citrix.livenation.com
Issued by Amazon
About this certificate
This digital certificate with serial number 05:6e:6e:de:c4:93:ab:3f:af:09:70:03:02:5e:9a:b5 was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=citrix.livenation.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:6e:6e:de:c4:93:ab:3f:af:09:70:03:02:5e:9a:b5Serial Number (int): 7219541347909472973980136563441310389
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 66:c3:ab:b8:02:0e:f0:99:9a:7a:78:f3:7d:f9:90:ab:74:a3:9b:82
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 08:06:02:87:53:72:9e:f5:c1:0c:ab:2f:56:73:21:21:c7:e7:89:39
Fingerprint (sha256): 02:e4:9e:6f:40:bf:39:ed:e2:50:41:76:bc:1d:e1:01:77:fd:76:30:e5:be:ab:be:b5:c5:f1:08:aa:9f:c5:07
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate citrix.livenation.com
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for citrix.livenation.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
citrix.livenation.com
abimm.livenation.com
clubapps.livenation.com
tmss.lyv.livenation.com
planning2.lyv.livenation.com
planning.lyv.livenation.com
ica.lyv.livenation.com
abimm.livenation.com
clubapps.livenation.com
tmss.lyv.livenation.com
planning2.lyv.livenation.com
planning.lyv.livenation.com
ica.lyv.livenation.com
Other certificates including the domain name livenation.com
(limited to 100 certificates)
dns-vetting1b.map.fastly.net
e.ssl.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
ticketmaster4.map.fastly.net
www.maestro.io
help.ticketmaster.ch
ravpn.ticketmaster.com
splash.sponsorship.livenation.com
dns-vetting1b.map.fastly.net
a.livenation.com
dm-sfmc.livenation.com
dev.confluence.livenation.com
dns-vetting1b.map.fastly.net
citrix.livenation.com
www.maestro.io
lnecsecure.livenation.com
dns-vetting1j.map.fastly.net
www.maestro.io
beourguest.livenation.com
image.20210419.195922.s4.et.yellsatcloud.com
www.maestro.io
dns-vetting1e.map.fastly.net
dns-vetting1j.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
branch.livenation.com
auth.livenation.com
dns-vetting1b.map.fastly.net
cppm1-phx.livenation.com
dns-vetting2.map.fastly.net
image.20210419.195922.s4.et.yellsatcloud.com
www.maestro.io
dns-vetting1j.map.fastly.net
hob.shop.livenation.com
euw1wuipath01.lyv.livenation.com
dns-vetting1-jeffg-noah.map.fastly.net
dns-vetting1j.map.fastly.net
dev.mas.livenation.com
dns-vetting1-jeffg-noah.map.fastly.net
queue.ticketmaster.com
ticketmaster5.map.fastly.net
akamai-san28.exacttarget.com
dns-vetting1b.map.fastly.net
use1wbpcapt01.lyv.livenation.com
dns-vetting1-jeffg-noah.map.fastly.net
san-1-s4.tlsprovisioning.exacttarget.com
dns-vetting1b.map.fastly.net
*.e.ssl.fastly.net
ticketmaster.map.fastly.net
dns-vetting1b.map.fastly.net
ticketmaster4.map.fastly.net
dns-vetting1b.map.fastly.net
apps.mas.livenation.com
*.livenation.com
mail.livenation.com.au
qa.mas.livenation.com
ticketmaster6.map.fastly.net
*.e.ssl.fastly.net
dns-vetting1j.map.fastly.net
click.premium.livenation.com
*.livenation.com
*.beta.livenation.com
dns-vetting1-jeffg-noah.map.fastly.net
help.ticketmaster.ch
legacyweb.lyv.livenation.com
dns-vetting1b.map.fastly.net
beyonce.livenation.com
dns-vetting2.map.fastly.net
dns-vetting1j.map.fastly.net
zabbix.lyv.livenation.com
ebsuat.lyv.livenation.com
*.e.ssl.fastly.net
www.maestro.io
creative.livenation.com
dns-vetting2.map.fastly.net
splash.sponsorship.livenation.com
ticketmaster4.map.fastly.net
ticketrequest.livenation.com
dns-vetting1j.map.fastly.net
ticketmaster4.map.fastly.net
www.maestro.io
dns-vetting1-jeffg-noah.map.fastly.net
m.concerts.livenation.com
ticketmaster6.map.fastly.net
ticketmaster6.map.fastly.net
ticketmaster5.map.fastly.net
bpc10test.lyv.livenation.com
survey3.livenation.com
view.email.livenation.com
splashbi-prd.lyv.livenation.com
applaud.livenation.com
support.livenation.com
dev.jira.livenation.com
ticketmaster4.map.fastly.net
image.20210419.195922.s4.et.yellsatcloud.com
dns-vetting1-jeffg-noah.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
ticketmaster6.map.fastly.net
dns-vetting1b.map.fastly.net
ticketmaster4.map.fastly.net
contegixapp1.livenation.com
e.ssl.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
ticketmaster4.map.fastly.net
www.maestro.io
help.ticketmaster.ch
ravpn.ticketmaster.com
splash.sponsorship.livenation.com
dns-vetting1b.map.fastly.net
a.livenation.com
dm-sfmc.livenation.com
dev.confluence.livenation.com
dns-vetting1b.map.fastly.net
citrix.livenation.com
www.maestro.io
lnecsecure.livenation.com
dns-vetting1j.map.fastly.net
www.maestro.io
beourguest.livenation.com
image.20210419.195922.s4.et.yellsatcloud.com
www.maestro.io
dns-vetting1e.map.fastly.net
dns-vetting1j.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
branch.livenation.com
auth.livenation.com
dns-vetting1b.map.fastly.net
cppm1-phx.livenation.com
dns-vetting2.map.fastly.net
image.20210419.195922.s4.et.yellsatcloud.com
www.maestro.io
dns-vetting1j.map.fastly.net
hob.shop.livenation.com
euw1wuipath01.lyv.livenation.com
dns-vetting1-jeffg-noah.map.fastly.net
dns-vetting1j.map.fastly.net
dev.mas.livenation.com
dns-vetting1-jeffg-noah.map.fastly.net
queue.ticketmaster.com
ticketmaster5.map.fastly.net
akamai-san28.exacttarget.com
dns-vetting1b.map.fastly.net
use1wbpcapt01.lyv.livenation.com
dns-vetting1-jeffg-noah.map.fastly.net
san-1-s4.tlsprovisioning.exacttarget.com
dns-vetting1b.map.fastly.net
*.e.ssl.fastly.net
ticketmaster.map.fastly.net
dns-vetting1b.map.fastly.net
ticketmaster4.map.fastly.net
dns-vetting1b.map.fastly.net
apps.mas.livenation.com
*.livenation.com
mail.livenation.com.au
qa.mas.livenation.com
ticketmaster6.map.fastly.net
*.e.ssl.fastly.net
dns-vetting1j.map.fastly.net
click.premium.livenation.com
*.livenation.com
*.beta.livenation.com
dns-vetting1-jeffg-noah.map.fastly.net
help.ticketmaster.ch
legacyweb.lyv.livenation.com
dns-vetting1b.map.fastly.net
beyonce.livenation.com
dns-vetting2.map.fastly.net
dns-vetting1j.map.fastly.net
zabbix.lyv.livenation.com
ebsuat.lyv.livenation.com
*.e.ssl.fastly.net
www.maestro.io
creative.livenation.com
dns-vetting2.map.fastly.net
splash.sponsorship.livenation.com
ticketmaster4.map.fastly.net
ticketrequest.livenation.com
dns-vetting1j.map.fastly.net
ticketmaster4.map.fastly.net
www.maestro.io
dns-vetting1-jeffg-noah.map.fastly.net
m.concerts.livenation.com
ticketmaster6.map.fastly.net
ticketmaster6.map.fastly.net
ticketmaster5.map.fastly.net
bpc10test.lyv.livenation.com
survey3.livenation.com
view.email.livenation.com
splashbi-prd.lyv.livenation.com
applaud.livenation.com
support.livenation.com
dev.jira.livenation.com
ticketmaster4.map.fastly.net
image.20210419.195922.s4.et.yellsatcloud.com
dns-vetting1-jeffg-noah.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
ticketmaster6.map.fastly.net
dns-vetting1b.map.fastly.net
ticketmaster4.map.fastly.net
contegixapp1.livenation.com
Certificate
The complete raw certificate details for citrix.livenation.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIQBW5u3sSTqz+vCXADAl6atTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA3MTIwMDAwMDBaFw0yMDA4MTIx MjAwMDBaMCAxHjAcBgNVBAMTFWNpdHJpeC5saXZlbmF0aW9uLmNvbTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALDajFOWBlTGtDVIdRzHZi4f332qxmXk 3xskDwc84DGy6ZfgCiFtPMeNdWpCNbzUICIJjx21DzhZstRLOQPbgZwKOIeYA7Is x73wGtGbEv9h+86L3KnLr5BxHNDQ9d5dr9kzpgKwTRrZB7RlQNlaHunivwYKQx2n XKGHmkEJ0Lim2IBaSHb+shGyftXiRkVJZNY5XzFA/gysj5/13cfmQ5yfPNF1jBSf ddCfS2awFqLR6eEXRQgXQO2mlyaSzw8hVyPHbN3w2JqBvRrRx9DKraR9splNEV2P VZhnjzD2hW6I38y1CX3Ax9hERyTiiWackZ8P1UbkFqPm9qb4XFsCWdMCAwEAAaOC AiwwggIoMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQW BBRmw6u4Ag7wmZp6ePN9+ZCrdKObgjCBvQYDVR0RBIG1MIGyghVjaXRyaXgubGl2 ZW5hdGlvbi5jb22CFGFiaW1tLmxpdmVuYXRpb24uY29tghdjbHViYXBwcy5saXZl bmF0aW9uLmNvbYIXdG1zcy5seXYubGl2ZW5hdGlvbi5jb22CHHBsYW5uaW5nMi5s eXYubGl2ZW5hdGlvbi5jb22CG3BsYW5uaW5nLmx5di5saXZlbmF0aW9uLmNvbYIW aWNhLmx5di5saXZlbmF0aW9uLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9j cmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDAgBgNVHSAEGTAXMAsG CWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzAB hiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKG Kmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNV HRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAjoCCPATv11aH79kWpzjJZMEHZR2Wj8RjedwSWSzWUX7RHm04HOJLhT7htVxuB qSDj3UnDk8qriSQrxxHu7r703AqpMb7qJbEA5bkTYYCKQymmDtaYiDZJRUSXtzmW HDwlKC7q/x4tT9yKg7J0SH8WIKp0LQYvxxyFFUUOsGGw5qj778+CumpmhIWoTrGD znP8As6X2jm6jQknCJ9TDB5YETUQ0FkSVfux7gAtp9hrw/aq7ZPqMjotphZuZlU7 xpqHtEIELLyFD8VBsV2O4zt3V4DAnoLt4sUqgGapGOn9tjGBwEKO2J+upI5nYgLy 2NrbPrwYt0/o6zcnpNODOlof -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNqMU5YGVMa0NUh1HMdm Lh/ffarGZeTfGyQPBzzgMbLpl+AKIW08x411akI1vNQgIgmPHbUPOFmy1Es5A9uB nAo4h5gDsizHvfAa0ZsS/2H7zovcqcuvkHEc0ND13l2v2TOmArBNGtkHtGVA2Voe 6eK/BgpDHadcoYeaQQnQuKbYgFpIdv6yEbJ+1eJGRUlk1jlfMUD+DKyPn/Xdx+ZD nJ880XWMFJ910J9LZrAWotHp4RdFCBdA7aaXJpLPDyFXI8ds3fDYmoG9GtHH0Mqt pH2ymU0RXY9VmGePMPaFbojfzLUJfcDH2ERHJOKJZpyRnw/VRuQWo+b2pvhcWwJZ 0wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7219541347909472973980136563441310389 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-12 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'citrix.livenation.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22325711783646231370646675444731465067523616318975675886964303451019438169650971595031873885359521403508851924656183789160738088274786498197405405840282145247035122569659896161590074408070334554157837789683284696489878814635146419692055368027741510286338665061721015084058379368737520734244712544262220223574202774746029019061614210152683241946926895290151722497797606704440283154981530680124423778165359151989790573615416434929007649863559954798885593092805358305001907813534585246180273868967266534261701241507926771268161087314249540708491842823101823793118052090074786813748385474023348780276946239969194898774483 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 66c3abb8020ef0999a7a78f37df990ab74a39b82 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (181 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'citrix.livenation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'abimm.livenation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clubapps.livenation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmss.lyv.livenation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'planning2.lyv.livenation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'planning.lyv.livenation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ica.lyv.livenation.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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