api-use1.treasuryfncl.gendeptm.ic1.statefarm
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0e:0c:40:f5:d2:3c:db:47:bd:b9:49:b8:2d:98:be:c9 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=api-use1.treasuryfncl.gendeptm.ic1.statefarm
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0e:0c:40:f5:d2:3c:db:47:bd:b9:49:b8:2d:98:be:c9Serial Number (int): 18672817053471112987174466909839605449
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 39:8b:9b:3f:ee:66:26:65:f1:e0:6e:a6:ff:2e:d4:a5:cf:5e:8d:89
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 21:e8:db:a6:2a:6b:cd:73:6f:bc:e6:35:be:c5:b5:17:bd:90:1e:73
Fingerprint (sha256): 03:f3:7d:a5:06:95:60:08:1c:8c:b7:93:b4:88:51:fe:cc:cc:3c:94:dd:c1:6b:ba:18:df:39:db:a3:df:21:91
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate api-use1.treasuryfncl.gendeptm.ic1.statefarm
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api-use1.treasuryfncl.gendeptm.ic1.statefarm
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api-use1.treasuryfncl.gendeptm.ic1.statefarm
api.treasuryfncl.gendeptm.ic1.statefarm
api.treasuryfncl.gendeptm.ic1.statefarm
Other certificates including the domain name ic1.statefarm
(limited to 100 certificates)
rentaleligibility-1748234.claimsvc.test.ic1.statefarm
mmw.usw2.puasisbx.test.ic1.statefarm
rental-exp-rest.claimsvc.sandbox.test.ic1.statefarm
sf-amccint-asap-moonracers-associate.amccint.test.ic1.statefarm
cnam.test.ic1.statefarm
*.mgmt.ic1.statefarm
doccatalog-api.pcmcc.test.ic1.statefarm
sf-isc-flc6-spa.iscsbox.test.ic1.statefarm
payloadcapture-env1.amccdev.test.ic1.statefarm
docs.pcsndbx.test.ic1.statefarm
doccatalog-vafab9-api.pcmcc.test.ic1.statefarm
uics-api-dev1.pcmcc.test.ic1.statefarm
sampleapp.pcfrate.test.ic1.statefarm
doccatalog-gj8t.pcmcc.test.ic1.statefarm
stuckapp-bdd.bassets.test.ic1.statefarm
sf-pcmcc-hotapi-env6-us-east-1.pcmcc.test.ic1.statefarm
sf-pushnote-api.pushnote.ic1.statefarm
sf-thunder-bei-env1-api.pcmngdh1.test.ic1.statefarm
doccatalog-api.pcmcc.test.ic1.statefarm
rentaleligibility-1746348.claimsvc.test.ic1.statefarm
jgdb.pcattest.test.ic1.statefarm
max-monthly-benefit-api.ethealth.test.ic1.statefarm
doccatalog-nk5f.pcmcc.test.ic1.statefarm
directemail-xm2r.claims.test.ic1.statefarm
*.hub.test.ic1.statefarm
doccatalog-dqgn.pcmcc.test.ic1.statefarm
updated-mi-jwt-authenticator.redcap.test.ic1.statefarm
stuckapp-bdd.bassets.test.ic1.statefarm
app-use1.rmr.gendeptm.test.ic1.statefarm
datasolutions-plii-api-sndbx.pcingest.test.ic1.statefarm
customer-data-api.iihenbld.test.ic1.statefarm
bcd-services.puasisbx.test.ic1.statefarm
pcmcc.test.ic1.statefarm
sf-aventicon-efs-v.pcsndbx2.test.ic1.statefarm
wc.poladmin.test.ic1.statefarm
data-registry-ops.pcas.isbx.ic1.statefarm
pnr-env1.bassets.test.ic1.statefarm
claimaggregator-sbx.pcurim.test.ic1.statefarm
clmfilclms-sts-api.poc.test.ic1.statefarm
tdm-env3.bassets.test.ic1.statefarm
lablooter-lp-ddk6.seccode.test.ic1.statefarm
pcmcc.ic1.statefarm
prisma-test-vaar8w.test.ic1.statefarm
api.pcmr.pcingest.test.ic1.statefarm
claimaggregator-env7.pcu.test.ic1.statefarm
doccatalog-nk5f.pcmcc.test.ic1.statefarm
analytics-test3-seg4.claimsvc.test.ic1.statefarm
efttoproviderl9kt.claimsvc.sandbox.test.ic1.statefarm
doccatalog-vaflld-api.pcmcc.test.ic1.statefarm
repaireligibility-1490984.claimsvc.test.ic1.statefarm
mmapi.scrummy.bill.test.ic1.statefarm
api.compas.poc.test.ic1.statefarm
*.beginningofday.pcsndbx2.test.ic1.statefarm
plpc-aws-rac.pcmngd02.test.ic1.statefarm
devops.test.ic1.statefarm
iseit-poc.udaas.test.ic1.statefarm
dlt-prodbea-api.pcmcc.ic1.statefarm
nkapi.reg.eclipse.dev.test.ic1.statefarm
pnr-bdd.bassets.test.ic1.statefarm
cdmgt-c2d2syncv2.custmgmt.test.ic1.statefarm
autotools.pcmngd01.test.ic1.statefarm
dlta-dev9.pcmcc.test.ic1.statefarm
claimsvc.clmsbx.test.ic1.statefarm
terratest-lilypad-s3-api.redcap.test.ic1.statefarm
pcmcc.test.ic1.statefarm
lgcyacquisition-ing-api-breakfix.pcingest.test.ic1.statefarm
*.ops-k8s.warm.pcas.isbx.ic1.statefarm
pcesm-apigw-env2.pcmngd01.test.ic1.statefarm
bti.renewal.pymnt.test.ic1.statefarm
resistance-cbk-test.pcafcld.test.ic1.statefarm
doccatalog-vabaus.pcmcc.test.ic1.statefarm
bicmpretend.bparch.test.ic1.statefarm
enhanced-migcal-dr.poladmin.test.ic1.statefarm
api-use1.treasuryfncl.gendeptm.ic1.statefarm
doccatalog-vafph9.pcmcc.test.ic1.statefarm
sfp-ep20.sfconnect.digxp.test.ic1.statefarm
dltage.pcmcc.test.ic1.statefarm
cssdb-document-info-ebet.pcmngdh1.test.ic1.statefarm
event-ingestion-hub-test.entint.test.ic1.statefarm
tfe.infra.ic1.statefarm
w1q4-jwt-authenticator.redcap.test.ic1.statefarm
dlt-dev6gea-api.pcmcc.test.ic1.statefarm
rqstsvcs-test.pcsndbx2.test.ic1.statefarm
aprvlapp.ds.test.ic1.statefarm
im-main-vaaei8.sfconnect.digxp.test.ic1.statefarm
et-metadata-systemtest-axon.datalake.test.ic1.statefarm
wss-emg6.sfconnect.digxp.test.ic1.statefarm
repaireligibility-1724763.claimsvc.test.ic1.statefarm
repaireligibility-1498767.claimsvc.test.ic1.statefarm
ecrmofficeswitchcheck.koko.amccdev.test.ic1.statefarm
dlt-testgwa-api.pcmcc.test.ic1.statefarm
doccatalog-dqgn-api.pcmcc.test.ic1.statefarm
uicscoi-userinitiated-dev1.pcmcc.test.ic1.statefarm
tdm-env3.bassets.test.ic1.statefarm
clmfilclmsdata-api-env3.poc.test.ic1.statefarm
doccatalog-dqgn-api.pcmcc.test.ic1.statefarm
lmtapi.asts.test.ic1.statefarm
bti.renewal.pymnt.test.ic1.statefarm
mmapi.scrummy.bill.test.ic1.statefarm
ingest-ftsj.sfconnect.digxp.test.ic1.statefarm
mmw.usw2.puasisbx.test.ic1.statefarm
rental-exp-rest.claimsvc.sandbox.test.ic1.statefarm
sf-amccint-asap-moonracers-associate.amccint.test.ic1.statefarm
cnam.test.ic1.statefarm
*.mgmt.ic1.statefarm
doccatalog-api.pcmcc.test.ic1.statefarm
sf-isc-flc6-spa.iscsbox.test.ic1.statefarm
payloadcapture-env1.amccdev.test.ic1.statefarm
docs.pcsndbx.test.ic1.statefarm
doccatalog-vafab9-api.pcmcc.test.ic1.statefarm
uics-api-dev1.pcmcc.test.ic1.statefarm
sampleapp.pcfrate.test.ic1.statefarm
doccatalog-gj8t.pcmcc.test.ic1.statefarm
stuckapp-bdd.bassets.test.ic1.statefarm
sf-pcmcc-hotapi-env6-us-east-1.pcmcc.test.ic1.statefarm
sf-pushnote-api.pushnote.ic1.statefarm
sf-thunder-bei-env1-api.pcmngdh1.test.ic1.statefarm
doccatalog-api.pcmcc.test.ic1.statefarm
rentaleligibility-1746348.claimsvc.test.ic1.statefarm
jgdb.pcattest.test.ic1.statefarm
max-monthly-benefit-api.ethealth.test.ic1.statefarm
doccatalog-nk5f.pcmcc.test.ic1.statefarm
directemail-xm2r.claims.test.ic1.statefarm
*.hub.test.ic1.statefarm
doccatalog-dqgn.pcmcc.test.ic1.statefarm
updated-mi-jwt-authenticator.redcap.test.ic1.statefarm
stuckapp-bdd.bassets.test.ic1.statefarm
app-use1.rmr.gendeptm.test.ic1.statefarm
datasolutions-plii-api-sndbx.pcingest.test.ic1.statefarm
customer-data-api.iihenbld.test.ic1.statefarm
bcd-services.puasisbx.test.ic1.statefarm
pcmcc.test.ic1.statefarm
sf-aventicon-efs-v.pcsndbx2.test.ic1.statefarm
wc.poladmin.test.ic1.statefarm
data-registry-ops.pcas.isbx.ic1.statefarm
pnr-env1.bassets.test.ic1.statefarm
claimaggregator-sbx.pcurim.test.ic1.statefarm
clmfilclms-sts-api.poc.test.ic1.statefarm
tdm-env3.bassets.test.ic1.statefarm
lablooter-lp-ddk6.seccode.test.ic1.statefarm
pcmcc.ic1.statefarm
prisma-test-vaar8w.test.ic1.statefarm
api.pcmr.pcingest.test.ic1.statefarm
claimaggregator-env7.pcu.test.ic1.statefarm
doccatalog-nk5f.pcmcc.test.ic1.statefarm
analytics-test3-seg4.claimsvc.test.ic1.statefarm
efttoproviderl9kt.claimsvc.sandbox.test.ic1.statefarm
doccatalog-vaflld-api.pcmcc.test.ic1.statefarm
repaireligibility-1490984.claimsvc.test.ic1.statefarm
mmapi.scrummy.bill.test.ic1.statefarm
api.compas.poc.test.ic1.statefarm
*.beginningofday.pcsndbx2.test.ic1.statefarm
plpc-aws-rac.pcmngd02.test.ic1.statefarm
devops.test.ic1.statefarm
iseit-poc.udaas.test.ic1.statefarm
dlt-prodbea-api.pcmcc.ic1.statefarm
nkapi.reg.eclipse.dev.test.ic1.statefarm
pnr-bdd.bassets.test.ic1.statefarm
cdmgt-c2d2syncv2.custmgmt.test.ic1.statefarm
autotools.pcmngd01.test.ic1.statefarm
dlta-dev9.pcmcc.test.ic1.statefarm
claimsvc.clmsbx.test.ic1.statefarm
terratest-lilypad-s3-api.redcap.test.ic1.statefarm
pcmcc.test.ic1.statefarm
lgcyacquisition-ing-api-breakfix.pcingest.test.ic1.statefarm
*.ops-k8s.warm.pcas.isbx.ic1.statefarm
pcesm-apigw-env2.pcmngd01.test.ic1.statefarm
bti.renewal.pymnt.test.ic1.statefarm
resistance-cbk-test.pcafcld.test.ic1.statefarm
doccatalog-vabaus.pcmcc.test.ic1.statefarm
bicmpretend.bparch.test.ic1.statefarm
enhanced-migcal-dr.poladmin.test.ic1.statefarm
api-use1.treasuryfncl.gendeptm.ic1.statefarm
doccatalog-vafph9.pcmcc.test.ic1.statefarm
sfp-ep20.sfconnect.digxp.test.ic1.statefarm
dltage.pcmcc.test.ic1.statefarm
cssdb-document-info-ebet.pcmngdh1.test.ic1.statefarm
event-ingestion-hub-test.entint.test.ic1.statefarm
tfe.infra.ic1.statefarm
w1q4-jwt-authenticator.redcap.test.ic1.statefarm
dlt-dev6gea-api.pcmcc.test.ic1.statefarm
rqstsvcs-test.pcsndbx2.test.ic1.statefarm
aprvlapp.ds.test.ic1.statefarm
im-main-vaaei8.sfconnect.digxp.test.ic1.statefarm
et-metadata-systemtest-axon.datalake.test.ic1.statefarm
wss-emg6.sfconnect.digxp.test.ic1.statefarm
repaireligibility-1724763.claimsvc.test.ic1.statefarm
repaireligibility-1498767.claimsvc.test.ic1.statefarm
ecrmofficeswitchcheck.koko.amccdev.test.ic1.statefarm
dlt-testgwa-api.pcmcc.test.ic1.statefarm
doccatalog-dqgn-api.pcmcc.test.ic1.statefarm
uicscoi-userinitiated-dev1.pcmcc.test.ic1.statefarm
tdm-env3.bassets.test.ic1.statefarm
clmfilclmsdata-api-env3.poc.test.ic1.statefarm
doccatalog-dqgn-api.pcmcc.test.ic1.statefarm
lmtapi.asts.test.ic1.statefarm
bti.renewal.pymnt.test.ic1.statefarm
mmapi.scrummy.bill.test.ic1.statefarm
ingest-ftsj.sfconnect.digxp.test.ic1.statefarm
Certificate
The complete raw certificate details for api-use1.treasuryfncl.gendeptm.ic1.statefarm in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIQDgxA9dI820e9uUm4LZi+yTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIxNDAwMDAwMFoXDTI1MDExMTIzNTk1OVowNzE1 MDMGA1UEAxMsYXBpLXVzZTEudHJlYXN1cnlmbmNsLmdlbmRlcHRtLmljMS5zdGF0 ZWZhcm0wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChkHClbDMnhqcl o9ri8SRLVDuvTnLvlmJtX3dhVm+eVGHQWACRr1GHkFCqOPFx5TzYjkaKqTCw7zUJ wxkgSv8YfCDPCKFdBPe+N32c6HfGryfCSPyFO0rdHLu8ZhwUeonuzvJ0A2wPN9S9 6/X9EqhLZavCYDwPEYlGleLnjbAnN9+SJh+Fn9gzVOX4kNGjLGZ0CQOFgKWDHIHZ FENAbzefQyw/qoTDw3XhnoM504hz4eHUsRSLqX0Ez1W1dWQKKf8VUMsaRyM9O+uA 7seWZ70ae5zyxscAiS/aZiFxCcrFUWIjSL5YXdFzWgKBuDUibxEWJaMvrHsPYU5P QCBMxniZAgMBAAGjggHBMIIBvTAfBgNVHSMEGDAWgBRV2Rhf0hzMAeFYtL6r2VVC AdcuAjAdBgNVHQ4EFgQUOYubP+5mJmXx4G6m/y7Upc9ejYkwYAYDVR0RBFkwV4Is YXBpLXVzZTEudHJlYXN1cnlmbmNsLmdlbmRlcHRtLmljMS5zdGF0ZWZhcm2CJ2Fw aS50cmVhc3VyeWZuY2wuZ2VuZGVwdG0uaWMxLnN0YXRlZmFybTATBgNVHSAEDDAK MAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMuYW1h em9udHJ1c3QuY29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUH MAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcw AoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY2VyMAwG A1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQAD ggEBALKmJaLPafL1pmdMErh5ibAAWU7TtoMClhnNOf+jAl431hnxFeCWhvEURJ0T DVsJ8jowRka8kLOFuloPSpkMb/BP2fvoRK5Gwr9TpFgNfVvj9cZJS/f/2XK3LTJI RS+UEtzGy6zyI1+zm88QrJKBFAH/cSW/Qs0FxPb9+hDWNyNK0FcceXSMMGPmmp+k E2G1L6PQxtgLtToDuDsS+LQ+XPOdiEsiAWhhR/GnPec5+ZPEgNJr8o5aditAyZFS PhKmArcH3sDjxxgTBRr63gDberH2Cneo5YwhOhnveAnXTgVIfyScUFfvbfWPxECO vOWdtWHgmGaVp8Gm2EWPdoagrzk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZBwpWwzJ4anJaPa4vEk S1Q7r05y75ZibV93YVZvnlRh0FgAka9Rh5BQqjjxceU82I5GiqkwsO81CcMZIEr/ GHwgzwihXQT3vjd9nOh3xq8nwkj8hTtK3Ry7vGYcFHqJ7s7ydANsDzfUvev1/RKo S2WrwmA8DxGJRpXi542wJzffkiYfhZ/YM1Tl+JDRoyxmdAkDhYClgxyB2RRDQG83 n0MsP6qEw8N14Z6DOdOIc+Hh1LEUi6l9BM9VtXVkCin/FVDLGkcjPTvrgO7Hlme9 Gnuc8sbHAIkv2mYhcQnKxVFiI0i+WF3Rc1oCgbg1Im8RFiWjL6x7D2FOT0AgTMZ4 mQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18672817053471112987174466909839605449 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api-use1.treasuryfncl.gendeptm.ic1.statefarm' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20395593130074023129768773257513550049845749688501935413825684778391580386853084896589808509359501879585837463971938327446620976092910453152890391843582965455518550286133185688564897301304458664635011493884129597329850325372928148567989840810921900394435190251945219764844494613004616258061560694465522293275153306816187470164443829306885056574368765637788002610749356395620997201607430192008666907015706891283896999292762166100673855005593675373759291637283161392024500424781665809045632495207033578026882091642147767096756873730720456605310239474845388544908530419245737178881256018972540355561401953902734254438553 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 398b9b3fee662665f1e06ea6ff2ed4a5cf5e8d89 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-use1.treasuryfncl.gendeptm.ic1.statefarm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.treasuryfncl.gendeptm.ic1.statefarm' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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