*.pubsub-edge.twitch.tv
Issued by Amazon
About this certificate
This digital certificate with serial number 0a:c1:79:5d:d7:57:ca:7c:ec:a9:fe:b2:6f:cc:ff:c5 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.pubsub-edge.twitch.tv
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:c1:79:5d:d7:57:ca:7c:ec:a9:fe:b2:6f:cc:ff:c5Serial Number (int): 14296854857972946020424059040029278149
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 57:4d:7e:41:4f:7d:8c:e0:09:4b:67:b6:c7:69:c4:cd:fb:8d:4a:4e
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): b5:cc:97:7a:71:6d:7d:98:39:ad:24:f1:b3:de:c8:a8:e4:62:33:b7
Fingerprint (sha256): 03:fb:90:13:04:47:49:6f:9e:9d:42:92:3f:6f:e3:28:1f:a9:ed:ee:22:77:4e:b3:31:ec:32:53:5d:08:d9:a6
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.pubsub-edge.twitch.tv
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.pubsub-edge.twitch.tv
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.pubsub-edge.twitch.tv
pubsub-edge.twitch.tv
pubsub-edge.twitch.tv
Other certificates including the domain name twitch.tv
(limited to 100 certificates)
cartman.prod.internal.us-west-2.twitch.tv
watch.twitch.tv
imgix4.map.fastly.net
panels-staging.twitch.tv
*.prod.us-west2.twitch.tv
twitch.tv
jp.blog.twitch.tv
it.blog.twitch.tv
imgix4.map.fastly.net
blog.twitch.tv
tv.twitch.tv
dns-vetting1f.map.fastly.net
imgix4.map.fastly.net
devstatus.twitch.tv
panels-images-staging.twitch.tv
devstatus.twitch.tv
prod.25.slot.cdn.salesforce-communities.com
m.twitch.tv
dns-vetting1f.map.fastly.net
*.twitch.tv
prod.25.slot.cdn.salesforce-communities.com
twitch.map.fastly.net
bemol-status.linxcommerce.com.br
assets.help.twitch.tv
twitch.tv
countess.twitch.tv
na85-1.cdn.salesforce-communities.com
statuspage.io
statuspage.io
tr.blog.twitch.tv
statuspage.io
spade.twitch.tv
assets.help.twitch.tv
*.pubsub-edge.twitch.tv
statuspage.io
id-cdn.twitch.tv
devstatus.twitch.tv
na85-1.cdn.salesforce-communities.com
*.chat.twitch.tv
twitch.tv
extensions-discovery-images.twitch.tv
twitch.tv
vmetric.twitch.tv
tv.twitch.tv
internal.passport.twitch.tv
connections.prod.internal.us-west-2.twitch.tv
cartman.staging.internal.us-west-2.twitch.tv
devstatus.twitch.tv
na85-1.cdn.salesforce-communities.com
*.twitch.tv
pubsub-edge-darklaunch.twitch.tv
uploads.twitch.tv
prod.25.slot.cdn.salesforce-communities.com
data.us-west-2.di.xarth.tv
dns-vetting1f.map.fastly.net
tv.twitch.tv
devstatus.twitch.tv
bemol-status.linxcommerce.com.br
id-cdn.twitch.tv
dns-vetting1f.map.fastly.net
cis.blog.twitch.tv
na75-2.cdn.salesforce-communities.com
twitchboard-prod.twitch.tv
devstatus.twitch.tv
bemol-status.linxcommerce.com.br
panels-images-prod.twitch.tv
extensions.sings.twitch.tv
dev.twitch.tv
compass.networkstatus.co.nz
blueprint.us-west-2.di.xarth.tv
*.darklaunch.tmi-room.twitch.a2z.com
discourse.design.twitch.tv
na85-1.cdn.salesforce-communities.com
watch.twitch.tv
*.staging.us-west2.twitch.tv
contributorstatus.crowdflower.com
devstatus.twitch.tv
*.staging.irc-edge.twitch.a2z.com
prod.25.slot.cdn.salesforce-communities.com
passport.twitch.tv
fr.blog.twitch.tv
dev.passport.twitch.a2z.com
extensions-discovery-images.twitch.tv
*.twitch.tv
vmetric.twitch.tv
dns-vetting1f.map.fastly.net
bemol-status.linxcommerce.com.br
id-cdn.twitch.tv
m.twitch.tv
fr.blog.twitch.tv
na85-1.cdn.salesforce-communities.com
link.twitch.tv
watch.twitch.tv
assets.help.twitch.tv
origin.edge-beta.ads.twitch.tv
imgix4.map.fastly.net
pubsub-edge-darklaunch.twitch.tv
gds-vhs-drops-campaign-images.twitch.tv
prod.25.slot.cdn.salesforce-communities.com
dragonfly.twitch.tv
watch.twitch.tv
imgix4.map.fastly.net
panels-staging.twitch.tv
*.prod.us-west2.twitch.tv
twitch.tv
jp.blog.twitch.tv
it.blog.twitch.tv
imgix4.map.fastly.net
blog.twitch.tv
tv.twitch.tv
dns-vetting1f.map.fastly.net
imgix4.map.fastly.net
devstatus.twitch.tv
panels-images-staging.twitch.tv
devstatus.twitch.tv
prod.25.slot.cdn.salesforce-communities.com
m.twitch.tv
dns-vetting1f.map.fastly.net
*.twitch.tv
prod.25.slot.cdn.salesforce-communities.com
twitch.map.fastly.net
bemol-status.linxcommerce.com.br
assets.help.twitch.tv
twitch.tv
countess.twitch.tv
na85-1.cdn.salesforce-communities.com
statuspage.io
statuspage.io
tr.blog.twitch.tv
statuspage.io
spade.twitch.tv
assets.help.twitch.tv
*.pubsub-edge.twitch.tv
statuspage.io
id-cdn.twitch.tv
devstatus.twitch.tv
na85-1.cdn.salesforce-communities.com
*.chat.twitch.tv
twitch.tv
extensions-discovery-images.twitch.tv
twitch.tv
vmetric.twitch.tv
tv.twitch.tv
internal.passport.twitch.tv
connections.prod.internal.us-west-2.twitch.tv
cartman.staging.internal.us-west-2.twitch.tv
devstatus.twitch.tv
na85-1.cdn.salesforce-communities.com
*.twitch.tv
pubsub-edge-darklaunch.twitch.tv
uploads.twitch.tv
prod.25.slot.cdn.salesforce-communities.com
data.us-west-2.di.xarth.tv
dns-vetting1f.map.fastly.net
tv.twitch.tv
devstatus.twitch.tv
bemol-status.linxcommerce.com.br
id-cdn.twitch.tv
dns-vetting1f.map.fastly.net
cis.blog.twitch.tv
na75-2.cdn.salesforce-communities.com
twitchboard-prod.twitch.tv
devstatus.twitch.tv
bemol-status.linxcommerce.com.br
panels-images-prod.twitch.tv
extensions.sings.twitch.tv
dev.twitch.tv
compass.networkstatus.co.nz
blueprint.us-west-2.di.xarth.tv
*.darklaunch.tmi-room.twitch.a2z.com
discourse.design.twitch.tv
na85-1.cdn.salesforce-communities.com
watch.twitch.tv
*.staging.us-west2.twitch.tv
contributorstatus.crowdflower.com
devstatus.twitch.tv
*.staging.irc-edge.twitch.a2z.com
prod.25.slot.cdn.salesforce-communities.com
passport.twitch.tv
fr.blog.twitch.tv
dev.passport.twitch.a2z.com
extensions-discovery-images.twitch.tv
*.twitch.tv
vmetric.twitch.tv
dns-vetting1f.map.fastly.net
bemol-status.linxcommerce.com.br
id-cdn.twitch.tv
m.twitch.tv
fr.blog.twitch.tv
na85-1.cdn.salesforce-communities.com
link.twitch.tv
watch.twitch.tv
assets.help.twitch.tv
origin.edge-beta.ads.twitch.tv
imgix4.map.fastly.net
pubsub-edge-darklaunch.twitch.tv
gds-vhs-drops-campaign-images.twitch.tv
prod.25.slot.cdn.salesforce-communities.com
dragonfly.twitch.tv
Certificate
The complete raw certificate details for *.pubsub-edge.twitch.tv in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/DCCBOSgAwIBAgIQCsF5XddXynzsqf6yb8z/xTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMTA1MjcwMDAwMDBaFw0yMjA2MjUy MzU5NTlaMCIxIDAeBgNVBAMMFyoucHVic3ViLWVkZ2UudHdpdGNoLnR2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2obuodlJUFYLPkATzDa5ZypE8/zW f9VBs35XuEnzmn+lDH8Hho+SIY3HHLeMF4jHhF2L8Uu9MrQx6N//kMwFKDtLVGw3 jIG2As0GSo79YeJXUQKihTfemE6AKwTSKnydJgknFlX+oHyaxWM/md+zlbYTznGX Y+wdR/fIgCWg2d97dDfGH5Zt8wfXsotV2309tX5pTMWEkDqRREG6RECe1KxTpTeb xnp5GPc1mTds2fpaNhyLI2ZSXDhCKyYSOCzpSXRnux+6RH8xDGajURsJWQ4JzzvR qOkuAVUTbeHuKYd+Y/HvvtMqPrhdHOvWWEIxVu2OB0fDHAI1uhIuiOC58wIDAQAB o4IDCDCCAwQwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0O BBYEFFdNfkFPfYzgCUtntsdpxM37jUpOMDkGA1UdEQQyMDCCFyoucHVic3ViLWVk Z2UudHdpdGNoLnR2ghVwdWJzdWItZWRnZS50d2l0Y2gudHYwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCg LqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcmww EwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzAB hiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKG Kmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNV HRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgApeb7wnjk5IfBW c59jpXflvld9nGAK+PlNXSZcJV3HhAAAAXmrNEHcAAAEAwBHMEUCIQCK7PRlpCxQ cCDanijyXCQKQwVeMtf9LPFZ+fvchci27wIgM1KSj8yCDW9djS3Df1fp+AFp5cIq C4mvCpcry6e9teQAdgAiRUUHWVUkVpY/oS/x922G4CMmY63AS39dxoNcbuIPAgAA AXmrNEIqAAAEAwBHMEUCIQC5cM00KLQR03xtJv4FwVZCFjRKTibXyGCpSRrMftpO 9wIga0upyhYiINmSjtDPXKmAX1RNM9/3DfgyITFC0ErLN6kAdwBByMqx3yJGShDG oToJQodeTjGLGwPr60vHaPCQYpYG9gAAAXmrNEHLAAAEAwBIMEYCIQDdAzbVcP+3 fHL1idcja+RZTkcMwiTiOIwNF2K688NvBQIhAOHutFQ0YrLJQ1Lalghn005F1j/h stORxilJ4f92QAaUMA0GCSqGSIb3DQEBCwUAA4IBAQBmc6ejWbHhbctTr3W4MppJ /cxG+yvqWCOIoQQ61YG3MNmF4sJhwGiT+sCj06zX+IiDkFqyCl/NEgxrsBIJdLm5 7uLyoEw5wouPaSxjLFStwCjRYmbEuvRmPA1Rgf/pXIL0rc6YkvKiZ3a0QK0lkeiz 0Ez32Jf+vfI7mjsLAivHlAUtiAVSrWVYuT1FPb3akTYDohgvnOSsGuZPZCGjUf6V yocTzHc5h0TeMtZ0Y2iD4ZYNUanD8DZLoMIvSot/O3Wug3HT7gdOTchsfD2XbW8p U66ooK0BwtXCVxm4YWQmWUMkbGR5VnucmvXHIAj77K1IAeC6HqnHeP7pPZICJeYU -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2obuodlJUFYLPkATzDa5 ZypE8/zWf9VBs35XuEnzmn+lDH8Hho+SIY3HHLeMF4jHhF2L8Uu9MrQx6N//kMwF KDtLVGw3jIG2As0GSo79YeJXUQKihTfemE6AKwTSKnydJgknFlX+oHyaxWM/md+z lbYTznGXY+wdR/fIgCWg2d97dDfGH5Zt8wfXsotV2309tX5pTMWEkDqRREG6RECe 1KxTpTebxnp5GPc1mTds2fpaNhyLI2ZSXDhCKyYSOCzpSXRnux+6RH8xDGajURsJ WQ4JzzvRqOkuAVUTbeHuKYd+Y/HvvtMqPrhdHOvWWEIxVu2OB0fDHAI1uhIuiOC5 8wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14296854857972946020424059040029278149 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.pubsub-edge.twitch.tv' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27586488009162411382410966481005894612548077328821095808917966239025005036222231688420430558757219530593734710904664446547260911076449555049671790442128819144253485355214688812289042048467578832612729154505592742043188544385359798409273727420585761128602743884661957990951398654496552414445215578963065553216812829332770528306311887291610541549116270953246467284836752452813363654997446021695123589257059585363359310239460809117438550339730384730024229464125914680887334785337600453344731487553132637704345232166907721407214752623473568923370765105599722746708798111760579539229879418414606464703269226036023303125491 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 574d7e414f7d8ce0094b67b6c769c4cdfb8d4a4e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pubsub-edge.twitch.tv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pubsub-edge.twitch.tv' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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