lightstep.pub-tmaws.io
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:60:94:08:f2:71:8a:94:f0:c2:a0:29:3e:e3:07:d0 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=lightstep.pub-tmaws.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:60:94:08:f2:71:8a:94:f0:c2:a0:29:3e:e3:07:d0Serial Number (int): 19110654944887441662752994894857570256
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d1:b2:84:b9:f9:a1:42:3f:81:f3:ed:44:a2:bc:bd:20:2b:ed:39:40
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): e7:f6:c2:ac:8f:a0:75:57:13:6a:73:3b:5a:31:d8:d5:05:15:da:80
Fingerprint (sha256): 03:74:be:d4:2e:2f:ee:b8:7f:63:6b:f3:28:02:10:75:3c:bd:8b:22:e1:36:5a:42:72:15:ad:66:71:ad:f6:21
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate lightstep.pub-tmaws.io
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lightstep.pub-tmaws.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lightstep.pub-tmaws.io
*.lightstep.pub-tmaws.io
*.lightstep.pub-tmaws.io
Other certificates including the domain name pub-tmaws.io
(limited to 100 certificates)
*.preprod.cdneng.pub-tmaws.io
paymentwebhook-preprod.pub-tmaws.io
preprod-us-east-1.checkout.pub-tmaws.io
hobbes2385-preprod.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
dns-vetting1-marita-ardnek.map.fastly.net
*.identity.pub-tmaws.io
fee-adapter.prod1.ismds.pub-tmaws.io
maps.pub-tmaws.io
lightstep.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
app.privacy-core.prod.us-east-1.pub-tmaws.io
privacy-core.prod.us-east-1.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
ticketmaster5.map.fastly.net
preprode1-us-east-1-kinesis-proxy.checkout.pub-tmaws.io
ticketmaster.map.fastly.net
dns-vetting1-marita-ardnek.map.fastly.net
*.tmone.pub-tmaws.io
ticketmaster5.map.fastly.net
ticketmaster5.map.fastly.net
dc-redeem-staging.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
dns-vetting1-marita-ardnek.map.fastly.net
presence.tmaws.io
stagee1-us-east-1-kinesis-proxy.checkout.pub-tmaws.io
ticketmaster5.map.fastly.net
presence.preprod.pub-tmaws.io
*.accounts.pub-tmaws.io
fee-adapter.prod1.ismds.pub-tmaws.io
apis.blox.preprod9.us-east-1.pub-tktm.io
supermaps.preprod.us-east-1.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
dns-vetting1-marita-ardnek.map.fastly.net
*.comedystophelsinki.fi
app.rt.us-east-1.preprod.pub-tmaws.io
socketspxy.tmone.pub-tmaws.io
supermaps.prod.us-east-1.pub-tmaws.io
ism.ticketmaster.com
dns-vetting1-marita-ardnek.map.fastly.net
*.accounts.pub-tmaws.io
privacy-core.preprod.us-east-1.pub-tmaws.io
ticketmaster5.map.fastly.net
ticketmaster5.map.fastly.net
app.ism.rt.us-east-1.preprod.pub-tmaws.io
titan.pub-tmaws.io
app.ism.rt.us-east-1.pub-tmaws.io
pxy.tmx.prod.pub-tmaws.io
dias.pub-tmaws.io
availability-staging.prod-tmaws.io
presence.tmaws.io
prod1-us-east-1.purchase-api.pub-tmaws.io
ticketmaster.map.fastly.net
prd2524.pay-with-points-widget.prod1.pub-tmaws.io
tm1sales.tmaws.io
presence.preprod.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
ls.collector.pub-tmaws.io
presto.prod1.pub-tmaws.io
*.identity.pub-tmaws.io
davettest35.pub-tmaws.io
pxy.tmx.preprod.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
dcgsp-booking.prod1.prod-tmaws.io
pxy.tmx.preprod.pub-tmaws.io
ticketmaster5.map.fastly.net
*.accounts.pub-tmaws.io
*.io-media.com
ticketmaster5.map.fastly.net
*.tmone.pub-tmaws.io
fb.pub-tmaws.io
storage.prod.pub-tmaws.io
privacy-core.dev.prd2293.us-east-1.pub-tmaws.io
*.accounts.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
dcgsp-booking.preprod1.pub-tmaws.io
anthonyfermin.com
ticketmaster5.map.fastly.net
presence.preprod.us-east-1.pub-tmaws.io
dc-redeem-prod.pub-tmaws.io
titan.pub-tmaws.io
us-east-1.prod.openticketing.pub-tmaws.io
ticketmaster5.map.fastly.net
api.preprod.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
cs-tools.pub-tmaws.io
api.pub-tmaws.io
onboarding.pub-tmaws.io
engagement.ticketmaster.com
dns-vetting1-marita-ardnek.map.fastly.net
privacy-core.qa.us-east-1.pub-tmaws.io
partner-onboarding.tmdc.us
fee-adapter.prod1.ismds.pub-tmaws.io
dcfd-preprod.pub-tmaws.io
stagee1-us-east-1.checkout.pub-tmaws.io
ism.ticketmaster.com
dcfd-preprod.prod-tmaws.io
presence.tmaws.io
clientapptct.ticketmaster.com
dns-vetting1-marita-ardnek.map.fastly.net
paymentwebhook-preprod.pub-tmaws.io
preprod-us-east-1.checkout.pub-tmaws.io
hobbes2385-preprod.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
dns-vetting1-marita-ardnek.map.fastly.net
*.identity.pub-tmaws.io
fee-adapter.prod1.ismds.pub-tmaws.io
maps.pub-tmaws.io
lightstep.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
app.privacy-core.prod.us-east-1.pub-tmaws.io
privacy-core.prod.us-east-1.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
ticketmaster5.map.fastly.net
preprode1-us-east-1-kinesis-proxy.checkout.pub-tmaws.io
ticketmaster.map.fastly.net
dns-vetting1-marita-ardnek.map.fastly.net
*.tmone.pub-tmaws.io
ticketmaster5.map.fastly.net
ticketmaster5.map.fastly.net
dc-redeem-staging.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
dns-vetting1-marita-ardnek.map.fastly.net
presence.tmaws.io
stagee1-us-east-1-kinesis-proxy.checkout.pub-tmaws.io
ticketmaster5.map.fastly.net
presence.preprod.pub-tmaws.io
*.accounts.pub-tmaws.io
fee-adapter.prod1.ismds.pub-tmaws.io
apis.blox.preprod9.us-east-1.pub-tktm.io
supermaps.preprod.us-east-1.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
dns-vetting1-marita-ardnek.map.fastly.net
*.comedystophelsinki.fi
app.rt.us-east-1.preprod.pub-tmaws.io
socketspxy.tmone.pub-tmaws.io
supermaps.prod.us-east-1.pub-tmaws.io
ism.ticketmaster.com
dns-vetting1-marita-ardnek.map.fastly.net
*.accounts.pub-tmaws.io
privacy-core.preprod.us-east-1.pub-tmaws.io
ticketmaster5.map.fastly.net
ticketmaster5.map.fastly.net
app.ism.rt.us-east-1.preprod.pub-tmaws.io
titan.pub-tmaws.io
app.ism.rt.us-east-1.pub-tmaws.io
pxy.tmx.prod.pub-tmaws.io
dias.pub-tmaws.io
availability-staging.prod-tmaws.io
presence.tmaws.io
prod1-us-east-1.purchase-api.pub-tmaws.io
ticketmaster.map.fastly.net
prd2524.pay-with-points-widget.prod1.pub-tmaws.io
tm1sales.tmaws.io
presence.preprod.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
ls.collector.pub-tmaws.io
presto.prod1.pub-tmaws.io
*.identity.pub-tmaws.io
davettest35.pub-tmaws.io
pxy.tmx.preprod.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
dcgsp-booking.prod1.prod-tmaws.io
pxy.tmx.preprod.pub-tmaws.io
ticketmaster5.map.fastly.net
*.accounts.pub-tmaws.io
*.io-media.com
ticketmaster5.map.fastly.net
*.tmone.pub-tmaws.io
fb.pub-tmaws.io
storage.prod.pub-tmaws.io
privacy-core.dev.prd2293.us-east-1.pub-tmaws.io
*.accounts.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
dcgsp-booking.preprod1.pub-tmaws.io
anthonyfermin.com
ticketmaster5.map.fastly.net
presence.preprod.us-east-1.pub-tmaws.io
dc-redeem-prod.pub-tmaws.io
titan.pub-tmaws.io
us-east-1.prod.openticketing.pub-tmaws.io
ticketmaster5.map.fastly.net
api.preprod.pub-tmaws.io
dns-vetting1-marita-ardnek.map.fastly.net
cs-tools.pub-tmaws.io
api.pub-tmaws.io
onboarding.pub-tmaws.io
engagement.ticketmaster.com
dns-vetting1-marita-ardnek.map.fastly.net
privacy-core.qa.us-east-1.pub-tmaws.io
partner-onboarding.tmdc.us
fee-adapter.prod1.ismds.pub-tmaws.io
dcfd-preprod.pub-tmaws.io
stagee1-us-east-1.checkout.pub-tmaws.io
ism.ticketmaster.com
dcfd-preprod.prod-tmaws.io
presence.tmaws.io
clientapptct.ticketmaster.com
dns-vetting1-marita-ardnek.map.fastly.net
Certificate
The complete raw certificate details for lightstep.pub-tmaws.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEnDCCA4SgAwIBAgIQDmCUCPJxipTwwqApPuMH0DANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDAyMjQwMDAwMDBaFw0yMTAzMjQx MjAwMDBaMCExHzAdBgNVBAMTFmxpZ2h0c3RlcC5wdWItdG1hd3MuaW8wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV/QGvmj7LSprX3ZxNkUhOKbB6ZQfa mLqxadnXl2E/Djfk0ALPLmXvYOEnQD6ZiG3PRdE3blczvv1hLon6UnMpsZmwmTF6 ZIqtlsuzjOZ12X352nVLweMQLj4/7EXAhcmUjySVYLgJiMAelX23L9MGgY05d0aR EvVDSXJZLvcIlmBsYACmYhF2cEVvaB06Vj+tlMPaqbtF0oyjFDItOaR3efXRpJTz 8Mfsnu2IwjoorI1Xv1zTlvrY14f4QCOfoFqUZFRCXFJY7mQaEoM30tPy9eybWMlG yqSAaQlmRBdFfkHmRYrrKjJpJXDEd1RSRSe0UYvuHcaccx86b0WF3n8PAgMBAAGj ggGpMIIBpTAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4E FgQU0bKEufmhQj+B8+1Eory9ICvtOUAwOwYDVR0RBDQwMoIWbGlnaHRzdGVwLnB1 Yi10bWF3cy5pb4IYKi5saWdodHN0ZXAucHViLXRtYXdzLmlvMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAw oC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3Js MCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcBAQRp MGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNv bTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20v c2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJ KoZIhvcNAQELBQADggEBAAxGZKurrE7ZUuag7M7OqAcCE7VnpeLBUBRBeBELJLgX jKjRILy0eTE1z1iJjZku9MxkdO1Tz+GnjTWR8CHiI38OxK6XwbCordBM+1qIShxm Zu/zQEh1V1E4r80ER+LjgsS7tGvuHYFeFat2i2jmbqSYS2U6676lmCVKifO8aHN3 /fY6cKFWDDXIoMCKp/Ux4zGs4nJLwpofj7MYWnYiMDaAcHbu1K/y0kU7R3rUb4qw A4VCOOSAzmgfU94974XwGA0fJPvmUleUCJJBNJ8LT92lRDtS9TTMlwDGEZ+3mhbZ vKniMkfy45BryRgE3Q5IV/dUlR0LtLBekx55Z4sL+ec= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1f0Br5o+y0qa192cTZFI TimwemUH2pi6sWnZ15dhPw435NACzy5l72DhJ0A+mYhtz0XRN25XM779YS6J+lJz KbGZsJkxemSKrZbLs4zmddl9+dp1S8HjEC4+P+xFwIXJlI8klWC4CYjAHpV9ty/T BoGNOXdGkRL1Q0lyWS73CJZgbGAApmIRdnBFb2gdOlY/rZTD2qm7RdKMoxQyLTmk d3n10aSU8/DH7J7tiMI6KKyNV79c05b62NeH+EAjn6BalGRUQlxSWO5kGhKDN9LT 8vXsm1jJRsqkgGkJZkQXRX5B5kWK6yoyaSVwxHdUUkUntFGL7h3GnHMfOm9Fhd5/ DwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19110654944887441662752994894857570256 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-24 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lightstep.pub-tmaws.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27013521155145623083970425639384898084272799679505393326613057187796165553727990066604151549300884538145730245359694626937063115395335803298756609526511433959052229323739553232709198199819642049408850018933879614167342756329397862296647607044942692988879968888399109288536681877112669082036858051421457278156770336817793135502962744931413623383384601923853031415766912148019505900982015547108035957605192444213867489144261619036958601290691284723713737783152420104030634844418980658004380458348888898938767637031484617571928497161844160586262591844787332146846417987172097551118527209916862708788005139646929728077583 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d1b284b9f9a1423f81f3ed44a2bcbd202bed3940 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lightstep.pub-tmaws.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lightstep.pub-tmaws.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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