issuer-test.skypetoken.skype.net
Issued by Microsoft IT TLS CA 2
About this certificate
This digital certificate with serial number 20:00:03:38:51:1a:98:c0:d6:12:e7:68:d7:00:00:00:03:38:51 was issued on by Microsoft Corporation.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=issuer-test.skypetoken.skype.net
Microsoft Corporation
Organization:
Microsoft Corporation
Organization unit: Microsoft IT
Organization unit: Microsoft IT
State / Province:
Washington
Locality: Redmond
Country: US
Locality: Redmond
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 20:00:03:38:51:1a:98:c0:d6:12:e7:68:d7:00:00:00:03:38:51Serial Number (int): 713624942057963957851461689427935708078880849
Serial Number lenght: 150 bits, 19 octets
SubjectKeyId: 26:dd:f0:1e:5f:2b:a3:e9:f3:b7:da:cf:90:b9:2b:7d:1a:98:e7:f4
AuthorityKeyId: 91:9e:3b:44:6c:3d:57:9c:42:77:2a:34:d7:4f:d1:cc:4a:97:2c:da
Fingerprint (sha1): f0:7c:0f:0c:9b:39:a4:9e:fa:42:e4:3b:ae:8a:0c:b6:c3:0a:c2:28
Fingerprint (sha256): 01:c0:56:6d:e3:95:f6:97:4c:86:4e:29:22:89:35:63:bc:6d:ce:b5:e2:27:76:cb:12:f5:cc:b6:e7:2d:b6:f6
Issuing Certificate URL: http://www.microsoft.com/pki/mscorp/Microsoft%20IT%20TLS%20CA%202.crt
Revocation information
OCSP Server: http://ocsp.msocsp.comCRL Distribution Point: http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%202.crl
CRL Distribution Point: http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%202.crl
Check the revocation status for certificate issuer-test.skypetoken.skype.net
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for issuer-test.skypetoken.skype.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
issuer-test.skypetoken.skype.net
*.issuer-test.skypetoken.skype.net
keys-test.skypetoken.skype.net
*.issuer-test.skypetoken.skype.net
keys-test.skypetoken.skype.net
Other certificates including the domain name skype.net
(limited to 100 certificates)
*.trouter-int.skype.net
c-signing.dev3.ml.mdn.skype.net
pnh-prod.mtls-client.skype.net
*.cc-dev.skype.net
usermap.skype.net
*.esaps-int.skype.net
pnh-prod.mtls-client.skype.net
*.tpc.skype.net
kd-encryption.asosnitski.ml.mdn.skype.net
*.config.skype.net
kd-encryption.dev1.ml.mdn.skype.net
c-signing.hmetssalu.ml.mdn.skype.net
ust-provisioner.qa.skype.net
*.vo.msecnd.net
*.messagingthread.skype.net
qaget.skype.net
reporting.fl.skype.net
pnh-prod.mtls-client.skype.net
pnh-prod.mtls-client.skype.net
issuer-test.skypetoken.skype.net
c-signing.imalkevich.ml.mdn.skype.net
storage.asm.skype.net
*.compliancecurator-dev.skype.net
c.angorozi.main.ml.mdn.skype.net
c.kristjanjogi.main.ml.mdn.skype.net
*.cc-dev.skype.net
lu4-sasbc.skypeconnect.skype.net
*.ccts-rc.skype.net
tnm-lnpsupport.e2e.nmp.mtls.skype.net
d-signing.dev3.ml.mdn.skype.net
*.vo.msecnd.net
pnh-prod.mtls-client.skype.net
d-signing.hmetssalu.ml.mdn.skype.net
o.hmetssalu.main.ml.mdn.skype.net
entitlement.teams.microsoft-int.com
*.meet.skype.net
csharp.net
client-amt-prod.mtls-client.skype.net
*.events-sandbox.data.microsoft.com
lgw-df.mtls-client.skype.net
pnh-prod.mtls-client.skype.net
calling.consumer.entitlement.dev.skype.net
entitlement.teams.microsoft-int.com
c.abartkoviak.ctrl.ml.mdn.skype.net
*.vo.msecnd.net
*.pipe.skype.net
srm.qa.skype.net
d.imalkevich.main.ml.mdn.skype.net
c-pke.dev1.ctrl.ml.mdn.skype.net
kd-encryption.kristjanjogi.ml.mdn.skype.net
fass.skype.net
dtr-signing.lt.ml.mdn.skype.net
calling.consumer.entitlement.dev.skype.net
csharp.net
*.tc-int.skype.net
dtr-signing.abartkoviak.ml.mdn.skype.net
*.cms.skype.net
csharp.net
urlp.asm.skype.net
api.bot.skype.net
kd-encryption.sasaares.ml.mdn.skype.net
c-signing.hmetssalu.ml.mdn.skype.net
fb.sasaares.main.ml.mdn.skype.net
*.ep-dev.skype.net
d-signing.sasaares.ml.mdn.skype.net
dtr-signing.dev1.ml.mdn.skype.net
o365.fass.skype.net
*.messagingthread.skype.net
*.ccts-rc.skype.net
config.edge.skype.net
a.qalogin.skype.net
premanager.skype.net
policyprocessor.teams.skype.net
*.cc-rc.skype.net
a.qalogin.skype.net
admin.local.peer5.skype.net
kd-encryption.dev2.ml.mdn.skype.net
inviteconnector.skype.net
c-signing.abartkoviak.ml.mdn.skype.net
d.dev3.main.ml.mdn.skype.net
*.ccts-dev.skype.net
*.pipe.aria.int.microsoft.com
prehelperapi.skype.net
storage.asm.skype.net
c.angorozi.ctrl.ml.mdn.skype.net
c-signing.lt.ml.mdn.skype.net
pnh-prod.mtls-client.skype.net
*.events-sandbox.data.microsoft.com
test.ans.messaging.core.microsoft
api.bot.skype.net
usermap.skype.net
d-signing.lt.ml.mdn.skype.net
tor.security.skype.net
*.afd.asm.skype.net
*.events-sandbox.data.microsoft.com
sip.pstnhub-ppe.skype.net
geneva.tpc.skype.net
notification-hub.skype.net
d-signing.hmetssalu.ml.mdn.skype.net
d-signing.abartkoviak.ml.mdn.skype.net
c-signing.dev3.ml.mdn.skype.net
pnh-prod.mtls-client.skype.net
*.cc-dev.skype.net
usermap.skype.net
*.esaps-int.skype.net
pnh-prod.mtls-client.skype.net
*.tpc.skype.net
kd-encryption.asosnitski.ml.mdn.skype.net
*.config.skype.net
kd-encryption.dev1.ml.mdn.skype.net
c-signing.hmetssalu.ml.mdn.skype.net
ust-provisioner.qa.skype.net
*.vo.msecnd.net
*.messagingthread.skype.net
qaget.skype.net
reporting.fl.skype.net
pnh-prod.mtls-client.skype.net
pnh-prod.mtls-client.skype.net
issuer-test.skypetoken.skype.net
c-signing.imalkevich.ml.mdn.skype.net
storage.asm.skype.net
*.compliancecurator-dev.skype.net
c.angorozi.main.ml.mdn.skype.net
c.kristjanjogi.main.ml.mdn.skype.net
*.cc-dev.skype.net
lu4-sasbc.skypeconnect.skype.net
*.ccts-rc.skype.net
tnm-lnpsupport.e2e.nmp.mtls.skype.net
d-signing.dev3.ml.mdn.skype.net
*.vo.msecnd.net
pnh-prod.mtls-client.skype.net
d-signing.hmetssalu.ml.mdn.skype.net
o.hmetssalu.main.ml.mdn.skype.net
entitlement.teams.microsoft-int.com
*.meet.skype.net
csharp.net
client-amt-prod.mtls-client.skype.net
*.events-sandbox.data.microsoft.com
lgw-df.mtls-client.skype.net
pnh-prod.mtls-client.skype.net
calling.consumer.entitlement.dev.skype.net
entitlement.teams.microsoft-int.com
c.abartkoviak.ctrl.ml.mdn.skype.net
*.vo.msecnd.net
*.pipe.skype.net
srm.qa.skype.net
d.imalkevich.main.ml.mdn.skype.net
c-pke.dev1.ctrl.ml.mdn.skype.net
kd-encryption.kristjanjogi.ml.mdn.skype.net
fass.skype.net
dtr-signing.lt.ml.mdn.skype.net
calling.consumer.entitlement.dev.skype.net
csharp.net
*.tc-int.skype.net
dtr-signing.abartkoviak.ml.mdn.skype.net
*.cms.skype.net
csharp.net
urlp.asm.skype.net
api.bot.skype.net
kd-encryption.sasaares.ml.mdn.skype.net
c-signing.hmetssalu.ml.mdn.skype.net
fb.sasaares.main.ml.mdn.skype.net
*.ep-dev.skype.net
d-signing.sasaares.ml.mdn.skype.net
dtr-signing.dev1.ml.mdn.skype.net
o365.fass.skype.net
*.messagingthread.skype.net
*.ccts-rc.skype.net
config.edge.skype.net
a.qalogin.skype.net
premanager.skype.net
policyprocessor.teams.skype.net
*.cc-rc.skype.net
a.qalogin.skype.net
admin.local.peer5.skype.net
kd-encryption.dev2.ml.mdn.skype.net
inviteconnector.skype.net
c-signing.abartkoviak.ml.mdn.skype.net
d.dev3.main.ml.mdn.skype.net
*.ccts-dev.skype.net
*.pipe.aria.int.microsoft.com
prehelperapi.skype.net
storage.asm.skype.net
c.angorozi.ctrl.ml.mdn.skype.net
c-signing.lt.ml.mdn.skype.net
pnh-prod.mtls-client.skype.net
*.events-sandbox.data.microsoft.com
test.ans.messaging.core.microsoft
api.bot.skype.net
usermap.skype.net
d-signing.lt.ml.mdn.skype.net
tor.security.skype.net
*.afd.asm.skype.net
*.events-sandbox.data.microsoft.com
sip.pstnhub-ppe.skype.net
geneva.tpc.skype.net
notification-hub.skype.net
d-signing.hmetssalu.ml.mdn.skype.net
d-signing.abartkoviak.ml.mdn.skype.net
Certificate
The complete raw certificate details for issuer-test.skypetoken.skype.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHKzCCBROgAwIBAgITIAADOFEamMDWEudo1wAAAAM4UTANBgkqhkiG9w0BAQsF ADCBizELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEVMBMGA1UE CxMMTWljcm9zb2Z0IElUMR4wHAYDVQQDExVNaWNyb3NvZnQgSVQgVExTIENBIDIw HhcNMTgwNjA2MTI1ODAwWhcNMjAwNjA2MTI1ODAwWjArMSkwJwYDVQQDEyBpc3N1 ZXItdGVzdC5za3lwZXRva2VuLnNreXBlLm5ldDCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOnWpflpMncCEKJuEebEb8FZyvZk6tSv4yVnvotmexRSsqmI GwVZx5e45w7+eo1RdiMFoJvaLNsL0eFruv4GeQtdTKeOUI9RbJSpNz+iInIfhkxO XmL9pLY5ciBpv6jUrbG9QFPVYuOeK/adtA7vWyyZzLZ+TU6mk9tlQ7fFI2+nJWRD btbHM+S551ZnAAk/Y65VPApgDw8sux4vZFDqA3PmCEBu5Xn4K35Nv+7xcEJCTGrS md394Wfa/1ihPjh8RPKYuheqVp24fProNQ7nFRZW36ESy1wGxmDIrK3w3hlQdh2Y dNJ/TZn8Df7OUyyMeISJLJeISAWiru/XAG4PI1cCAwEAAaOCAuUwggLhMBMGCisG AQQB1nkCBAMBAf8EAgUAMCcGCSsGAQQBgjcVCgQaMBgwCgYIKwYBBQUHAwIwCgYI KwYBBQUHAwEwPgYJKwYBBAGCNxUHBDEwLwYnKwYBBAGCNxUIh9qGdYPu2QGCyYUb gbWeYYX062CBXYTS30KC55N6AgFkAgEdMIGFBggrBgEFBQcBAQR5MHcwUQYIKwYB BQUHMAKGRWh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2kvbXNjb3JwL01pY3Jv c29mdCUyMElUJTIwVExTJTIwQ0ElMjAyLmNydDAiBggrBgEFBQcwAYYWaHR0cDov L29jc3AubXNvY3NwLmNvbTAdBgNVHQ4EFgQUJt3wHl8ro+nzt9rPkLkrfRqY5/Qw CwYDVR0PBAQDAgSwMG8GA1UdEQRoMGaCIGlzc3Vlci10ZXN0LnNreXBldG9rZW4u c2t5cGUubmV0giIqLmlzc3Vlci10ZXN0LnNreXBldG9rZW4uc2t5cGUubmV0gh5r ZXlzLXRlc3Quc2t5cGV0b2tlbi5za3lwZS5uZXQwgawGA1UdHwSBpDCBoTCBnqCB m6CBmIZLaHR0cDovL21zY3JsLm1pY3Jvc29mdC5jb20vcGtpL21zY29ycC9jcmwv TWljcm9zb2Z0JTIwSVQlMjBUTFMlMjBDQSUyMDIuY3JshklodHRwOi8vY3JsLm1p Y3Jvc29mdC5jb20vcGtpL21zY29ycC9jcmwvTWljcm9zb2Z0JTIwSVQlMjBUTFMl MjBDQSUyMDIuY3JsME0GA1UdIARGMEQwQgYJKwYBBAGCNyoBMDUwMwYIKwYBBQUH AgEWJ2h0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2kvbXNjb3JwL2NwczAfBgNV HSMEGDAWgBSRnjtEbD1XnEJ3KjTXT9HMSpcs2jAdBgNVHSUEFjAUBggrBgEFBQcD AgYIKwYBBQUHAwEwDQYJKoZIhvcNAQELBQADggIBACzPwPHztrd5Mv2rZMYUasCr bR7jdAhg4AQK7j7Nrnqbl+gQFgJOGCm93nAyPxvXP7FAcBHNVz+ZID8UtJQTOkYJ zwPInr0fF6xXlkdoi/nfB0WaJ51E1Gk1Gd3Q0tAwKYTl4WdbvCRqNvzH12H4B02D NVr4kHXeYiw0vf1fZWpqpda8rlc4hptowVtIfOvohnBNMe6hjKKRvWRLw4w6n5ki P8mZUeqKFYzi/B1Wir2RoV4Pj5xsvJzl3bxs6vgjDrYs1wlLJZRydAwdLTRRBXW8 d9ZhHDB60HPs+BRHWDMUQMC+3n0ON/RH/7tKMumbuuL8LDA/AXvMImMxhw3PXwy4 18IyQ0ABTug1geDF37qNicPG0J0wwDNMTmljdDF/OFcDKpdRbPy29rsxm22KSCMU bxaAOOANRg0biHm+o7aW1txvgNLm881cb4qz9jDK1g63tpdHPr/w4nFubzJMkUo8 NjzitGOoC/Stqla4RUnjHMA1IuBA2snXZNukMiZkIulTmcquPLBW+Aj1gRd9VxB2 Y7GJ5JEPlhf1tJwMDI0YO4yU155pjAE1EyzuOkj4G2S8rOe3p8unNseV74/yi0W+ x8rbq454vfOh196YDDC4Vm2hFJZ8j3KCvo6VgtqrByug2560HwCRtSjm9MHigB1V 7LMvW5MauSGdEZzpaTA+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6dal+WkydwIQom4R5sRv wVnK9mTq1K/jJWe+i2Z7FFKyqYgbBVnHl7jnDv56jVF2IwWgm9os2wvR4Wu6/gZ5 C11Mp45Qj1FslKk3P6Iich+GTE5eYv2ktjlyIGm/qNStsb1AU9Vi454r9p20Du9b LJnMtn5NTqaT22VDt8Ujb6clZENu1scz5LnnVmcACT9jrlU8CmAPDyy7Hi9kUOoD c+YIQG7lefgrfk2/7vFwQkJMatKZ3f3hZ9r/WKE+OHxE8pi6F6pWnbh8+ug1DucV FlbfoRLLXAbGYMisrfDeGVB2HZh00n9NmfwN/s5TLIx4hIksl4hIBaKu79cAbg8j VwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 713624942057963957851461689427935708078880849 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT TLS CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-06 12:58:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-06 12:58:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'issuer-test.skypetoken.skype.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29519372097019203731744015047151679442006062690744716310909638528174781573236434955942592540375440056109626599726848968287480201827184209786485898660989872005996167993527619472139623504161222925670415048262772529798343190051182815969895050698109664734625790237701856351802470635315611763781912295225566633974363772222103791487400787475834827448768889585628769892416348399372604866700243224243642299131168197985209620126159237306268187789892682036336310934795139297575658500820050084471156655256256943593886673734426605430984121745851488196061967509643133378524472870832337520025112879683516263756863173000831383315287 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.16155509.8105089.5391003.2969441.12400096.221.9744322.5884410 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pki/mscorp/Microsoft%20IT%20TLS%20CA%202.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.msocsp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 26ddf01e5f2ba3e9f3b7dacf90b92b7d1a98e7f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'issuer-test.skypetoken.skype.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.issuer-test.skypetoken.skype.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'keys-test.skypetoken.skype.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (164 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%202.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%202.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.42.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pki/mscorp/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 919e3b446c3d579c42772a34d74fd1cc4a972cda . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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