTtiNfhCommJ//xDyqcRRhIl8XNUzh4gskAyNu4EpOKRLkS1WVLR7 MDM5Wv0Rf+3QmSh8d+KN6gT06aRHq1S4qF3ljc3zWmmI7o8zvnUZo+o+4RmUncS6 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2519280850726497629642431942458771070 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.datorama.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19768839955320808924665883024248950512665113787717295311604834238419700056130655892923078724828590390196485818072435867423276212522509510624196641454145624718944058821627715362040112763249719465134674877896948769852761386938122700903233692820003926234829295842615656026880823886958498702402967386006308154685442751763977923893962559881694914285594114579333952670083951687112615687397659392075878233657797290000125241465628318194743933565541117003299624794611029913751608050451992928894638416379795466268202274255521378239423877891103668866664738219192852975413351243273424607240300160105235047653221892329717453077217 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b6ee565c70bd38f00dc12a2cfa5e838f8f73e9b8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.datorama.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.datorama.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.datorama.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.datorama.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002e117740d677f6291cd8df5a15f1984990921880b633705c0994661baff1bbb47ee92466da76a7f9d7972a2c95cf0c7035183c4a7b02e4412cdf442fa30268c10d9e3196bacdf828fd1dd0abe0c01b1b7a9700688375441e50144310171d85a7a81b44d75170fcdb311dd73080fb3f29307b132cf4baccc5ada4a9da49ac37206662d06860f923f6acfd09246fb2a44638338ca3b515ff03a4af72def50ebb5d103d5643ec1c295276df03518881df846998e9d186410f04936889e044f730e5373974d0d1820b73dab410d291e485d2f840787f36f3041fe7c78cd357d58312c9b4d4384cc958e291a8c17c148f291c60c532b8211e3e11d1f1dc53bc646805