connected-card-transaction-listener-us.klarna.com
Issued by Amazon
About this certificate
This digital certificate with serial number 06:3f:c8:3f:bf:d2:38:e3:7c:10:3a:e4:67:db:a3:84 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=connected-card-transaction-listener-us.klarna.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:3f:c8:3f:bf:d2:38:e3:7c:10:3a:e4:67:db:a3:84Serial Number (int): 8306544209457938057627957172270506884
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 8f:57:67:64:0d:f7:44:13:e0:aa:0a:e1:a7:57:21:66:52:20:25:6e
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): a3:83:9e:50:67:f3:8c:b8:40:ee:15:d7:a6:cb:46:d3:39:de:49:59
Fingerprint (sha256): 01:64:d9:ac:4d:67:f7:0b:03:eb:1f:f2:e0:b8:b3:98:60:fb:fc:aa:bf:1f:bf:2d:36:43:02:b7:97:cb:71:27
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate connected-card-transaction-listener-us.klarna.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for connected-card-transaction-listener-us.klarna.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
connected-card-transaction-listener-us.klarna.com
api.production.us1.connected-card-transaction-listener.klarna.net
api.production.us1.connected-card-transaction-listener.klarna.net
Other certificates including the domain name klarna.com
(limited to 100 certificates)
checkout.klarna.com
guidelines.klarna.com
online.playground.eu1.kred.klarna.net
adltrust.kinnser.com
*.production.us1.core-banking.klarna.net
adltrust.kinnser.com
twentythree4.map.fastly.net
www.klarna.com
brand.klarna.com
klarna-payments-oc.klarna.com
*.playground.ap1.meta.klarna.net
api.klarna.com
connected-card-transaction-listener-us.klarna.com
*.production.eu1.on-demand.klarna.net
*.nonprod.us1.klapp.klarna.net
*.production.c2c.klarna.net
adltrust.kinnser.com
vs-alldoors-frontend-env2.nonprod.eu1.vs-qa.klarna.net
integration-static-legal.production.us1.cdn.klarna.net
*.msat.production.klarna.com
shop.klarna.com
orders.playground.portal.klarna.com
*.production.us1.scheme.klarna.net
savings.klarna.com
skv-api.playground.klarna.com
adltrust.kinnser.com
seniorshopping.klarna.com
acmatic-dns-validation.sandbox.eu1.core-platform.klarna.net
checkout-eu.klarna.com
il-na.klarna.com
restapi.klarna.com
statuspage.io
statuspage.io
*.msat.production.klarna.com
statuspage.io
*.playground.eu1.pgw.klarna.net
*.playground.us1.custom-solutions.klarna.net
adltrust.kinnser.com
*.playground.eu1.file-transfer.klarna.net
cards-oc.klarna.com
api-oc.klarna.com
*.playground.eu1.kred.klarna.net
credit-eu.klarna.com
twentythree4.map.fastly.net
merchantdesignlab.klarna.com
adltrust.kinnser.com
klarna-payments-eu.klarna.com
download.virtual-shopping.klarna.com
csg.status.forcepoint.com
outages.discovery.wisc.edu
dc-api-eu.playground.klarna.com
outages.discovery.wisc.edu
outages.discovery.wisc.edu
csg.status.forcepoint.com
ablink.staging-e.klarna.com
partnerportal.klarna.com
signicat.klarna.com
login.klarna.com
download.virtual-shopping.klarna.com
login.playground.klarna.com
www.klarna.com
cards-eu.klarna.com
*.production.c2c.klarna.net
*.production.c2c.klarna.net
www.klarna.com
system.production.us1.direct-debit.klarna.net
eu.portal.klarna.com
cards-eu.klarna.com
www.klarna.com
cards.playground.klarna.com
*.production.ap1.cobrowse.klarna.net
*.playground.c2c.klarna.net
topup.klarna.com
cms.nonprod.us1.klarna-web.klarna.net
api.staging.us.portal.klarna.com
tripsfe.production.us1.trips-platform-fe.klarna.net
www.gsuite.klarna.com
*.production.eu1.pgw.klarna.net
payment.sofort.klarna.com
*.production.eu1.meta.klarna.net
go.klarna.com
api-na-2.playground.klarna.com
l.klarna.com
salesloft-us.klarna.com
adltrust.kinnser.com
app-api.playground.klarna.com
salesloft-us.klarna.com
credit-na.klarna.com
facetoface.playground.klarna.com
*.nonprod.us1.klapp.klarna.net
klarna.com
*.production.us1.js.klarna.net
*.production.ap1.cobrowse.klarna.net
api.ident.playground.klarna.com
articles.klarna.com
*.playground.eu1.buybutton.klarna.net
settlements.playground.portal.klarna.com
insights.klarna.com
hytalestatus.io
guidelines.klarna.com
online.playground.eu1.kred.klarna.net
adltrust.kinnser.com
*.production.us1.core-banking.klarna.net
adltrust.kinnser.com
twentythree4.map.fastly.net
www.klarna.com
brand.klarna.com
klarna-payments-oc.klarna.com
*.playground.ap1.meta.klarna.net
api.klarna.com
connected-card-transaction-listener-us.klarna.com
*.production.eu1.on-demand.klarna.net
*.nonprod.us1.klapp.klarna.net
*.production.c2c.klarna.net
adltrust.kinnser.com
vs-alldoors-frontend-env2.nonprod.eu1.vs-qa.klarna.net
integration-static-legal.production.us1.cdn.klarna.net
*.msat.production.klarna.com
shop.klarna.com
orders.playground.portal.klarna.com
*.production.us1.scheme.klarna.net
savings.klarna.com
skv-api.playground.klarna.com
adltrust.kinnser.com
seniorshopping.klarna.com
acmatic-dns-validation.sandbox.eu1.core-platform.klarna.net
checkout-eu.klarna.com
il-na.klarna.com
restapi.klarna.com
statuspage.io
statuspage.io
*.msat.production.klarna.com
statuspage.io
*.playground.eu1.pgw.klarna.net
*.playground.us1.custom-solutions.klarna.net
adltrust.kinnser.com
*.playground.eu1.file-transfer.klarna.net
cards-oc.klarna.com
api-oc.klarna.com
*.playground.eu1.kred.klarna.net
credit-eu.klarna.com
twentythree4.map.fastly.net
merchantdesignlab.klarna.com
adltrust.kinnser.com
klarna-payments-eu.klarna.com
download.virtual-shopping.klarna.com
csg.status.forcepoint.com
outages.discovery.wisc.edu
dc-api-eu.playground.klarna.com
outages.discovery.wisc.edu
outages.discovery.wisc.edu
csg.status.forcepoint.com
ablink.staging-e.klarna.com
partnerportal.klarna.com
signicat.klarna.com
login.klarna.com
download.virtual-shopping.klarna.com
login.playground.klarna.com
www.klarna.com
cards-eu.klarna.com
*.production.c2c.klarna.net
*.production.c2c.klarna.net
www.klarna.com
system.production.us1.direct-debit.klarna.net
eu.portal.klarna.com
cards-eu.klarna.com
www.klarna.com
cards.playground.klarna.com
*.production.ap1.cobrowse.klarna.net
*.playground.c2c.klarna.net
topup.klarna.com
cms.nonprod.us1.klarna-web.klarna.net
api.staging.us.portal.klarna.com
tripsfe.production.us1.trips-platform-fe.klarna.net
www.gsuite.klarna.com
*.production.eu1.pgw.klarna.net
payment.sofort.klarna.com
*.production.eu1.meta.klarna.net
go.klarna.com
api-na-2.playground.klarna.com
l.klarna.com
salesloft-us.klarna.com
adltrust.kinnser.com
app-api.playground.klarna.com
salesloft-us.klarna.com
credit-na.klarna.com
facetoface.playground.klarna.com
*.nonprod.us1.klapp.klarna.net
klarna.com
*.production.us1.js.klarna.net
*.production.ap1.cobrowse.klarna.net
api.ident.playground.klarna.com
articles.klarna.com
*.playground.eu1.buybutton.klarna.net
settlements.playground.portal.klarna.com
insights.klarna.com
hytalestatus.io
Certificate
The complete raw certificate details for connected-card-transaction-listener-us.klarna.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXTCCBUWgAwIBAgIQBj/IP7/SOON8EDrkZ9ujhDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA5MTYwMDAwMDBaFw0yMzEwMTMy MzU5NTlaMDwxOjA4BgNVBAMTMWNvbm5lY3RlZC1jYXJkLXRyYW5zYWN0aW9uLWxp c3RlbmVyLXVzLmtsYXJuYS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCcpN7FsbV69zxPyR47GDutTSr4OQIc08EjiQtUbkjv/E/cOi0YUfocJ8+N 7Q5WdOzN25r9FSoHjeJIap6IjzrCwQIpBNXBBwFTi8aF0ntMUYAMPxtUQzfixhwf 42PLtDKpB51TV8jaXQjUVEtFmLUlzrocVYODYpIW335byhrFIuaQubJI8pqECf5h IhmvBDsq83FkVwzQbRN0M6wRMnDg17b5KrbqAg1lzJTr/0Ad+kC/NUMlgSDjSfwa fcIEmnNEjqaU9fZWckVYzBT8X4wZhphlE/FOhNpA0aJy9XdfL7bVusCBSp+8T8uG ocuvW/jbPf/9Fpeax+eJvWg4thP1AgMBAAGjggNPMIIDSzAfBgNVHSMEGDAWgBRZ pGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQUj1dnZA33RBPgqgrhp1chZlIg JW4wfwYDVR0RBHgwdoIxY29ubmVjdGVkLWNhcmQtdHJhbnNhY3Rpb24tbGlzdGVu ZXItdXMua2xhcm5hLmNvbYJBYXBpLnByb2R1Y3Rpb24udXMxLmNvbm5lY3RlZC1j YXJkLXRyYW5zYWN0aW9uLWxpc3RlbmVyLmtsYXJuYS5uZXQwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA9BgNVHR8ENjA0MDKg MKAuhixodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi0xLmNy bDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUH MAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcw AoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwG A1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AOg+0No+9QY1 MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABg0TwDA4AAAQDAEcwRQIgfVFj8yua 3RbSRZZ7drUrbzzGP18YMeIZkgmdSektVjUCIQCs8zhi2URUwYrKNhZFiBnnd99L aJFWAFbR3+pNn9gNxgB2ADXPGRu/sWxXvw+tTG1Cy7u2JyAmUeo/4SrvqAPDO9ZM AAABg0TwDFIAAAQDAEcwRQIgN4C4JOrNXrBIEGbmnbIf2LUGVfiRguiRjikP+9r7 lSoCIQCDDHHJsmEBh6G4ICfGj13fIgX14crurgxPETR6uZ61RwB2ALNzdwfhhFD4 Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAABg0TwDH4AAAQDAEcwRQIgO5gUOH6M 9Ia1Kbf5X0SJNiJed+foZ8iA6Ka/QYy4zb4CIQCFzCkY0LbSETRQNeQ8iHo0a+53 2E6kTsMgprNAOJiYvzANBgkqhkiG9w0BAQsFAAOCAQEAfZlltvNzAzAKornN5Fd3 kfTa63fW9gXtwhbAAfBFrIe3Vo7BxEQJrTKpRFvKINTekwFQr6RnPx1U8vhP/Jrv ClSRlbKIhke93Got09iuxQPluC/xh6oMxO8dgHs7Gx/ahk9cPtd1E4zHVTX4pq9t exctIB4X6PcQFN3Bf8TkKZLtw5G+Hy3j27pmPVKAuEiw15/20cwzf+CynVmVUnUT viwnBy/aIhCQERPvTrncgUZG2KcK/+wrw60LlAdQItcebYLFk+QS68ijCzRw3j9X 1bkYMFRsLNuj/5JrA61feFGYC+uJxpib2N346a3Ym0MwkmDW0E0Zac5XoYJfczw6 /g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKTexbG1evc8T8keOxg7 rU0q+DkCHNPBI4kLVG5I7/xP3DotGFH6HCfPje0OVnTszdua/RUqB43iSGqeiI86 wsECKQTVwQcBU4vGhdJ7TFGADD8bVEM34sYcH+Njy7QyqQedU1fI2l0I1FRLRZi1 Jc66HFWDg2KSFt9+W8oaxSLmkLmySPKahAn+YSIZrwQ7KvNxZFcM0G0TdDOsETJw 4Ne2+Sq26gINZcyU6/9AHfpAvzVDJYEg40n8Gn3CBJpzRI6mlPX2VnJFWMwU/F+M GYaYZRPxToTaQNGicvV3Xy+21brAgUqfvE/LhqHLr1v42z3//RaXmsfnib1oOLYT 9QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8306544209457938057627957172270506884 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'connected-card-transaction-listener-us.klarna.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19774476102446062224647488975158322498110714835117881304425546037294800913603285134130347481327502486290418396602021438816187060454129328428533643557030695440250238611872573970859779817623122399089013432769685754915878862341947124690660067006851611945037326044162992234080485134361472769279402448453995562667673652921868591255783325031088335836501954254816110185389480217746476832670120900153881250060821325384621083581866487802466194397245454580151041253259536729651033921843446283336591783014072810934435854788726429578037918689346646586718496068440458275481070385651863026760656521065208860168301610138487229912053 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8f5767640df74413e0aa0ae1a75721665220256e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'connected-card-transaction-listener-us.klarna.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.production.us1.connected-card-transaction-listener.klarna.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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