app.aa.com
- American Airlines, Inc. -
Issued by Entrust Certification Authority - L1M
About this certificate
This digital certificate with serial number a5:4a:b1:d6:00:00:00:00:54:cc:a1:3b was issued on by Entrust, Inc..
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
American Airlines, Inc.
Company registration number:
0332421
Organization: American Airlines, Inc.
Organization: American Airlines, Inc.
State / Province:
Texas
Locality: Fort Worth
Country: US
Locality: Fort Worth
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2014 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2014 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): a5:4a:b1:d6:00:00:00:00:54:cc:a1:3bSerial Number (int): 51155326937644118600986698043
Serial Number lenght: 96 bits, 12 octets
SubjectKeyId: 47:87:8b:80:94:6d:6d:7e:2b:1f:e9:d8:00:22:42:87:ad:f2:5a:87
AuthorityKeyId: c3:f7:d0:b5:2a:30:ad:af:0d:91:21:70:39:54:dd:bc:89:70:c7:3a
Fingerprint (sha1): be:7f:24:a9:37:37:15:b5:0e:dd:13:43:ba:fb:85:1c:ce:e8:73:73
Fingerprint (sha256): 01:c6:54:18:e1:dd:76:ed:00:d2:e4:57:32:ba:c2:01:95:fc:f6:87:00:32:ac:1a:a5:e6:b8:1b:35:9d:29:7d
Issuing Certificate URL: http://aia.entrust.net/l1m-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1m.crl
Check the revocation status for certificate app.aa.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for app.aa.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
app.aa.com
promo.aa.com
elite2016.aa.com
promo.aa.com
elite2016.aa.com
Other certificates including the domain name aa.com
(limited to 100 certificates)
psastage.aa.com
bc-stage.aa.com
boss-cdc.stage.aa.com
dtr.phx.aa.com
fos.aa.com
custhubmdm-grp1.tul.aa.com
mdmds.test.aa.com
aspectwfm.cdc.aa.com
nrsqa.test.qcorpaa.aa.com
mfa.aa.com
admin.aa.com
aemes.envoy.aa.com
loyaltypartnercitibenefit.stage.aa.com
pilotpbs-sb.aa.com
pilot-tts.aa.com
techopsk2.uat.corpaa.aa.com
smetrics.aa.com
americanwaymagazine.com
stage.aa.com
cass.qcorpaa.aa.com
apps.usairways.com
wb.etm.aa.com
yada-beta.stage.aa.com
fb-pdc.aa.com
mclastage.aa.com
cka.aa.com
*.apps.cpepaas.aa.com
owrcm.aa.com
airportal-pdc.aa.com
handpunch.aa.com
fapbsbvr-ws.aa.com
get.azpw.aa.com
itas.aa.com
admin.awarenessnetworks.com
tmscsurvey-test.aa.com
aacloud.qa.esoa.qcorpaa.aa.com
aaapac-expcluster-e01-hon1.aa.com
cass-stage.aa.com
checkfree-stage.aa.com
americaneagle.aa.com
spe-nonprod.aa.com
bw-a.pdc.aa.com
racf.stage.aa.com
lmo.me.aa.com
ifs.aa.com
salt-np.aa.com
scdfwappp1000001.corpaa.aa.com
aacs.stage.esoa.aa.com
pssi.stage.esoa.aa.com
aapilots.com
qa-cdn.flyaa.aa.com
aana-expcluster-e01-bv1.aa.com
cbjocaz.aa.com
newemployeetravel.test.aa.com
diversions-stg.lka.aa.com
res-keystar.stage.aa.com
aasales.dev.esoa.qcorpaa.aa.com
ssofedpdc.aa.com
aepp.jetnet.aa.com
airport360.aa.com
esdfwovp0000001.DFWD1.aa.com
app.aa.com
wb.etm.aa.com
smlogin.qtcorpaa.aa.com
eworkforce.aa.com
Aircraft-cdc.mx.techops.aa.com
uagzeusn.aa.com
premium.stage.aa.com
mercury-cert.aa.com
yada-beta.stage.aa.com
etqstage.aa.com
webref.stage.aa.com
ox-d.aa.com
isolve.aa.com
ltuappp04.corpaa.aa.com
www.aa.com
yada.aa.com
crewwatch-stg.ido.horizon.cherokee.aa.com
mopsmanager.qcorpaa.aa.com
concourse.ci.qcorpaa.aa.com
hub.aa.com
psa.qcorpaa.aa.com
sharedcontent1-stg.aa.com
rovrplus-gateway-east.aa.com
bc.aa.com
faroms-trng.aa.com
soa.apim.dev.sales.aa.com
sharedcontent1-stg-mg-cdc.aa.com
yada-beta.stage.aa.com
handpunch.aa.com
manuals-stage.aa.com
portal45.stage.jetnet.aa.com
*.apps.cpepaas.aa.com
ssc.stagereg.aa.com
fsa.aa.com
npportal-tmp.aa.com
americanwaymagazine.com
security.aa.com
atd.jetnet.aa.com
*.sr.prd.pdc.aa.com
bc-stage.aa.com
boss-cdc.stage.aa.com
dtr.phx.aa.com
fos.aa.com
custhubmdm-grp1.tul.aa.com
mdmds.test.aa.com
aspectwfm.cdc.aa.com
nrsqa.test.qcorpaa.aa.com
mfa.aa.com
admin.aa.com
aemes.envoy.aa.com
loyaltypartnercitibenefit.stage.aa.com
pilotpbs-sb.aa.com
pilot-tts.aa.com
techopsk2.uat.corpaa.aa.com
smetrics.aa.com
americanwaymagazine.com
stage.aa.com
cass.qcorpaa.aa.com
apps.usairways.com
wb.etm.aa.com
yada-beta.stage.aa.com
fb-pdc.aa.com
mclastage.aa.com
cka.aa.com
*.apps.cpepaas.aa.com
owrcm.aa.com
airportal-pdc.aa.com
handpunch.aa.com
fapbsbvr-ws.aa.com
get.azpw.aa.com
itas.aa.com
admin.awarenessnetworks.com
tmscsurvey-test.aa.com
aacloud.qa.esoa.qcorpaa.aa.com
aaapac-expcluster-e01-hon1.aa.com
cass-stage.aa.com
checkfree-stage.aa.com
americaneagle.aa.com
spe-nonprod.aa.com
bw-a.pdc.aa.com
racf.stage.aa.com
lmo.me.aa.com
ifs.aa.com
salt-np.aa.com
scdfwappp1000001.corpaa.aa.com
aacs.stage.esoa.aa.com
pssi.stage.esoa.aa.com
aapilots.com
qa-cdn.flyaa.aa.com
aana-expcluster-e01-bv1.aa.com
cbjocaz.aa.com
newemployeetravel.test.aa.com
diversions-stg.lka.aa.com
res-keystar.stage.aa.com
aasales.dev.esoa.qcorpaa.aa.com
ssofedpdc.aa.com
aepp.jetnet.aa.com
airport360.aa.com
esdfwovp0000001.DFWD1.aa.com
app.aa.com
wb.etm.aa.com
smlogin.qtcorpaa.aa.com
eworkforce.aa.com
Aircraft-cdc.mx.techops.aa.com
uagzeusn.aa.com
premium.stage.aa.com
mercury-cert.aa.com
yada-beta.stage.aa.com
etqstage.aa.com
webref.stage.aa.com
ox-d.aa.com
isolve.aa.com
ltuappp04.corpaa.aa.com
www.aa.com
yada.aa.com
crewwatch-stg.ido.horizon.cherokee.aa.com
mopsmanager.qcorpaa.aa.com
concourse.ci.qcorpaa.aa.com
hub.aa.com
psa.qcorpaa.aa.com
sharedcontent1-stg.aa.com
rovrplus-gateway-east.aa.com
bc.aa.com
faroms-trng.aa.com
soa.apim.dev.sales.aa.com
sharedcontent1-stg-mg-cdc.aa.com
yada-beta.stage.aa.com
handpunch.aa.com
manuals-stage.aa.com
portal45.stage.jetnet.aa.com
*.apps.cpepaas.aa.com
ssc.stagereg.aa.com
fsa.aa.com
npportal-tmp.aa.com
americanwaymagazine.com
security.aa.com
atd.jetnet.aa.com
*.sr.prd.pdc.aa.com
Certificate
The complete raw certificate details for app.aa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHnTCCBoWgAwIBAgINAKVKsdYAAAAAVMyhOzANBgkqhkiG9w0BAQsFADCBujEL MAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1Nl ZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDE0 IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwGA1UE AxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxTTAeFw0xNjA0 MDYxODEzMjZaFw0xODA0MDYxODQzMjRaMIHKMQswCQYDVQQGEwJVUzEOMAwGA1UE CBMFVGV4YXMxEzARBgNVBAcTCkZvcnQgV29ydGgxEzARBgsrBgEEAYI3PAIBAxMC VVMxGTAXBgsrBgEEAYI3PAIBAhMIRGVsYXdhcmUxIDAeBgNVBAoTF0FtZXJpY2Fu IEFpcmxpbmVzLCBJbmMuMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjEQ MA4GA1UEBRMHMDMzMjQyMTETMBEGA1UEAxMKYXBwLmFhLmNvbTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBALfNKQH29+jWuhI23qazY2BrvkV6yIkSHArL TNE4Hxwlg7Ewd11UhpKx7Khk6V0BiL76lc26LPrcjheS8Qz4PR9WIX66JJArEdXB m0EYqHso70EGLIBRqgpD+t3E49AkC58SJ29znEAuKmjLP7FwkffBJRQxhiFiuc/d KmgQUEqUb6ZM3qnhLvnvYLVSFDIniSwoG8tNwVoUlP/W/nhvoyTrMPXtsDqvacis XMkPJm0wjSQhwSZjw/IZ5MBIAKuwZ9BZARKj/Oca6119FmO4lhu0NqbeDYDzEvYL kIGiWq5CCLl6srFTyZxdmtgId4HUvmOL/IdED2aKRae2HI8uDeUCAwEAAaOCA44w ggOKMDUGA1UdEQQuMCyCCmFwcC5hYS5jb22CDHByb21vLmFhLmNvbYIQZWxpdGUy MDE2LmFhLmNvbTCCAfcGCisGAQQB1nkCBAIEggHnBIIB4wHhAHcAaPaY+B9kgr46 jO65KB1M/HFRXWeT1ETRCmesu09P+8QAAAFT7OLndwAABAMASDBGAiEAjBetV9t2 ejsxbW4nvVDHjNh5FkzGUf+LWROzeEUEI7oCIQDhMYqyIfu08AM+lIsjQoT5T7/L 35ikK0k7AMjntHj9VQB2AFYUBpov18Ls0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDd AAABU+zi6tQAAAQDAEcwRQIgJlVpyi6m2AePkiNl434ncYbVhJ7u3LVrslLCcC5z zl8CIQCDtU+Tse283i94/E/QS/w1DrUrsBLuPghkcYvaanSa1AB3AHRhtKCc+z1B 11FZV1sudkmkRajSdwmwzFZKZIK360GjAAABU+zi7YUAAAQDAEgwRgIhAP6zR616 O9PdRwnfpEn2wwXQXcRW9L2BXv1NtkL2qTcBAiEA/zvJP4DummuxWwQw6KdnpEKo jXbb3Mt71IZWOtkUinoAdQCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3c EAAAAVPs4u6ZAAAEAwBGMEQCIHp+sYFMQubyWo2Cj3TzbPiejAWWNEoeboRzk5ql suuKAiAoaQjM7OTp2lceX12h91xJlebh4llxnkCsJ5K1RjppAjALBgNVHQ8EBAMC BaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwaAYIKwYBBQUHAQEEXDBaMCMGCCsGAQUF BzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAzBggrBgEFBQcwAoYnaHR0cDov L2FpYS5lbnRydXN0Lm5ldC9sMW0tY2hhaW4yNTYuY2VyMDMGA1UdHwQsMCowKKAm oCSGImh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxbS5jcmwwSgYDVR0gBEMw QTA2BgpghkgBhvpsCgECMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly93d3cuZW50cnVz dC5uZXQvcnBhMAcGBWeBDAEBMB8GA1UdIwQYMBaAFMP30LUqMK2vDZEhcDlU3byJ cMc6MB0GA1UdDgQWBBRHh4uAlG1tfisf6dgAIkKHrfJahzAJBgNVHRMEAjAAMA0G CSqGSIb3DQEBCwUAA4IBAQBeXzPboXU5EiInF55MMRTwJbfJAMpQFz/Hnk69A14m uAvRe60bu+05nwxIAPIvzva5rxP1YK4NZ80qgBszHQgVlqceMyk7By9XLQUV/Gaj sz1F4XyDUSo40XicmABQ4iAvtvRLrCHh3qGtsEv7yvKS5g64rtooy2nPt4A/LpPr INZjORtUV4lQ4NM02tugk93Kw1OqQb3LlX/8dx+dEYHkZHAdXHuW/b1sA4iSIMLQ gSLlFT4g2dwfQGzYdVip6+av4uIvOYuDQhRLeprstSrsDG39VsyVoc1wHsBNCqPW 9Zxm9P7hNn4abIA5b57iak0e3hZtGe9FzhhlGH2Sd20z -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt80pAfb36Na6EjbeprNj YGu+RXrIiRIcCstM0TgfHCWDsTB3XVSGkrHsqGTpXQGIvvqVzbos+tyOF5LxDPg9 H1YhfrokkCsR1cGbQRioeyjvQQYsgFGqCkP63cTj0CQLnxInb3OcQC4qaMs/sXCR 98ElFDGGIWK5z90qaBBQSpRvpkzeqeEu+e9gtVIUMieJLCgby03BWhSU/9b+eG+j JOsw9e2wOq9pyKxcyQ8mbTCNJCHBJmPD8hnkwEgAq7Bn0FkBEqP85xrrXX0WY7iW G7Q2pt4NgPMS9guQgaJarkIIuXqysVPJnF2a2Ah3gdS+Y4v8h0QPZopFp7Ycjy4N 5QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 51155326937644118600986698043 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2014 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1M' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-04-06 18:13:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-06 18:43:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Texas' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Fort Worth' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Delaware' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'American Airlines, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '0332421' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'app.aa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23202778067211000421065879211038063028238545480965033207511039556858638414571683927043397649191683896861739580125175037220218316135863110575518997293735829679514120107007053166998253946205585593164840713316585941175564560970300180513308290438084872406805178771450660705473685090584319286885879883624641967334297077686617795198659285443032660668853865256079325008616921049460482078883812861488163271550574165132272505148349661268718238046055033669041354916586211217944754096505908445667766487569355282142118993733094177272099636150017375499102944779640692633626438779613562697118965839146558809037158382856821164346853 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app.aa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'promo.aa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'elite2016.aa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1m-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1m.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.2 (Entrust EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c3f7d0b52a30adaf0d9121703954ddbc8970c73a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 47878b80946d6d7e2b1fe9d800224287adf25a87 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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