unitypoint-waterloo.customer.kyruus.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0a:bb:75:9b:23:57:e6:43:c3:45:05:bc:5c:3d:62:ac was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=unitypoint-waterloo.customer.kyruus.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:bb:75:9b:23:57:e6:43:c3:45:05:bc:5c:3d:62:acSerial Number (int): 14265624803622227736332324261934752428
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d3:f7:99:a3:d9:02:62:ce:7d:c6:e4:c1:11:ac:44:0d:28:cb:e4:f2
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 02:d3:99:0c:96:a5:a8:6d:60:0e:eb:8a:2d:af:5b:5c:30:61:73:c8
Fingerprint (sha256): 02:3d:a3:f6:7d:1f:0c:8a:1a:c4:1e:1b:92:85:d9:36:98:64:1a:09:bb:66:ce:c1:21:5d:d6:88:ac:21:3a:f5
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate unitypoint-waterloo.customer.kyruus.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for unitypoint-waterloo.customer.kyruus.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
unitypoint-waterloo.customer.kyruus.com
waterloo.unitypoint.org
waterloo.unitypoint.org
Other certificates including the domain name kyruus.com
(limited to 100 certificates)
secure0017.hubspot.com
*.customer.kyruus.com
imperva.com
unitypoint-cedarrapids.customer.kyruus.com
statuspage.io
chickentreat.craveable.support
chickentreat.craveable.support
chickentreat.craveable.support
*.customer.kyruus.com
unitypoint-waterloo.customer.kyruus.com
secure0017.hubspot.com
chickentreat.craveable.support
*.kyruus.com
imperva.com
doctors.coxhealth.com
imperva.com
doctors.palmettohealth.org
imperva.com
secure0017.hubspot.com
www.kyruus.com
doctors.lgh.org
imperva.com
doctors.ghs.org
statuspage.io
nghs-ngpg.customer.kyruus.com
uhs-edinburghchildrens.customer.kyruus.com
doctors.thephqc.org
unitypoint-fortdodge.customer.kyruus.com
imperva.com
support.kyruus.com
uab.customer.kyruus.com
corp.portal.qdoba.com
imperva.com
*.security.kyruus.com
uab.customer.kyruus.com
chickentreat.craveable.support
unitypoint-grinnell.customer.kyruus.com
test.kyruus.com
corp.portal.qdoba.com
statuspage.io
doctors.unitypoint.org
uhs-vhs.customer.kyruus.com
doctors.coxhealth.com
unitypoint.customer.kyruus.com
*.kyruus.com
northbay.customer.kyruus.com
statuspage.io
doctors.myhfn.org
unitypoint.customer.kyruus.com
doctors.thephqc.org
corp.portal.qdoba.com
adventist.customer.kyruus.com
chickentreat.craveable.support
orthoatlanta.customer.kyruus.com
2201yybo.customer.kyruus.com
nghs.customer.kyruus.com
prisma-peds.customer.kyruus.com
chickentreat.craveable.support
unitypoint-grinnell.customer.kyruus.com
corp.portal.qdoba.com
doctors.coxhealth.com
unitypoint-peoria.customer.kyruus.com
imperva.com
statuspage.io
chickentreat.craveable.support
chickentreat.craveable.support
saintlukes.customer.kyruus.com
imperva.com
unitypoint-quadcities.customer.kyruus.com
uhs-summerlin.customer.kyruus.com
statuspage.io
bellin.customer.kyruus.com
uhs-valleyhospital.customer.kyruus.com
test.kyruus.com
uhs-mmh.customer.kyruus.com
secure0017.hubspot.com
corp.portal.qdoba.com
scheduling-sentry.kyruus.com
support.kyruus.com
statuspage.io
*.phi.kyruus.com
chickentreat.craveable.support
chickentreat.craveable.support
medicos.christianacare.org
statuspage.io
*.kyruus.com
saintlukes.customer.kyruus.com
secure0017.hubspot.com
secure0017.hubspot.com
fsus-20.freshservice.com
overlake.customer.kyruus.com
*.kyruus.com
unitypoint.customer.kyruus.com
corp.portal.qdoba.com
email.mg.kyruus.com
corp.portal.qdoba.com
secure0017.hubspot.com
corp.portal.qdoba.com
secure0017.hubspot.com
corp.portal.qdoba.com
*.customer.kyruus.com
imperva.com
unitypoint-cedarrapids.customer.kyruus.com
statuspage.io
chickentreat.craveable.support
chickentreat.craveable.support
chickentreat.craveable.support
*.customer.kyruus.com
unitypoint-waterloo.customer.kyruus.com
secure0017.hubspot.com
chickentreat.craveable.support
*.kyruus.com
imperva.com
doctors.coxhealth.com
imperva.com
doctors.palmettohealth.org
imperva.com
secure0017.hubspot.com
www.kyruus.com
doctors.lgh.org
imperva.com
doctors.ghs.org
statuspage.io
nghs-ngpg.customer.kyruus.com
uhs-edinburghchildrens.customer.kyruus.com
doctors.thephqc.org
unitypoint-fortdodge.customer.kyruus.com
imperva.com
support.kyruus.com
uab.customer.kyruus.com
corp.portal.qdoba.com
imperva.com
*.security.kyruus.com
uab.customer.kyruus.com
chickentreat.craveable.support
unitypoint-grinnell.customer.kyruus.com
test.kyruus.com
corp.portal.qdoba.com
statuspage.io
doctors.unitypoint.org
uhs-vhs.customer.kyruus.com
doctors.coxhealth.com
unitypoint.customer.kyruus.com
*.kyruus.com
northbay.customer.kyruus.com
statuspage.io
doctors.myhfn.org
unitypoint.customer.kyruus.com
doctors.thephqc.org
corp.portal.qdoba.com
adventist.customer.kyruus.com
chickentreat.craveable.support
orthoatlanta.customer.kyruus.com
2201yybo.customer.kyruus.com
nghs.customer.kyruus.com
prisma-peds.customer.kyruus.com
chickentreat.craveable.support
unitypoint-grinnell.customer.kyruus.com
corp.portal.qdoba.com
doctors.coxhealth.com
unitypoint-peoria.customer.kyruus.com
imperva.com
statuspage.io
chickentreat.craveable.support
chickentreat.craveable.support
saintlukes.customer.kyruus.com
imperva.com
unitypoint-quadcities.customer.kyruus.com
uhs-summerlin.customer.kyruus.com
statuspage.io
bellin.customer.kyruus.com
uhs-valleyhospital.customer.kyruus.com
test.kyruus.com
uhs-mmh.customer.kyruus.com
secure0017.hubspot.com
corp.portal.qdoba.com
scheduling-sentry.kyruus.com
support.kyruus.com
statuspage.io
*.phi.kyruus.com
chickentreat.craveable.support
chickentreat.craveable.support
medicos.christianacare.org
statuspage.io
*.kyruus.com
saintlukes.customer.kyruus.com
secure0017.hubspot.com
secure0017.hubspot.com
fsus-20.freshservice.com
overlake.customer.kyruus.com
*.kyruus.com
unitypoint.customer.kyruus.com
corp.portal.qdoba.com
email.mg.kyruus.com
corp.portal.qdoba.com
secure0017.hubspot.com
corp.portal.qdoba.com
secure0017.hubspot.com
corp.portal.qdoba.com
Certificate
The complete raw certificate details for unitypoint-waterloo.customer.kyruus.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgIQCrt1myNX5kPDRQW8XD1irDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDAyMjAwMDAwMDBaFw0yMTAzMjAx MjAwMDBaMDIxMDAuBgNVBAMTJ3VuaXR5cG9pbnQtd2F0ZXJsb28uY3VzdG9tZXIu a3lydXVzLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJxWzLi6 PmJIb+SW24JqqR7qDlwizwb3yr1Im17E2nSOSTdDeoV1dRlCgc/zQoZsMwnRbdSa UCu1H9k1p3rdYaIWW2aDvicrX5Sx7yJvFvwb8xBeYuy43MDGXk3BnPG1wtu97R82 FXfpcJ7miMtRGWSKNBmgVZ7cBum/NmmiVTKv9j2Zh/5FAcMBop6e3YjdNJ767IJf mVz3MggEvdFIUK+LZ7RtbWVstaFbI1DWQxcusWjgsQH7+n2TYIV4xz0xlXNBUGao Bi6yETm6ks53uIvnbl33mAG4nAEnXEwPzmP47YzL1M7PL4qJuw8CGAZPKLdN6sA4 yZt/J3yjw0va0Y8CAwEAAaOCAbkwggG1MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyj lAcnlnRb+T3QMB0GA1UdDgQWBBTT95mj2QJizn3G5MERrEQNKMvk8jBLBgNVHREE RDBCgid1bml0eXBvaW50LXdhdGVybG9vLmN1c3RvbWVyLmt5cnV1cy5jb22CF3dh dGVybG9vLnVuaXR5cG9pbnQub3JnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2Ny bC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3JsMCAGA1UdIAQZMBcwCwYJ YIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGG IWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYq aHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1Ud EwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEB AD0oqvEa6YSxQB0wqzsFe0UO6opoCdIh4wYYSpZTRx0GBLJDg52dd5yBvnVGkQ+Y M//OgaDchpQAAJ6u1z02r6DAZNy0iSbayeelf/prKFiqyed0uUzkhxvK1q3cNhVO TR6BvxGVsIIPYjj49XaBElAP8K9682hUGtVfq9K8ap7lj1ocsLJqrF8F5d7YuZsV xjkBg8T0moZmcsre8OSLnJWzqGbnwT+Y8yQhWbKzgdugNq5fPfDncOvg8j0haOk5 fNc2kV9UQUGOPDYXKXtZUf1p1rd1QdR0T36wMx5rrq3xTRfOF78MXbF5pKA+tQGq Sfr8th+kKT+w8dfx5kwy2dA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFbMuLo+Ykhv5Jbbgmqp HuoOXCLPBvfKvUibXsTadI5JN0N6hXV1GUKBz/NChmwzCdFt1JpQK7Uf2TWnet1h ohZbZoO+JytflLHvIm8W/BvzEF5i7LjcwMZeTcGc8bXC273tHzYVd+lwnuaIy1EZ ZIo0GaBVntwG6b82aaJVMq/2PZmH/kUBwwGinp7diN00nvrsgl+ZXPcyCAS90UhQ r4tntG1tZWy1oVsjUNZDFy6xaOCxAfv6fZNghXjHPTGVc0FQZqgGLrIRObqSzne4 i+duXfeYAbicASdcTA/OY/jtjMvUzs8viom7DwIYBk8ot03qwDjJm38nfKPDS9rR jwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14265624803622227736332324261934752428 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-20 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'unitypoint-waterloo.customer.kyruus.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19735978098949502982569342586944427245282345493217177366650726767581471473108852794868529032397681527618290019235816758941485828369974180266005782097047813889233188631527024115522964710451709575568834055230972851872023407642365047954513183229196391475905150191085177259742674197437402589609417120449408321779716924943389996701928837770936563012234379233036952283859951914860391886360584436246225788280466907187619763169378178104970419376574477391831180956541016912993712206144651565387021808949090883487626595996362775950696028605931761504618808201382975899769221464493655396436053660852177431943061954617100212031887 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d3f799a3d90262ce7dc6e4c111ac440d28cbe4f2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unitypoint-waterloo.customer.kyruus.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'waterloo.unitypoint.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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