sh-pod2-smp-device.apple.com
- Apple Inc. -
Issued by Apple Public EV Server RSA CA 2 - G1
About this certificate
This digital certificate with serial number 76:99:af:40:f2:e9:d5:df:03:63:6c:80:29:5a:e5:45 was issued on by Apple Inc..
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Apple Inc.
Company registration number:
C0806592
Organization: Apple Inc.
Organization: Apple Inc.
State / Province:
California
Locality: Cupertino
Country: US
Locality: Cupertino
Country: US
Apple Inc.
Organization:
Apple Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 76:99:af:40:f2:e9:d5:df:03:63:6c:80:29:5a:e5:45Serial Number (int): 157646879489437003655720848810516866373
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: b0:c4:ab:ed:8e:60:98:32:b8:ae:26:d9:a1:0a:52:36:d3:b0:fd:bc
AuthorityKeyId: 50:55:ab:43:a1:af:a9:48:2b:5a:c1:a2:87:89:04:e4:7a:0e:ca:da
Fingerprint (sha1): df:be:b8:10:66:6c:88:39:1f:2f:91:20:bc:37:c5:8a:9c:9a:6e:1e
Fingerprint (sha256): 00:e8:b2:45:2a:a0:0f:fa:b9:74:79:5a:41:9c:df:43:ec:4c:24:f5:85:d0:f7:9a:cb:62:ba:39:84:e6:0d:9c
Issuing Certificate URL: http://certs.apple.com/apevsrsa2g1.der
Revocation information
OCSP Server: http://ocsp.apple.com/ocsp03-apevsrsa2g101CRL Distribution Point: http://crl.apple.com/apevsrsa2g1.crl
Check the revocation status for certificate sh-pod2-smp-device.apple.com
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sh-pod2-smp-device.apple.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cn-smp-device-content.apple.com
cn-smp-device.apple.com
tj-pod2-smp-device-dr.apple.com
tj-pod2-smp-device.apple.com
sh-pod2-smp-device.apple.com
wallet.cdn-apple.com
cn-smp-paymentservices.apple.com
sh-pod2-smp-device-dr.apple.com
cn-stg-smp-paymentservices.apple.com
cn-smp-device.apple.com
tj-pod2-smp-device-dr.apple.com
tj-pod2-smp-device.apple.com
sh-pod2-smp-device.apple.com
wallet.cdn-apple.com
cn-smp-paymentservices.apple.com
sh-pod2-smp-device-dr.apple.com
cn-stg-smp-paymentservices.apple.com
Other certificates including the domain name apple.com
(limited to 100 certificates)
itunes.apple.com
ja.ls.apple.com
origin-discussions2-us-dr-prz.apple.com
training.apple.com
reserves-prime.prz.apple.com
app001.apple.com
deployment-pv50.ls.apple.com
itunes.apple.com
reserve-prime.apple.com
gsp81-ssl-e1118.ls.apple.com
gsp102-ssl-e1502.ls.apple.com
api.searchads.apple.com
idmsa-uat.apple.com
webpay-sh-pilot.apple.com
mzstatic.com
store-029.blobstore.apple.com
beatsglobalquality-uat.corp.apple.com
rw.apple.com
stg-pod1-smp.corp.apple.com
gr-api-video-h-aapne1a.smoot.apple.com
web-ext-mmap-ce01.apple.com
usl-expe1405.apple.com
store-995.blobstore.apple.com
sapecc-prd-ext.sap.apple.com
swdlp.apple.com
gsx.apple.com
gsp-ssl-e1134.ls.apple.com
clx-dev.apple.com
noodle.apple.com
gsp11-ty21-dlb-2.ls.apple.com
mzuserxp.itunes.apple.com
gsp64-st14-ssl-dlb.ls.apple.com
gsp45-ssl-e1356.ls.apple.com
gsp12-st14-dlb-2.ls.apple.com
discussions-uat.apple.com
dc-portal.apple.com
supplier.apple.com
gsp48-kittyhawk-qs55-ssl.ls.apple.com
gsp81-ssl-e1502.ls.apple.com
gsp48-ssl-e691.ls.apple.com
mapsconnectapi.ls.apple.com
wdg01-uat.apple.com
wellnessclassic.apple.com
api-partner-connect-uat1.apple.com
people.apple.com
supplier-registration.apple.com
gsp60-ssl-e997.ls.apple.com
ssuat.apple.com
locate.apple.com
itunes.apple.com
suppliernet.apple.com
gsp79-am31-dlb.ls.apple.com
smp-device-qa3.apple.com
eurored3.apple.com
devcon-oomnshuttleist-test.apple.com
coreservices-e1506-ms11-bistunium-k8straefik.ls.apple.com
dinah05.corp.apple.com
gsp1-ssl.apple.com
gspe85-cn-ssl.ls.apple.com
vorpal-relay.apple.com
bswe.apple.com
cma.itunes.apple.com
gsp-ssl-apne1-ash.ls.apple.com
theloop-stage.apple.com
tokenvalidation.apple.com
linkmaker.itunes.apple.com
gsp70-ssl-e1633.ls.apple.com
gsp63-ms12-kittyhawk-ssl.ls.apple.com
gsp-ssl-sl61-ipv6.ls.apple.com
aws-onepulse.apple.com
gsp12-kh-st14-1.ls.apple.com
gsp59-ssl-e506.ls.apple.com
mr-apple-com2.apple.com
ocservice.apple.com
marketing.apple.com
ioss-callbackservices-qa3.apple.com
gsp19-kh-ms12.ls.apple.com
madeforipodandiphone.apple.com
gspe19-ssl.ls.apple.com
gsp19-1-kittyhawk-ci77-ssl.ls.apple.com
cs-integrations-stage.apple.com
gsp35-ty21-ssl.ls.apple.com
gbiportal-apps-external.apple.com
plmtest2.apple.com
gsp3-sy02-ssl.ls.apple.com
gspe35-ssl.ls.apple.com
gsp76-ty21-01.ls.apple.com
ne-access.apple.com
profilebroker.apple.com
axm-scim-qa12.apple.com
gsp95-hk02-stage-ssl.ls.apple.com
contactretail.apple.com
caffemacs-aa-prz.apple.com
bam.corp.apple.com
gsp45-ssl-e709.ls.apple.com
caffemacs-qa.apple.com
cls-webdata.education.icloud.com
gsp82-ssl-e1277.ls.apple.com
apple-pay-gateway-qa2.apple.com
gsp57-ci77-ssl.ls.apple.com
ja.ls.apple.com
origin-discussions2-us-dr-prz.apple.com
training.apple.com
reserves-prime.prz.apple.com
app001.apple.com
deployment-pv50.ls.apple.com
itunes.apple.com
reserve-prime.apple.com
gsp81-ssl-e1118.ls.apple.com
gsp102-ssl-e1502.ls.apple.com
api.searchads.apple.com
idmsa-uat.apple.com
webpay-sh-pilot.apple.com
mzstatic.com
store-029.blobstore.apple.com
beatsglobalquality-uat.corp.apple.com
rw.apple.com
stg-pod1-smp.corp.apple.com
gr-api-video-h-aapne1a.smoot.apple.com
web-ext-mmap-ce01.apple.com
usl-expe1405.apple.com
store-995.blobstore.apple.com
sapecc-prd-ext.sap.apple.com
swdlp.apple.com
gsx.apple.com
gsp-ssl-e1134.ls.apple.com
clx-dev.apple.com
noodle.apple.com
gsp11-ty21-dlb-2.ls.apple.com
mzuserxp.itunes.apple.com
gsp64-st14-ssl-dlb.ls.apple.com
gsp45-ssl-e1356.ls.apple.com
gsp12-st14-dlb-2.ls.apple.com
discussions-uat.apple.com
dc-portal.apple.com
supplier.apple.com
gsp48-kittyhawk-qs55-ssl.ls.apple.com
gsp81-ssl-e1502.ls.apple.com
gsp48-ssl-e691.ls.apple.com
mapsconnectapi.ls.apple.com
wdg01-uat.apple.com
wellnessclassic.apple.com
api-partner-connect-uat1.apple.com
people.apple.com
supplier-registration.apple.com
gsp60-ssl-e997.ls.apple.com
ssuat.apple.com
locate.apple.com
itunes.apple.com
suppliernet.apple.com
gsp79-am31-dlb.ls.apple.com
smp-device-qa3.apple.com
eurored3.apple.com
devcon-oomnshuttleist-test.apple.com
coreservices-e1506-ms11-bistunium-k8straefik.ls.apple.com
dinah05.corp.apple.com
gsp1-ssl.apple.com
gspe85-cn-ssl.ls.apple.com
vorpal-relay.apple.com
bswe.apple.com
cma.itunes.apple.com
gsp-ssl-apne1-ash.ls.apple.com
theloop-stage.apple.com
tokenvalidation.apple.com
linkmaker.itunes.apple.com
gsp70-ssl-e1633.ls.apple.com
gsp63-ms12-kittyhawk-ssl.ls.apple.com
gsp-ssl-sl61-ipv6.ls.apple.com
aws-onepulse.apple.com
gsp12-kh-st14-1.ls.apple.com
gsp59-ssl-e506.ls.apple.com
mr-apple-com2.apple.com
ocservice.apple.com
marketing.apple.com
ioss-callbackservices-qa3.apple.com
gsp19-kh-ms12.ls.apple.com
madeforipodandiphone.apple.com
gspe19-ssl.ls.apple.com
gsp19-1-kittyhawk-ci77-ssl.ls.apple.com
cs-integrations-stage.apple.com
gsp35-ty21-ssl.ls.apple.com
gbiportal-apps-external.apple.com
plmtest2.apple.com
gsp3-sy02-ssl.ls.apple.com
gspe35-ssl.ls.apple.com
gsp76-ty21-01.ls.apple.com
ne-access.apple.com
profilebroker.apple.com
axm-scim-qa12.apple.com
gsp95-hk02-stage-ssl.ls.apple.com
contactretail.apple.com
caffemacs-aa-prz.apple.com
bam.corp.apple.com
gsp45-ssl-e709.ls.apple.com
caffemacs-qa.apple.com
cls-webdata.education.icloud.com
gsp82-ssl-e1277.ls.apple.com
apple-pay-gateway-qa2.apple.com
gsp57-ci77-ssl.ls.apple.com
Certificate
The complete raw certificate details for sh-pod2-smp-device.apple.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIYjCCB0qgAwIBAgIQdpmvQPLp1d8DY2yAKVrlRTANBgkqhkiG9w0BAQsFADBR MQswCQYDVQQGEwJVUzETMBEGA1UEChMKQXBwbGUgSW5jLjEtMCsGA1UEAxMkQXBw bGUgUHVibGljIEVWIFNlcnZlciBSU0EgQ0EgMiAtIEcxMB4XDTIzMDkxOTEwMzEz MVoXDTIzMTIxODEwNDEzMVowgdYxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0 aW9uMRMwEQYLKwYBBAGCNzwCAQMTAlVTMRswGQYLKwYBBAGCNzwCAQIMCkNhbGlm b3JuaWExETAPBgNVBAUTCEMwODA2NTkyMQswCQYDVQQGEwJVUzETMBEGA1UECAwK Q2FsaWZvcm5pYTESMBAGA1UEBwwJQ3VwZXJ0aW5vMRMwEQYDVQQKDApBcHBsZSBJ bmMuMSUwIwYDVQQDDBxzaC1wb2QyLXNtcC1kZXZpY2UuYXBwbGUuY29tMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjqK8Y6jNdKP7GHQVdqWyVYKR+8U ilcF5zlAAt0wCzKCdZIoWApDDu1iz5uzZd4FarlT9GwDD6xz05aUBp07c83Vsnvr h4TDWF/S/XxZmDwVEZLvzLhH8CYhwsQwtdWZ3t5vNElJ9Pf1HY03R1Zr2ef2DIul d+ef5TgQdrjp9vuKhRS5vkE3pndAfiytzjWbMMbRFHBSWdDRRSPPNzzcIifF8DbM aSf51DpQxSSC4Vsa152RKpO8GLMTA1+2ZpDoZPfOy4GsJfRDZoDRDWyF6xk1VTkJ hadeeZ/urkE0E8oYBj4+Fh6WazfmSO7uUSPpR8DrBpndiVj561+9fPNG1QIDAQAB o4IErjCCBKowDAYDVR0TAQH/BAIwADAfBgNVHSMEGDAWgBRQVatDoa+pSCtawaKH iQTkeg7K2jB6BggrBgEFBQcBAQRuMGwwMgYIKwYBBQUHMAKGJmh0dHA6Ly9jZXJ0 cy5hcHBsZS5jb20vYXBldnNyc2EyZzEuZGVyMDYGCCsGAQUFBzABhipodHRwOi8v b2NzcC5hcHBsZS5jb20vb2NzcDAzLWFwZXZzcnNhMmcxMDEwggEjBgNVHREEggEa MIIBFoIfY24tc21wLWRldmljZS1jb250ZW50LmFwcGxlLmNvbYIXY24tc21wLWRl dmljZS5hcHBsZS5jb22CH3RqLXBvZDItc21wLWRldmljZS1kci5hcHBsZS5jb22C HHRqLXBvZDItc21wLWRldmljZS5hcHBsZS5jb22CHHNoLXBvZDItc21wLWRldmlj ZS5hcHBsZS5jb22CFHdhbGxldC5jZG4tYXBwbGUuY29tgiBjbi1zbXAtcGF5bWVu dHNlcnZpY2VzLmFwcGxlLmNvbYIfc2gtcG9kMi1zbXAtZGV2aWNlLWRyLmFwcGxl LmNvbYIkY24tc3RnLXNtcC1wYXltZW50c2VydmljZXMuYXBwbGUuY29tMGAGA1Ud IARZMFcwSAYFZ4EMAQEwPzA9BggrBgEFBQcCARYxaHR0cHM6Ly93d3cuYXBwbGUu Y29tL2NlcnRpZmljYXRlYXV0aG9yaXR5L3B1YmxpYzALBglghkgBhv1sAgEwEwYD VR0lBAwwCgYIKwYBBQUHAwEwNQYDVR0fBC4wLDAqoCigJoYkaHR0cDovL2NybC5h cHBsZS5jb20vYXBldnNyc2EyZzEuY3JsMB0GA1UdDgQWBBSwxKvtjmCYMriuJtmh ClI207D9vDAOBgNVHQ8BAf8EBAMCBaAwggH3BgorBgEEAdZ5AgQCBIIB5wSCAeMB 4QB3AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABiq0H64UAAAQD AEgwRgIhANJPz6n9/a+t+/yFOoC2HIVApDc83cGSN9k1au7tPbEmAiEA2ToTLybj gID/tqvD+EnXOCqrQRoQsH/X1iCfVOcOCuAAdgB6MoxU2LcttiDqOOBSHumEFnAy E4VNO9IrwTpXo1LrUgAAAYqtB+tvAAAEAwBHMEUCIEMgArV10Pt1XykOZ1qsw5Rc irsQy/88CkMXj5rBIq+/AiEA9TA12sBWTYQqF/vVzi8si2+9vcG/EMSXEXpnVwIW MMYAdwCt9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY069yCigAAAYqtB+u9AAAE AwBIMEYCIQDg3YIg796XWH3CJzbvdM/iuYP2wfBL9+SGkloAje9GAAIhAKzhkCbA CRmjwaMlwdUA0v5KMnIruQepdmG1ALcpbmCxAHUAtz77JN+cTbp18jnFulj0bF38 Qs96nzXEnh0JgSXttJkAAAGKrQfr9AAABAMARjBEAiBwPMUBkJ2jotzRrgQSHH6b QI4hg5BHp/+FBfsiF5ee6AIgaf+hi9SN82Plm2Ha0QT39BpyvQ+UGVolTgfHOsDa xicwDQYJKoZIhvcNAQELBQADggEBABdZDmq+jhvOVE/oEtiDJAktJ6sJCoDM01+V GPU2yZnMmpv5RwL/xBy+BhxvydZTyR8Y8nhxTAiVfdGO9uxK0RuycKHSx1v5NpJq 2k4OLFVozcKwq/xak78/DQnyCqDN9zhlxTe9WepXrjARuk52Jvm55Qnktf9E21yk vuzIsHhvvB+tUVK6kAUPfDa5eRJ+lF/CjU4nxNtxUVk5hHsNb31AlFV1vtuGb+g+ b/fXAPAtyJDkAQQBNg2USET04/WUerwLVvnfKF4MK/EG30Qz+2SbBhonqTLV9l8a jbxS9NmlPlOB76aFlv7fgKJk4EZ4OZMMy/HQElm4hAFtYFJsW18= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjqK8Y6jNdKP7GHQVdqW yVYKR+8UilcF5zlAAt0wCzKCdZIoWApDDu1iz5uzZd4FarlT9GwDD6xz05aUBp07 c83Vsnvrh4TDWF/S/XxZmDwVEZLvzLhH8CYhwsQwtdWZ3t5vNElJ9Pf1HY03R1Zr 2ef2DIuld+ef5TgQdrjp9vuKhRS5vkE3pndAfiytzjWbMMbRFHBSWdDRRSPPNzzc IifF8DbMaSf51DpQxSSC4Vsa152RKpO8GLMTA1+2ZpDoZPfOy4GsJfRDZoDRDWyF 6xk1VTkJhadeeZ/urkE0E8oYBj4+Fh6WazfmSO7uUSPpR8DrBpndiVj561+9fPNG 1QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 157646879489437003655720848810516866373 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Apple Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Apple Public EV Server RSA CA 2 - G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-19 10:31:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-18 10:41:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'C0806592' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Cupertino' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Apple Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'sh-pod2-smp-device.apple.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22499286789123615688947364573931971600380547057987542051437011208004552853815173715487413854311955644857733649802296417454662111253146229776154005258258726444464549318350306868472212624285572977954505454424440651342469207077179944236334751257173168164668440234876270704165036275280694315058609344140290873462074654852587168114815363275583299897783627848343926733367384115849088574065501051037644773530928787921097423348303314409087424269127989742175357641635737095578074731911001817494527608867921521455575441952047378652655652012689137180626818736084091262976727815456799576347403200030436732069820341406938875250389 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5055ab43a1afa9482b5ac1a2878904e47a0ecada . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certs.apple.com/apevsrsa2g1.der' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.apple.com/ocsp03-apevsrsa2g101' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (282 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cn-smp-device-content.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cn-smp-device.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tj-pod2-smp-device-dr.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tj-pod2-smp-device.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sh-pod2-smp-device.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wallet.cdn-apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cn-smp-paymentservices.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sh-pod2-smp-device-dr.apple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cn-stg-smp-paymentservices.apple.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.apple.com/certificateauthority/public' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.apple.com/apevsrsa2g1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b0c4abed8e609832b8ae26d9a10a5236d3b0fdbc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 01e1007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018aad07eb850000040300483046022100d24fcfa9fdfdafadfbfc853a80b61c8540a4373cddc19237d9356aeeed3db126022100d93a132f26e38080ffb6abc3f849d7382aab411a10b07fd7d6209f54e70e0ae00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018aad07eb6f00000403004730450220432002b575d0fb755f290e675aacc3945c8abb10cbff3c0a43178f9ac122afbf022100f53035dac0564d842a17fbd5ce2f2c8b6fbdbdc1bf10c497117a6757021630c6007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018aad07ebbd0000040300483046022100e0dd8220efde97587dc22736ef74cfe2b983f6c1f04bf7e486925a008def4600022100ace19026c00919a3c1a325c1d500d2fe4a32722bb907a97661b500b7296e60b1007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018aad07ebf400000403004630440220703cc501909da3a2dcd1ae04121c7e9b408e21839047a7ff8505fb2217979ee8022069ffa18bd48df363e59b61dad104f7f41a72bd0f94195a254e07c73ac0dac627 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0017590e6abe8e1bce544fe812d88324092d27ab090a80ccd35f9518f536c999cc9a9bf94702ffc41cbe061c6fc9d653c91f18f278714c08957dd18ef6ec4ad11bb270a1d2c75bf936926ada4e0e2c5568cdc2b0abfc5a93bf3f0d09f20aa0cdf73865c537bd59ea57ae3011ba4e7626f9b9e509e4b5ff44db5ca4beecc8b0786fbc1fad5152ba90050f7c36b979127e945fc28d4e27c4db71515939847b0d6f7d40945575bedb866fe83e6ff7d700f02dc890e4010401360d944844f4e3f5947abc0b56f9df285e0c2bf106df4433fb649b061a27a932d5f65f1a8dbc52f4d9a53e5381efa68596fedf80a264e0467839930ccbf1d01259b884016d60526c5b5f