lender.natwest.poweredbydivido.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:c1:08:a1:68:74:93:1a:94:cd:04:2d:d5:39:cd:ae was issued on by Amazon.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=lender.natwest.poweredbydivido.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:c1:08:a1:68:74:93:1a:94:cd:04:2d:d5:39:cd:aeSerial Number (int): 19611480282024409057587171542724890030
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 84:c9:7e:5b:4b:66:57:51:4d:6a:3d:d4:c2:1e:3c:1b:6b:58:a2:44
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 39:c1:da:98:94:cf:4a:42:8c:16:02:86:54:f1:39:26:af:35:4b:35
Fingerprint (sha256): 01:d1:5c:5e:23:72:00:3e:e9:79:1a:3e:57:ef:33:5b:64:c2:92:05:82:c4:e1:f0:81:9b:b1:fa:0e:a6:eb:21
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate lender.natwest.poweredbydivido.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lender.natwest.poweredbydivido.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lender.natwest.poweredbydivido.com
secure.natwest.poweredbydivido.com
merchant.natwest.poweredbydivido.com
api.natwest.poweredbydivido.com
apply.natwest.poweredbydivido.com
secure.natwest.poweredbydivido.com
merchant.natwest.poweredbydivido.com
api.natwest.poweredbydivido.com
apply.natwest.poweredbydivido.com
Other certificates including the domain name poweredbydivido.com
(limited to 100 certificates)
lender.natwest.poweredbydivido.com
*.multi-eu.poweredbydivido.com
wattsandcostatus.propman.co.uk
apply.staging.santander.poweredbydivido.com
lender.sandbox.ing.poweredbydivido.com
*.sandbox.nordea.poweredbydivido.com
*.staging.nordea.poweredbydivido.com
application.bbva.poweredbydivido.com
status.vleo.net
status.tekloc.net
secure.staging.divido.com
*.testing.hsbc.poweredbydivido.com
status.eurabo.be
status.eurabo.be
apply.testing.bbva.poweredbydivido.com
status.scalerit.de
lender.staging.natwest.poweredbydivido.com
lender.staging.natwest.poweredbydivido.com
apply.testing.bbva.poweredbydivido.com
lender.staging.santander.poweredbydivido.com
wallis.status.app.vista.co
lender.santander.poweredbydivido.com
status.eurabo.be
lender.sandbox.santander.poweredbydivido.com
*.staging.nordea.poweredbydivido.com
lender.testing.natwest.poweredbydivido.com
status.eurabo.be
apply.bbva.poweredbydivido.com
lender.sandbox.ing.poweredbydivido.com
apply.sandbox.santander.poweredbydivido.com
status.eurabo.be
*.divido.com
status.tbft.org.uk
lender.sandbox.natwest.poweredbydivido.com
status.cs.redwood.com
testing.nordea.poweredbydivido.com
status.eurabo.be
*.divido.com
status.tekloc.net
lender.sandbox.santander.poweredbydivido.com
apply.ing.poweredbydivido.com
application.staging.bbva.poweredbydivido.com
secure.testing.divido.com
application.testing.ocs.poweredbydivido.com
status.eurabo.be
*.nordea.poweredbydivido.com
testing.nordea.poweredbydivido.com
secure.testing.divido.com
apply.santander.poweredbydivido.com
apply.natwest.poweredbydivido.com
status.hotel-spider.com
status.cs.redwood.com
lender.natwest.poweredbydivido.com
lender.sandbox.natwest.poweredbydivido.com
application.bbva.poweredbydivido.com
lender.natwest.poweredbydivido.com
status.eurabo.be
status.poweredbydivido.com
status.absis-ciborg.com
*.sandbox.nordea.poweredbydivido.com
status.cs.redwood.com
apply.santander.poweredbydivido.com
status.eurabo.be
apply.staging.ing.poweredbydivido.com
status.eurabo.be
application.staging.bbva.poweredbydivido.com
lender.sandbox.natwest.poweredbydivido.com
status.eurabo.be
lender.testing.natwest.poweredbydivido.com
apply.sandbox.santander.poweredbydivido.com
apply.natwest.poweredbydivido.com
status.eurabo.be
lender.natwest.poweredbydivido.com
*.sandbox.nordea.poweredbydivido.com
status.eurabo.be
status.scalerit.de
lender.ing.poweredbydivido.com
*.staging.bbva.poweredbydivido.com
status.eurabo.be
*.staging.hsbc.poweredbydivido.com
status-mena.obrela.com
status.eurabo.be
status.eurabo.be
lender.staging.ing.poweredbydivido.com
status2.allex.ai
lender.testing.ing.poweredbydivido.com
apply.testing.santander.poweredbydivido.com
*.divido.com
api.testing.ocs.poweredbydivido.com
*.sandbox.ocs.poweredbydivido.com
lender.testing.natwest.poweredbydivido.com
status.eurabo.be
apply.staging.natwest.poweredbydivido.com
status.premierforestgroup.com
status.tekloc.net
lender.sandbox.natwest.poweredbydivido.com
lender.testing.natwest.poweredbydivido.com
status.eurabo.be
status.eurabo.be
secure.testing.divido.com
*.multi-eu.poweredbydivido.com
wattsandcostatus.propman.co.uk
apply.staging.santander.poweredbydivido.com
lender.sandbox.ing.poweredbydivido.com
*.sandbox.nordea.poweredbydivido.com
*.staging.nordea.poweredbydivido.com
application.bbva.poweredbydivido.com
status.vleo.net
status.tekloc.net
secure.staging.divido.com
*.testing.hsbc.poweredbydivido.com
status.eurabo.be
status.eurabo.be
apply.testing.bbva.poweredbydivido.com
status.scalerit.de
lender.staging.natwest.poweredbydivido.com
lender.staging.natwest.poweredbydivido.com
apply.testing.bbva.poweredbydivido.com
lender.staging.santander.poweredbydivido.com
wallis.status.app.vista.co
lender.santander.poweredbydivido.com
status.eurabo.be
lender.sandbox.santander.poweredbydivido.com
*.staging.nordea.poweredbydivido.com
lender.testing.natwest.poweredbydivido.com
status.eurabo.be
apply.bbva.poweredbydivido.com
lender.sandbox.ing.poweredbydivido.com
apply.sandbox.santander.poweredbydivido.com
status.eurabo.be
*.divido.com
status.tbft.org.uk
lender.sandbox.natwest.poweredbydivido.com
status.cs.redwood.com
testing.nordea.poweredbydivido.com
status.eurabo.be
*.divido.com
status.tekloc.net
lender.sandbox.santander.poweredbydivido.com
apply.ing.poweredbydivido.com
application.staging.bbva.poweredbydivido.com
secure.testing.divido.com
application.testing.ocs.poweredbydivido.com
status.eurabo.be
*.nordea.poweredbydivido.com
testing.nordea.poweredbydivido.com
secure.testing.divido.com
apply.santander.poweredbydivido.com
apply.natwest.poweredbydivido.com
status.hotel-spider.com
status.cs.redwood.com
lender.natwest.poweredbydivido.com
lender.sandbox.natwest.poweredbydivido.com
application.bbva.poweredbydivido.com
lender.natwest.poweredbydivido.com
status.eurabo.be
status.poweredbydivido.com
status.absis-ciborg.com
*.sandbox.nordea.poweredbydivido.com
status.cs.redwood.com
apply.santander.poweredbydivido.com
status.eurabo.be
apply.staging.ing.poweredbydivido.com
status.eurabo.be
application.staging.bbva.poweredbydivido.com
lender.sandbox.natwest.poweredbydivido.com
status.eurabo.be
lender.testing.natwest.poweredbydivido.com
apply.sandbox.santander.poweredbydivido.com
apply.natwest.poweredbydivido.com
status.eurabo.be
lender.natwest.poweredbydivido.com
*.sandbox.nordea.poweredbydivido.com
status.eurabo.be
status.scalerit.de
lender.ing.poweredbydivido.com
*.staging.bbva.poweredbydivido.com
status.eurabo.be
*.staging.hsbc.poweredbydivido.com
status-mena.obrela.com
status.eurabo.be
status.eurabo.be
lender.staging.ing.poweredbydivido.com
status2.allex.ai
lender.testing.ing.poweredbydivido.com
apply.testing.santander.poweredbydivido.com
*.divido.com
api.testing.ocs.poweredbydivido.com
*.sandbox.ocs.poweredbydivido.com
lender.testing.natwest.poweredbydivido.com
status.eurabo.be
apply.staging.natwest.poweredbydivido.com
status.premierforestgroup.com
status.tekloc.net
lender.sandbox.natwest.poweredbydivido.com
lender.testing.natwest.poweredbydivido.com
status.eurabo.be
status.eurabo.be
secure.testing.divido.com
Certificate
The complete raw certificate details for lender.natwest.poweredbydivido.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgIQDsEIoWh0kxqUzQQt1TnNrjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjEyMTIwMDAwMDBaFw0yNDAxMTAy MzU5NTlaMC0xKzApBgNVBAMTImxlbmRlci5uYXR3ZXN0LnBvd2VyZWRieWRpdmlk by5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKSok5YR+vTT8h ObM6NCZv0Mvgk26WjTghAgcVeyi9LJNEu5LQU+m+sTI4/UB85KdrMIIJ2cObqtV4 /Q1Vz4o0L0RpU+uL51elzEK20OAmkKZXIKHcYw1YxGqlFsGDVVgJ/NBoxQ2ptxWS o9LsSCYJoGvhc2dtdZnOgoPytCFYJT4dVPmXEzwgWAiabXVivcW7z7UbyP11LeSi 2993Lb03o+IohqdYNiMYSgdEJRiqiJKJzazJnPvvT7W5vvdFRaiMCz0QECrcvMiJ hFh4TDfYNeLLpDJ6PnyzxovNndW0QX9BzoE0CI6RF2g1nCe3f4IvZzk0mj8KoCpP QVQ0iTt9AgMBAAGjggIhMIICHTAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0 W/k90DAdBgNVHQ4EFgQUhMl+W0tmV1FNaj3Uwh48G2tYokQwgb0GA1UdEQSBtTCB soIibGVuZGVyLm5hdHdlc3QucG93ZXJlZGJ5ZGl2aWRvLmNvbYIic2VjdXJlLm5h dHdlc3QucG93ZXJlZGJ5ZGl2aWRvLmNvbYIkbWVyY2hhbnQubmF0d2VzdC5wb3dl cmVkYnlkaXZpZG8uY29tgh9hcGkubmF0d2VzdC5wb3dlcmVkYnlkaXZpZG8uY29t giFhcHBseS5uYXR3ZXN0LnBvd2VyZWRieWRpdmlkby5jb20wDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA9BgNVHR8ENjA0MDKg MKAuhixodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi0xLmNy bDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUH MAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcw AoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwG A1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQAD ggEBAGKOMJN594qSnI6F2s09HjnCIc0MA7I92Zcx48VS/6v6gwLT2ClXWw2DmFTM PYOyE6/F2SvCcfoMaao3Zcr73lu/QISqE79w3SVX2end0CWRmbM8soCKJ/n90d6H mzC6PR9nr8B+cq3Jg0iox7iI3p84gfkDOJNdj+VYAeehO4ZQ3v1UeuxQqu+pKLYS clGFebuT2Pzzz0v83Y5/4lSH5yk+kdp5rFK0b3COFhagUpq8t6zrJgwPJmfPDk51 z4Ho9bSpmhlP4IyWqYYieaSBJKrBQY6T3zeImJEAYC2Bd0I4/pi9OOqbzEMlPLBD jMLU9oydafYQyjZfv7C0lPjnS4s= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAykqJOWEfr00/ITmzOjQm b9DL4JNulo04IQIHFXsovSyTRLuS0FPpvrEyOP1AfOSnazCCCdnDm6rVeP0NVc+K NC9EaVPri+dXpcxCttDgJpCmVyCh3GMNWMRqpRbBg1VYCfzQaMUNqbcVkqPS7Egm CaBr4XNnbXWZzoKD8rQhWCU+HVT5lxM8IFgImm11Yr3Fu8+1G8j9dS3kotvfdy29 N6PiKIanWDYjGEoHRCUYqoiSic2syZz770+1ub73RUWojAs9EBAq3LzIiYRYeEw3 2DXiy6Qyej58s8aLzZ3VtEF/Qc6BNAiOkRdoNZwnt3+CL2c5NJo/CqAqT0FUNIk7 fQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19611480282024409057587171542724890030 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-10 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lender.natwest.poweredbydivido.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25536892690300351081478367011737023258496448913062590210900883951013973161250116730430704033076524309584466773736173570389840941734255800133531390048827326382375117298842775243202759253176356153642438454612288203532752021512719856001595260861013404629142592830197172665062180782746679574469219810791456753577327272041069207718461730009033532802907270674607281783306017546386160781599114607586695761123987226323328185623341678471323879511177610000141730688049608337495801798950865561701479126980013760827301431752565320749094809471647030065521968270384006724760312620854365935060107858018400484565436014717561800833917 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 84c97e5b4b6657514d6a3dd4c21e3c1b6b58a244 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (181 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lender.natwest.poweredbydivido.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.natwest.poweredbydivido.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'merchant.natwest.poweredbydivido.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.natwest.poweredbydivido.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apply.natwest.poweredbydivido.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00628e309379f78a929c8e85dacd3d1e39c221cd0c03b23dd99731e3c552ffabfa8302d3d829575b0d839854cc3d83b213afc5d92bc271fa0c69aa3765cafbde5bbf4084aa13bf70dd2557d9e9ddd0259199b33cb2808a27f9fdd1de879b30ba3d1f67afc07e72adc98348a8c7b888de9f3881f90338935d8fe55801e7a13b8650defd547aec50aaefa928b61272518579bb93d8fcf3cf4bfcdd8e7fe25487e7293e91da79ac52b46f708e1616a0529abcb7aceb260c0f2667cf0e4e75cf81e8f5b4a99a194fe08c96a9862279a48124aac1418e93df3788989100602d81774238fe98bd38ea9bcc43253cb0438cc2d4f68c9d69f610ca365fbfb0b494f8e74b8b