northstar.ellielabs.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0d:b1:f3:7b:65:21:2f:a4:9a:ca:57:ea:4b:80:cc:57 was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=northstar.ellielabs.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:b1:f3:7b:65:21:2f:a4:9a:ca:57:ea:4b:80:cc:57Serial Number (int): 18203938891060352980073614578481679447
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 8d:7b:61:18:88:fa:ac:7a:40:d4:c1:0b:7d:26:7f:7b:36:4c:a5:54
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): b1:6a:99:83:f8:35:2f:d2:3d:68:ef:aa:3a:c4:bc:59:d0:fd:18:1a
Fingerprint (sha256): 03:bf:af:5a:d4:ad:cd:20:88:b2:20:43:f5:6a:15:62:f5:62:25:99:61:c0:b3:7c:fb:40:19:46:ef:1b:c9:3a
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate northstar.ellielabs.com
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for northstar.ellielabs.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
northstar.ellielabs.com
*.northstar.ellielabs.com
*.dev.northstar.ellielabs.com
*.qa.northstar.ellielabs.com
*.int.northstar.ellielabs.com
*.cr.northstar.ellielabs.com
*.ak.northstar.ellielabs.com
*.northstar.ellielabs.com
*.dev.northstar.ellielabs.com
*.qa.northstar.ellielabs.com
*.int.northstar.ellielabs.com
*.cr.northstar.ellielabs.com
*.ak.northstar.ellielabs.com
Other certificates including the domain name ellielabs.com
(limited to 100 certificates)
concept.processor.usermessaging.ellielabs.com
*.stg.ecrm.ellielabs.com
streaming.us-east-1.skydrive.ellielabs.com
dcss-api.datascience.ellielabs.com
dev-tfe.api.ellielabs.com
api-stl.stg.ecrm.ellielabs.com
customdomaintest.northstar.ellielabs.com
concept.exportimportsvc.ellielabs.com
uat.tpo.ellielabs.com
r2t.async-processor.ellielabs.com
mavent.com
api.partner.concept.epc2.ellielabs.com
beta.tpo.ellielabs.com
docs.qa.developer.ellielabs.com
*.northstar.ellielabs.com
vemdomain.northstar.ellielabs.com
r2t.epps.ellielabs.com
northstar.ellielabs.com
consul.us-east-1.accord.ellielabs.com
concept.processor.usermessaging.ellielabs.com
uat.tpo.ellielabs.com
viewer.ellielabs.com
concept2.token-service.ellielabs.com
api.ultron.stg.consumer-connect-platform.ellielabs.com
partner.ellielabs.com
api-batch.stg.ecrm.ellielabs.com
bazar.int.consumer-connect.rd.elliemae.io
api-r2t.subscribe.notification.ellielabs.com
concept.consumer.efolderorchestration.ellielabs.com
api-stl.stg.ecrm.ellielabs.com
*.pfc.ellielabs.com
efolderorchestration.ellielabs.com
r2t.marshall-service.ellielabs.com
stg.enc-services-orchestrator-request-router.ellielabs.com
stg.api.activities.ellielabs.com
learningstore-api.datascience.ellielabs.com
consul.us-east-1.accord.ellielabs.com
partner.integration.epps.ellielabs.com
skydrive.ellielabs.com
streaming.us-east-1.internal.skydrive.ellielabs.com
docs.qa.developer.ellielabs.com
concept.streaming.us-east-1.skydrive.ellielabs.com
api.beacon.ellielabs.com
elliemae.com
custom.gelato.io
api-subscription.stg.ecrm.ellielabs.com
cdn.ellielabs.com
api.subscribe.notification.ellielabs.com
concept.processor.svc-bot.ellielabs.com
stg.html.dpsv2.ellielabs.com
concept.consumer.efolderorchestration.ellielabs.com
streaming.skydrive.ellielabs.com
*.token-service.ellielabs.com
bazar.concept.consumer-connect.ellielabs.com
stg.enc-services-orchestrator-response-router.ellielabs.com
stg.dmosconsumer.ellielabs.com
stg.chatprocessor.chat.ellielabs.com
consul.us-west-2.accord.ellielabs.com
*.api.ellielabs.com
*.uat.eds.ellielabs.com
custom.gelato.io
r2t.async-processor.ellielabs.com
stg.sob.ellielabs.com
concept.userprofile.ellielabs.com
docs2.int.developer.ellielabs.com
api.beacon.ellielabs.com
stg.workflowsvc.ellielabs.com
*.otp-service.ellielabs.com
dev3.api.ellielabs.com
*.idp.ellielabs.com
processor.svc-bot.ellielabs.com
streaming.us-west-2.internal.skydrive.ellielabs.com
api.concept.v2.drs.ellielabs.com
mlr.learningstore-api.datascience.ellielabs.com
docs.int.partner.ellielabs.com
cfx.workflow.ellielabs.com
dev3.api.ellielabs.com
bazar.int.consumer-connect.rd.elliemae.io
concept.replay-taskmanager.dataplatform.ellielabs.com
docs.int.partner.ellielabs.com
svc-configurer.ellielabs.com
api.origin.stg.epc2.ellielabs.com
api.payment-subscription.stg.consumer-connect.ellielabs.com
int-tfe.api.ellielabs.com
r2t.async-processor.ellielabs.com
viewer.ellielabs.com
concept.us-east-1.dpsv2.ellielabs.com
concept.streaming.us-west-2.internal.skydrive.ellielabs.com
*.partner.ellielabs.com
api.beacon.ellielabs.com
*.concept1.datalake.ellielabs.com
concept.streaming.us-west-2.skydrive.ellielabs.com
test.svc-aggregator.rd.ellielabs.com
docs2.int.developer.ellielabs.com
*.idp.ellielabs.com
stg-west.graphservice.ellielabs.com
concept.utility.skydrive.ellielabs.com
concept.workflow.ellielabs.com
dev3.api.ellielabs.com
dev3.api.ellielabs.com
*.stg.ecrm.ellielabs.com
streaming.us-east-1.skydrive.ellielabs.com
dcss-api.datascience.ellielabs.com
dev-tfe.api.ellielabs.com
api-stl.stg.ecrm.ellielabs.com
customdomaintest.northstar.ellielabs.com
concept.exportimportsvc.ellielabs.com
uat.tpo.ellielabs.com
r2t.async-processor.ellielabs.com
mavent.com
api.partner.concept.epc2.ellielabs.com
beta.tpo.ellielabs.com
docs.qa.developer.ellielabs.com
*.northstar.ellielabs.com
vemdomain.northstar.ellielabs.com
r2t.epps.ellielabs.com
northstar.ellielabs.com
consul.us-east-1.accord.ellielabs.com
concept.processor.usermessaging.ellielabs.com
uat.tpo.ellielabs.com
viewer.ellielabs.com
concept2.token-service.ellielabs.com
api.ultron.stg.consumer-connect-platform.ellielabs.com
partner.ellielabs.com
api-batch.stg.ecrm.ellielabs.com
bazar.int.consumer-connect.rd.elliemae.io
api-r2t.subscribe.notification.ellielabs.com
concept.consumer.efolderorchestration.ellielabs.com
api-stl.stg.ecrm.ellielabs.com
*.pfc.ellielabs.com
efolderorchestration.ellielabs.com
r2t.marshall-service.ellielabs.com
stg.enc-services-orchestrator-request-router.ellielabs.com
stg.api.activities.ellielabs.com
learningstore-api.datascience.ellielabs.com
consul.us-east-1.accord.ellielabs.com
partner.integration.epps.ellielabs.com
skydrive.ellielabs.com
streaming.us-east-1.internal.skydrive.ellielabs.com
docs.qa.developer.ellielabs.com
concept.streaming.us-east-1.skydrive.ellielabs.com
api.beacon.ellielabs.com
elliemae.com
custom.gelato.io
api-subscription.stg.ecrm.ellielabs.com
cdn.ellielabs.com
api.subscribe.notification.ellielabs.com
concept.processor.svc-bot.ellielabs.com
stg.html.dpsv2.ellielabs.com
concept.consumer.efolderorchestration.ellielabs.com
streaming.skydrive.ellielabs.com
*.token-service.ellielabs.com
bazar.concept.consumer-connect.ellielabs.com
stg.enc-services-orchestrator-response-router.ellielabs.com
stg.dmosconsumer.ellielabs.com
stg.chatprocessor.chat.ellielabs.com
consul.us-west-2.accord.ellielabs.com
*.api.ellielabs.com
*.uat.eds.ellielabs.com
custom.gelato.io
r2t.async-processor.ellielabs.com
stg.sob.ellielabs.com
concept.userprofile.ellielabs.com
docs2.int.developer.ellielabs.com
api.beacon.ellielabs.com
stg.workflowsvc.ellielabs.com
*.otp-service.ellielabs.com
dev3.api.ellielabs.com
*.idp.ellielabs.com
processor.svc-bot.ellielabs.com
streaming.us-west-2.internal.skydrive.ellielabs.com
api.concept.v2.drs.ellielabs.com
mlr.learningstore-api.datascience.ellielabs.com
docs.int.partner.ellielabs.com
cfx.workflow.ellielabs.com
dev3.api.ellielabs.com
bazar.int.consumer-connect.rd.elliemae.io
concept.replay-taskmanager.dataplatform.ellielabs.com
docs.int.partner.ellielabs.com
svc-configurer.ellielabs.com
api.origin.stg.epc2.ellielabs.com
api.payment-subscription.stg.consumer-connect.ellielabs.com
int-tfe.api.ellielabs.com
r2t.async-processor.ellielabs.com
viewer.ellielabs.com
concept.us-east-1.dpsv2.ellielabs.com
concept.streaming.us-west-2.internal.skydrive.ellielabs.com
*.partner.ellielabs.com
api.beacon.ellielabs.com
*.concept1.datalake.ellielabs.com
concept.streaming.us-west-2.skydrive.ellielabs.com
test.svc-aggregator.rd.ellielabs.com
docs2.int.developer.ellielabs.com
*.idp.ellielabs.com
stg-west.graphservice.ellielabs.com
concept.utility.skydrive.ellielabs.com
concept.workflow.ellielabs.com
dev3.api.ellielabs.com
dev3.api.ellielabs.com
Certificate
The complete raw certificate details for northstar.ellielabs.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIQDbHze2UhL6SaylfqS4DMVzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDAyMDMwMDAwMDBaFw0yMTAzMDMx MjAwMDBaMCIxIDAeBgNVBAMTF25vcnRoc3Rhci5lbGxpZWxhYnMuY29tMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCTO2+tTJSwgCuaQuhgUZVNXXOha Jg6w5Ceu9IFC8Mwvbnqu0gA3KBP+Sk8D4q2VmRofEWMRi61aFfLgYgfvuZiIOJWj czNYXOXB+ahZWJnwdgww3dp6bwK0OB0uFPjEpJCq9OhkDpJbduUSvyjqwk9Q+sJH JBm0EaImj25dyPb7sijRWwkEsc2F2H79yQOeUuRGnxvtYBiYpzsJaMWnhiWP8aUU VtAG+Co0QsPdL6BzxBWNKQKfDdCOpw9i9q0Pbrqia/VuUz2yVX1eBA9ArlINrntM xeGg0BiiJpeWZsNk0Il/NOFhpBg5dqOstsEGOJ0H1rxpioKeqK+TZfxIHwIDAQAB o4ICRjCCAkIwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0O BBYEFI17YRiI+qx6QNTBC30mf3s2TKVUMIHXBgNVHREEgc8wgcyCF25vcnRoc3Rh ci5lbGxpZWxhYnMuY29tghkqLm5vcnRoc3Rhci5lbGxpZWxhYnMuY29tgh0qLmRl di5ub3J0aHN0YXIuZWxsaWVsYWJzLmNvbYIcKi5xYS5ub3J0aHN0YXIuZWxsaWVs YWJzLmNvbYIdKi5pbnQubm9ydGhzdGFyLmVsbGllbGFicy5jb22CHCouY3Iubm9y dGhzdGFyLmVsbGllbGFicy5jb22CHCouYWsubm9ydGhzdGFyLmVsbGllbGFicy5j b20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0 LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYGZ4EMAQIB MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Auc2NhMWIu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNjYTFiLmFt YXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5 AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIGF8vE1Dp5hmjxLjbdmZKO1l BNc8LjDvM+mwdmekK6tdDCS9d7FHdBWe4fE+fmhQG+X6cBmy4TN1XnG4mwHk5FCv AU6HvEKOhCGoLXH/X9SnotBPW6PpS2PG9BOpPJ3hffACOlq9poJ2UhEln1KLyqj0 5bwDLwaT54IOBBLgvqQ0alFCihHZdGrMgoUwpzN/V8vkkH/w/OMw9nR27Ga074l+ PtR+ZY+8HynBVxl0VjdfuwUmQwv7F5B/SpUTfx7qDYzoeUJRipQWxF9oC0HKemu5 77y1rZr8ZhOivZ+5PUkuqrTbliTp1qPo+j8G7kSFIB+mkOUzWYiUfVYDSHlz9A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCTO2+tTJSwgCuaQuhgU ZVNXXOhaJg6w5Ceu9IFC8Mwvbnqu0gA3KBP+Sk8D4q2VmRofEWMRi61aFfLgYgfv uZiIOJWjczNYXOXB+ahZWJnwdgww3dp6bwK0OB0uFPjEpJCq9OhkDpJbduUSvyjq wk9Q+sJHJBm0EaImj25dyPb7sijRWwkEsc2F2H79yQOeUuRGnxvtYBiYpzsJaMWn hiWP8aUUVtAG+Co0QsPdL6BzxBWNKQKfDdCOpw9i9q0Pbrqia/VuUz2yVX1eBA9A rlINrntMxeGg0BiiJpeWZsNk0Il/NOFhpBg5dqOstsEGOJ0H1rxpioKeqK+TZfxI HwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18203938891060352980073614578481679447 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-03 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'northstar.ellielabs.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21731139176751316953909601018382059431809246996185002981150748759042135359252988492451183879512610672522257373470841797578452634582936631819205836641883249025641254389817399662645758606883992693760422821359917515356781675974150428108118448111369691583365338527739159430614947354638020634047010187675129242327897370898543588423538113610604232537410017059926121104781419616979003979349938132730681301428611005757051704799231332982194222797723742373818648226530272346202882369559539660886987923140946925369262734174619116354286036741802571416206338349367936733403254028157332206989966093519360946454978287994153624946719 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8d7b611888faac7a40d4c10b7d267f7b364ca554 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (207 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'northstar.ellielabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.northstar.ellielabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev.northstar.ellielabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.qa.northstar.ellielabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.int.northstar.ellielabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cr.northstar.ellielabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ak.northstar.ellielabs.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0020617cbc4d43a798668f12e36dd99928ed6504d73c2e30ef33e9b07667a42bab5d0c24bd77b14774159ee1f13e7e68501be5fa7019b2e133755e71b89b01e4e450af014e87bc428e8421a82d71ff5fd4a7a2d04f5ba3e94b63c6f413a93c9de17df0023a5abda682765211259f528bcaa8f4e5bc032f0693e7820e0412e0bea4346a51428a11d9746acc828530a7337f57cbe4907ff0fce330f67476ec66b4ef897e3ed47e658fbc1f29c157197456375fbb0526430bfb17907f4a95137f1eea0d8ce87942518a9416c45f680b41ca7a6bb9efbcb5ad9afc6613a2bd9fb93d492eaab4db9624e9d6a3e8fa3f06ee4485201fa690e5335988947d5603487973f4