graph.windows.net
Issued by Microsoft IT SSL SHA2
About this certificate
This digital certificate with serial number 5a:00:04:71:fb:08:4b:20:a3:a6:37:a5:da:00:01:00:04:71:fb was issued on by Microsoft Corporation.
With 53 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=graph.windows.net
Microsoft Corporation
Organization:
Microsoft Corporation
Organization unit: Microsoft IT
Organization unit: Microsoft IT
State / Province:
Washington
Locality: Redmond
Country: US
Locality: Redmond
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 5a:00:04:71:fb:08:4b:20:a3:a6:37:a5:da:00:01:00:04:71:fbSerial Number (int): 2007068580503422013170181816355017482008031739
Serial Number lenght: 151 bits, 19 octets
SubjectKeyId: 23:4d:08:79:57:23:bf:98:4d:0a:c3:3f:fa:25:e5:51:4d:5c:89:71
AuthorityKeyId: 51:af:24:26:9c:f4:68:22:57:80:26:2b:3b:46:62:15:7b:1e:cc:a5
Fingerprint (sha1): 4b:89:35:9d:7c:42:36:6f:b1:0b:a0:32:d9:08:a4:97:40:9e:e0:c1
Fingerprint (sha256): 03:79:9b:f5:af:c5:6e:36:87:93:8d:3c:ad:1b:ed:95:43:4e:26:44:e3:03:4b:27:8c:a8:38:f2:3e:eb:53:2c
Issuing Certificate URL: http://www.microsoft.com/pki/mscorp/msitwww2.crt
Revocation information
OCSP Server: http://ocsp.msocsp.comCRL Distribution Point: http://mscrl.microsoft.com/pki/mscorp/crl/msitwww2.crl
CRL Distribution Point: http://crl.microsoft.com/pki/mscorp/crl/msitwww2.crl
Check the revocation status for certificate graph.windows.net
53
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for graph.windows.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
graph.windows.net
graphstore.windows.net
login.windows.net
graph.ppe.windows.net
password.ccsctp.com
passwordreset.microsoftonline.com
login.microsoftonline-p.com
*.windows-ppe.net
aadg.windows.net
cpim.windows.net
*.cpim.windows.net
directoryproxy.ppe.windows.net
directoryproxy.windows.net
login.microsoftonline.com
companymanager.ccsctp.com
companymanager.microsoftonline.com
sts.windows.net
pas.windows-ppe.net
pas.windows.net
becws.ccsctp.com
provisioning.microsoftonline.com
*.accesscontrol.windows.net
*.accesscontrol.windows-ppe.net
microsoftaik.azure.net
*.microsoftaik.azure.net
microsoftaik-int.azure-int.net
*.microsoftaik-int.azure-int.net
device.login.microsoftonline.com
api.password.ccsctp.com
api.passwordreset.microsoftonline.com
device.login.windows-ppe.net
aadgv6.windows.net
aadgv6.ppe.windows.net
login.microsoft.com
login.microsoft-ppe.com
login.live-int.com
login.live.com
xml.login.live-int.com
xml.login.live.com
account.live.com
account.live-int.com
signup.live.com
signup.live-int.com
login-us.microsoftonline.com
clientconfig.microsoftonline-p.net
clientconfig.microsoftonline-p-int.net
logincert.microsoftonline-int.com
logincert.microsoftonline.com
autologon.microsoftazuread-sso.com
passwordreset.activedirectory.windowsazure.us
login.microsoftonline-pst.com
nexus.microsoftonline-p-int.com
nexus.microsoftonline-p.com
graphstore.windows.net
login.windows.net
graph.ppe.windows.net
password.ccsctp.com
passwordreset.microsoftonline.com
login.microsoftonline-p.com
*.windows-ppe.net
aadg.windows.net
cpim.windows.net
*.cpim.windows.net
directoryproxy.ppe.windows.net
directoryproxy.windows.net
login.microsoftonline.com
companymanager.ccsctp.com
companymanager.microsoftonline.com
sts.windows.net
pas.windows-ppe.net
pas.windows.net
becws.ccsctp.com
provisioning.microsoftonline.com
*.accesscontrol.windows.net
*.accesscontrol.windows-ppe.net
microsoftaik.azure.net
*.microsoftaik.azure.net
microsoftaik-int.azure-int.net
*.microsoftaik-int.azure-int.net
device.login.microsoftonline.com
api.password.ccsctp.com
api.passwordreset.microsoftonline.com
device.login.windows-ppe.net
aadgv6.windows.net
aadgv6.ppe.windows.net
login.microsoft.com
login.microsoft-ppe.com
login.live-int.com
login.live.com
xml.login.live-int.com
xml.login.live.com
account.live.com
account.live-int.com
signup.live.com
signup.live-int.com
login-us.microsoftonline.com
clientconfig.microsoftonline-p.net
clientconfig.microsoftonline-p-int.net
logincert.microsoftonline-int.com
logincert.microsoftonline.com
autologon.microsoftazuread-sso.com
passwordreset.activedirectory.windowsazure.us
login.microsoftonline-pst.com
nexus.microsoftonline-p-int.com
nexus.microsoftonline-p.com
Other certificates including the domain name windows.net
(limited to 100 certificates)
tr522.westeurope1-a.worker.database.windows.net
ma.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-mwh-1e0d2a21-api.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
ams-ts05-1-hos-rest-1-1.cloudapp.net
enc.p.azurewebsites.windows.net
tr1225.southcentralus1-a.worker.database.windows.net
testonly.secretstore.windows.net
waws-prod-bay-55440bad.publish.p.azurewebsites.windows.net
readonly-tr4659.eastus1-a.worker.database.windows.net
waws-prod-bay-e21e34c0-api.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
tr1037.eastus1-a.worker.database.windows.net
*.store.core.windows.net
ams-ts46-1-hos-rest-1-1.cloudapp.net
metricsclient.geneva.core.windows.net
tr1075.westus2-a.worker.database.windows.net
*.blob.core.windows.net
*.sds-diagnostics.store.core.windows.net
waws-prod-am2-da5883af-api.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
waws-prod-am2-c0d608da-api.p.azurewebsites.windows.net
tr455.australiasoutheast1-a.worker.database.windows.net
waws-prod-blu-df231187.publish.p.azurewebsites.windows.net
waws-prod-bay-6f6e9dfa.state.p.azurewebsites.windows.net
waws-prod-hk1-8db07b87-api.p.azurewebsites.windows.net
tr1686.northeurope1-a.worker.database.windows.net
BN2B.agent.core.windows.net
metricsclient.geneva.core.windows.net
DM3.agent.core.windows.net
tr354.australiaeast1-a.control.database.windows.net
waws-prod-sy3-fb5d9039-api.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-ch1-3955dc27.publish.p.azurewebsites.windows.net
waws-prod-yt1-982c2880.publish.p.azurewebsites.windows.net
waws-prod-mwh-37f9bd5f.publish.p.azurewebsites.windows.net
waws-prod-am2-013.publish.azurewebsites.windows.net
tr469.australiaeast1-a.worker.database.windows.net
tr1348.westus1-a.worker.database.windows.net
waws-prod-bn1-009.state.azurewebsites.windows.net
tr409.westeurope1-a.worker.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-mwh-cbf02dd4.publish.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
3f7611921e87.database.windows.net
metricsclient.geneva.core.windows.net
testonly.secretstore.windows.net
cpim.windows.net
ams-ts61-1-hos-rest-1-1.cloudapp.net
40b5d28d821e.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-sy3-87a8eac9.state.p.azurewebsites.windows.net
waws-prod-pn1-e4d07c21.api.p.azurewebsites.windows.net
waws-prod-bn1-e45ca43e-api.p.azurewebsites.windows.net
*.blob.core.windows.net
testonly.secretstore.windows.net
gwpdctosf-d9afa021808b.worker.database.windows.net
testonly.secretstore.windows.net
tr976.centralus1-a.worker.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-am2-04f0829f.publish.p.azurewebsites.windows.net
waws-prod-db3-a4287263.api.p.azurewebsites.windows.net
waws-prod-am2-6c285c27.publish.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
*.stream-diagnostics.store.core.windows.net
testonly.secretstore.windows.net
SN3P.agent.core.windows.net
enc.p.azurewebsites.windows.net
tr832.australiaeast1-a.control.database.windows.net
enc.p.azurewebsites.windows.net
waws-prod-bay-a1bbcb3e-api.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-cw1-d3d1bfdf.publish.p.azurewebsites.windows.net
testonly.secretstore.windows.net
testonly.secretstore.windows.net
*.stream-diagnostics.store.core.windows.net
tr1419.centralus1-a.worker.database.windows.net
waws-prod-blu-96e6d8f2-api.p.azurewebsites.windows.net
waws-prod-blu-edf2d934-api.p.azurewebsites.windows.net
waws-prod-bn1-53f95518-api.p.azurewebsites.windows.net
uswest12.rnm.core.windows.net
tr16.southcentralus1-a.worker.database.windows.net
waws-prod-sn1-ea02b418-api.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
metricsclient.geneva.core.windows.net
waws-prod-sy3-24d1ce36.state.p.azurewebsites.windows.net
testonly.secretstore.windows.net
testonly.secretstore.windows.net
HK2.agent.core.windows.net
gwpdctosf-e77d764d22ff.worker.database.windows.net
waws-prod-am2-13bb9e6c.state.p.azurewebsites.windows.net
waws-prod-db3-92f298be.publish.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-bay-f5246b21.publish.p.azurewebsites.windows.net
tr165.ukwest1-a.worker.database.windows.net
testonly.secretstore.windows.net
tr277.australiasoutheast1-a.control.database.windows.net
metricsclient.geneva.core.windows.net
metricsclient.geneva.core.windows.net
ma.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-mwh-1e0d2a21-api.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
ams-ts05-1-hos-rest-1-1.cloudapp.net
enc.p.azurewebsites.windows.net
tr1225.southcentralus1-a.worker.database.windows.net
testonly.secretstore.windows.net
waws-prod-bay-55440bad.publish.p.azurewebsites.windows.net
readonly-tr4659.eastus1-a.worker.database.windows.net
waws-prod-bay-e21e34c0-api.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
tr1037.eastus1-a.worker.database.windows.net
*.store.core.windows.net
ams-ts46-1-hos-rest-1-1.cloudapp.net
metricsclient.geneva.core.windows.net
tr1075.westus2-a.worker.database.windows.net
*.blob.core.windows.net
*.sds-diagnostics.store.core.windows.net
waws-prod-am2-da5883af-api.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
waws-prod-am2-c0d608da-api.p.azurewebsites.windows.net
tr455.australiasoutheast1-a.worker.database.windows.net
waws-prod-blu-df231187.publish.p.azurewebsites.windows.net
waws-prod-bay-6f6e9dfa.state.p.azurewebsites.windows.net
waws-prod-hk1-8db07b87-api.p.azurewebsites.windows.net
tr1686.northeurope1-a.worker.database.windows.net
BN2B.agent.core.windows.net
metricsclient.geneva.core.windows.net
DM3.agent.core.windows.net
tr354.australiaeast1-a.control.database.windows.net
waws-prod-sy3-fb5d9039-api.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-ch1-3955dc27.publish.p.azurewebsites.windows.net
waws-prod-yt1-982c2880.publish.p.azurewebsites.windows.net
waws-prod-mwh-37f9bd5f.publish.p.azurewebsites.windows.net
waws-prod-am2-013.publish.azurewebsites.windows.net
tr469.australiaeast1-a.worker.database.windows.net
tr1348.westus1-a.worker.database.windows.net
waws-prod-bn1-009.state.azurewebsites.windows.net
tr409.westeurope1-a.worker.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-mwh-cbf02dd4.publish.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
3f7611921e87.database.windows.net
metricsclient.geneva.core.windows.net
testonly.secretstore.windows.net
cpim.windows.net
ams-ts61-1-hos-rest-1-1.cloudapp.net
40b5d28d821e.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-sy3-87a8eac9.state.p.azurewebsites.windows.net
waws-prod-pn1-e4d07c21.api.p.azurewebsites.windows.net
waws-prod-bn1-e45ca43e-api.p.azurewebsites.windows.net
*.blob.core.windows.net
testonly.secretstore.windows.net
gwpdctosf-d9afa021808b.worker.database.windows.net
testonly.secretstore.windows.net
tr976.centralus1-a.worker.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-am2-04f0829f.publish.p.azurewebsites.windows.net
waws-prod-db3-a4287263.api.p.azurewebsites.windows.net
waws-prod-am2-6c285c27.publish.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
*.stream-diagnostics.store.core.windows.net
testonly.secretstore.windows.net
SN3P.agent.core.windows.net
enc.p.azurewebsites.windows.net
tr832.australiaeast1-a.control.database.windows.net
enc.p.azurewebsites.windows.net
waws-prod-bay-a1bbcb3e-api.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-cw1-d3d1bfdf.publish.p.azurewebsites.windows.net
testonly.secretstore.windows.net
testonly.secretstore.windows.net
*.stream-diagnostics.store.core.windows.net
tr1419.centralus1-a.worker.database.windows.net
waws-prod-blu-96e6d8f2-api.p.azurewebsites.windows.net
waws-prod-blu-edf2d934-api.p.azurewebsites.windows.net
waws-prod-bn1-53f95518-api.p.azurewebsites.windows.net
uswest12.rnm.core.windows.net
tr16.southcentralus1-a.worker.database.windows.net
waws-prod-sn1-ea02b418-api.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
metricsclient.geneva.core.windows.net
waws-prod-sy3-24d1ce36.state.p.azurewebsites.windows.net
testonly.secretstore.windows.net
testonly.secretstore.windows.net
HK2.agent.core.windows.net
gwpdctosf-e77d764d22ff.worker.database.windows.net
waws-prod-am2-13bb9e6c.state.p.azurewebsites.windows.net
waws-prod-db3-92f298be.publish.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-bay-f5246b21.publish.p.azurewebsites.windows.net
tr165.ukwest1-a.worker.database.windows.net
testonly.secretstore.windows.net
tr277.australiasoutheast1-a.control.database.windows.net
metricsclient.geneva.core.windows.net
metricsclient.geneva.core.windows.net
Certificate
The complete raw certificate details for graph.windows.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIL3TCCCcWgAwIBAgITWgAEcfsISyCjpjel2gABAARx+zANBgkqhkiG9w0BAQsF ADCBizELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEVMBMGA1UE CxMMTWljcm9zb2Z0IElUMR4wHAYDVQQDExVNaWNyb3NvZnQgSVQgU1NMIFNIQTIw HhcNMTYwOTE1MTU1MzIwWhcNMTgwNTA3MTcwMzMwWjAcMRowGAYDVQQDExFncmFw aC53aW5kb3dzLm5ldDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANW1 wjCxNSmJ6JvpcQYwtVCndZE8x45FQrZ07DAgRABztLUczoKNe5ksuvB23azMFL7I HFIwec9yopOOFwluJIRVCgJbPeXRgfFF4SDyzstuqHOnrt7WcQNFtZc9SaryMeUi Ep9BCGC4PzZq4b+8VglAlUc/ojae9BT+UZXBfu4svouyARLrKy54liz8jwJp50t8 KooQOgNb7le2hGuJLZVPkt748Lytfem1wKDbchxI01XLSbQpVRSaFa0iPaaBbQR7 HWFEbg3FapEnWsBKI3Ka9vmcD9JDdQA60ONdgxkhZSLjrelEGsujeXIGfpESJd3A hFM3obTN+Et5KvvODoUCAwEAAaOCB6YwggeiMAsGA1UdDwQEAwIEsDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHQYDVR0OBBYEFCNNCHlXI7+YTQrDP/ol 5VFNXIlxMIIFiQYDVR0RBIIFgDCCBXyCEWdyYXBoLndpbmRvd3MubmV0ghZncmFw aHN0b3JlLndpbmRvd3MubmV0ghFsb2dpbi53aW5kb3dzLm5ldIIVZ3JhcGgucHBl LndpbmRvd3MubmV0ghNwYXNzd29yZC5jY3NjdHAuY29tgiFwYXNzd29yZHJlc2V0 Lm1pY3Jvc29mdG9ubGluZS5jb22CG2xvZ2luLm1pY3Jvc29mdG9ubGluZS1wLmNv bYIRKi53aW5kb3dzLXBwZS5uZXSCEGFhZGcud2luZG93cy5uZXSCEGNwaW0ud2lu ZG93cy5uZXSCEiouY3BpbS53aW5kb3dzLm5ldIIeZGlyZWN0b3J5cHJveHkucHBl LndpbmRvd3MubmV0ghpkaXJlY3Rvcnlwcm94eS53aW5kb3dzLm5ldIIZbG9naW4u bWljcm9zb2Z0b25saW5lLmNvbYIZY29tcGFueW1hbmFnZXIuY2NzY3RwLmNvbYIi Y29tcGFueW1hbmFnZXIubWljcm9zb2Z0b25saW5lLmNvbYIPc3RzLndpbmRvd3Mu bmV0ghNwYXMud2luZG93cy1wcGUubmV0gg9wYXMud2luZG93cy5uZXSCEGJlY3dz LmNjc2N0cC5jb22CIHByb3Zpc2lvbmluZy5taWNyb3NvZnRvbmxpbmUuY29tghsq LmFjY2Vzc2NvbnRyb2wud2luZG93cy5uZXSCHyouYWNjZXNzY29udHJvbC53aW5k b3dzLXBwZS5uZXSCFm1pY3Jvc29mdGFpay5henVyZS5uZXSCGCoubWljcm9zb2Z0 YWlrLmF6dXJlLm5ldIIebWljcm9zb2Z0YWlrLWludC5henVyZS1pbnQubmV0giAq Lm1pY3Jvc29mdGFpay1pbnQuYXp1cmUtaW50Lm5ldIIgZGV2aWNlLmxvZ2luLm1p Y3Jvc29mdG9ubGluZS5jb22CF2FwaS5wYXNzd29yZC5jY3NjdHAuY29tgiVhcGku cGFzc3dvcmRyZXNldC5taWNyb3NvZnRvbmxpbmUuY29tghxkZXZpY2UubG9naW4u d2luZG93cy1wcGUubmV0ghJhYWRndjYud2luZG93cy5uZXSCFmFhZGd2Ni5wcGUu d2luZG93cy5uZXSCE2xvZ2luLm1pY3Jvc29mdC5jb22CF2xvZ2luLm1pY3Jvc29m dC1wcGUuY29tghJsb2dpbi5saXZlLWludC5jb22CDmxvZ2luLmxpdmUuY29tghZ4 bWwubG9naW4ubGl2ZS1pbnQuY29tghJ4bWwubG9naW4ubGl2ZS5jb22CEGFjY291 bnQubGl2ZS5jb22CFGFjY291bnQubGl2ZS1pbnQuY29tgg9zaWdudXAubGl2ZS5j b22CE3NpZ251cC5saXZlLWludC5jb22CHGxvZ2luLXVzLm1pY3Jvc29mdG9ubGlu ZS5jb22CImNsaWVudGNvbmZpZy5taWNyb3NvZnRvbmxpbmUtcC5uZXSCJmNsaWVu dGNvbmZpZy5taWNyb3NvZnRvbmxpbmUtcC1pbnQubmV0giFsb2dpbmNlcnQubWlj cm9zb2Z0b25saW5lLWludC5jb22CHWxvZ2luY2VydC5taWNyb3NvZnRvbmxpbmUu Y29tgiJhdXRvbG9nb24ubWljcm9zb2Z0YXp1cmVhZC1zc28uY29tgi1wYXNzd29y ZHJlc2V0LmFjdGl2ZWRpcmVjdG9yeS53aW5kb3dzYXp1cmUudXOCHWxvZ2luLm1p Y3Jvc29mdG9ubGluZS1wc3QuY29tgh9uZXh1cy5taWNyb3NvZnRvbmxpbmUtcC1p bnQuY29tghtuZXh1cy5taWNyb3NvZnRvbmxpbmUtcC5jb20wHwYDVR0jBBgwFoAU Ua8kJpz0aCJXgCYrO0ZiFXsezKUwfQYDVR0fBHYwdDByoHCgboY2aHR0cDovL21z Y3JsLm1pY3Jvc29mdC5jb20vcGtpL21zY29ycC9jcmwvbXNpdHd3dzIuY3JshjRo dHRwOi8vY3JsLm1pY3Jvc29mdC5jb20vcGtpL21zY29ycC9jcmwvbXNpdHd3dzIu Y3JsMHAGCCsGAQUFBwEBBGQwYjA8BggrBgEFBQcwAoYwaHR0cDovL3d3dy5taWNy b3NvZnQuY29tL3BraS9tc2NvcnAvbXNpdHd3dzIuY3J0MCIGCCsGAQUFBzABhhZo dHRwOi8vb2NzcC5tc29jc3AuY29tMD0GCSsGAQQBgjcVBwQwMC4GJisGAQQBgjcV CIPPiU2t8gKFoZ8MgvrKfYHh+3SBT4e0z3yBzboyAgFkAgEZME4GA1UdIARHMEUw QwYJKwYBBAGCNyoBMDYwNAYIKwYBBQUHAgEWKGh0dHA6Ly93d3cubWljcm9zb2Z0 LmNvbS9wa2kvbXNjb3JwL2NwcwAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcD ATAKBggrBgEFBQcDAjANBgkqhkiG9w0BAQsFAAOCAgEAtahRXv4LefokLh6jDbUE TJooLX/kIdcYpx580nJDBmMDujQ6LwSChcqB40AH5hch8wZVQSb230zKbAUD12Mp AZje76Gby7Fxa1VczQsVMLS+WqeH6QX8m7rFQtXrUZTLn/byiejD85fgHj5dQQ42 QYJBvp60b4XvThHqS8OYNnbvXKxyeK3ir6M/rMKs/Hy51fFRXXFu7AL93hFJHuPd aqDpFeOBaBEl5rN5c+uoWm1PmbCI9+4lC1um98RNm/hyeaKfNMo4VrVc5z0WqVGp hVUNbKtVfod+njE3HW9mgATlmGTNYLNi+z5znLYoGB6SbIFMRXF64FeUR7diduny 9K7FphMokIVJtxHVc3cxlXVrEDK9K4tqokfeIj5b4nL7h/NIo41pca2owmykl97U 3VYoCLUiMy3qtqu1g/5LEdYInc6rmwJClkfn/WfX8samCsJs1kABHJdx5RJW8ukz 3h58p0L8j9qCB1TOZJXFvIqJSaPWn7knvkqLmvBiSaEwh4zEn7fQh0SxUj9pGQVd P5l+OqUHe1E4v253tLUS1b8ut83o38SwkA1a+zLjWAqDAPHVyM11Ym5OIV+b81DP vdrm6VhONRRGKmLh/e0Ub8VcP12YgRYkQXkcHiZvqCY9yo47kzE9GZwaM9/HcBfZ H5y8pZ6wKscpRiNYnwEPKrI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bXCMLE1KYnom+lxBjC1 UKd1kTzHjkVCtnTsMCBEAHO0tRzOgo17mSy68HbdrMwUvsgcUjB5z3Kik44XCW4k hFUKAls95dGB8UXhIPLOy26oc6eu3tZxA0W1lz1JqvIx5SISn0EIYLg/Nmrhv7xW CUCVRz+iNp70FP5RlcF+7iy+i7IBEusrLniWLPyPAmnnS3wqihA6A1vuV7aEa4kt lU+S3vjwvK196bXAoNtyHEjTVctJtClVFJoVrSI9poFtBHsdYURuDcVqkSdawEoj cpr2+ZwP0kN1ADrQ412DGSFlIuOt6UQay6N5cgZ+kRIl3cCEUzehtM34S3kq+84O hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2007068580503422013170181816355017482008031739 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT SSL SHA2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-15 15:53:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-07 17:03:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'graph.windows.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26978387441979135704702669897694636639912029011611497686351360682828664009158997236371730614152940350337488545678167131724308261223891256667146952512019093724445617134436634989574584923292640002929712525174237000348925064331721961474551666380781076193640261397642358957763968551816416589251665387979863673191581643852041025285459771648954504543370301792944169322530543824080802661346203452733951049343737346799090021410220477154443668211268310446055183196999658675737193614716211765630079961328432940190435124508939218328998255770870947781609266119817750531709005934246585281084731675302751464274712690044646712020613 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 234d08795723bf984d0ac33ffa25e5514d5c8971 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1408 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'graph.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'graphstore.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'graph.ppe.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'password.ccsctp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'passwordreset.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoftonline-p.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.windows-ppe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aadg.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpim.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cpim.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'directoryproxy.ppe.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'directoryproxy.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companymanager.ccsctp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companymanager.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sts.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pas.windows-ppe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pas.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'becws.ccsctp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provisioning.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.accesscontrol.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.accesscontrol.windows-ppe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'microsoftaik.azure.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.microsoftaik.azure.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'microsoftaik-int.azure-int.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.microsoftaik-int.azure-int.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'device.login.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.password.ccsctp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.passwordreset.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'device.login.windows-ppe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aadgv6.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aadgv6.ppe.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoft-ppe.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.live-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xml.login.live-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xml.login.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'account.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'account.live-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'signup.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'signup.live-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login-us.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clientconfig.microsoftonline-p.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clientconfig.microsoftonline-p-int.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'logincert.microsoftonline-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'logincert.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autologon.microsoftazuread-sso.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'passwordreset.activedirectory.windowsazure.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoftonline-pst.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nexus.microsoftonline-p-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nexus.microsoftonline-p.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 51af24269cf468225780262b3b4662157b1ecca5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mscrl.microsoft.com/pki/mscorp/crl/msitwww2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.microsoft.com/pki/mscorp/crl/msitwww2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pki/mscorp/msitwww2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.msocsp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.7587021.751874.11030412.6202749.3702260.207.15542268.3366194 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (71 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.42.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pki/mscorp/cps�' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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