designerapp.officeapps.live.com

- Microsoft Corporation -

Issued by Microsoft Azure TLS Issuing CA 02

About this certificate

This digital certificate with serial number 33:00:8e:65:2b:c7:97:78:82:85:da:31:08:00:00:00:8e:65:2b was issued on by Microsoft Corporation.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Microsoft Corporation

Organization: Microsoft Corporation
State / Province: WA
Locality: Redmond
Country: US

Microsoft Corporation

Organization: Microsoft Corporation
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 33:00:8e:65:2b:c7:97:78:82:85:da:31:08:00:00:00:8e:65:2b
Serial Number (int): 1137386459700509092933294153516801985367401771
Serial Number lenght: 150 bits, 19 octets

SubjectKeyId: 93:90:93:b9:40:2d:49:84:a5:aa:c3:eb:19:06:02:97:28:b3:a6:2a
AuthorityKeyId: 00:ab:91:fc:21:62:26:97:9a:a8:79:1b:61:41:90:60:a9:62:67:fd

Fingerprint (sha1): 9f:a2:fc:45:45:5b:cf:35:e2:74:a2:4d:01:f9:b8:b0:56:06:1b:02
Fingerprint (sha256): 04:71:99:83:c9:72:a1:0c:df:34:3a:e7:ce:0c:fa:02:5d:11:49:da:c2:1b:18:f6:12:4c:1d:67:76:70:fc:c1

Issuing Certificate URL: http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2002%20-%20xsign.crt

Revocation information

OCSP Server: http://oneocsp.microsoft.com/ocsp
CRL Distribution Point: http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2002.crl

Check the revocation status for certificate designerapp.officeapps.live.com

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for designerapp.officeapps.live.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA384 with RSA

Key Usage

Digital Signature
Key Encipherment
Data Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

12 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

designerapp.officeapps.live.com
*.designerapp.officeapps.live.com
designer.microsoft.com

Other certificates including the domain name live.com

(limited to 100 certificates)
client.hip.live.com
config.edog.officeapps.live.com
outlook-fd-0009.live.com
sa5gl.wpc.edgecastcdn.net
ssl.chinanetcenter.com
officeapps.live.com
odc.edog.officeapps.live.com
blu196.mail.live.com
reporting.fss.live.com
sdx.microsoft.com
*.gateway.messenger.live.com
mrodevicemgr.edog.officeapps.live.com
storage.live.com
settings.familysafety.microsoft.com
sa9gl.wpc.edgecastcdn.net
login.live.com
outlook.com
images.partner.windowsphone.com
graph.windows.net
odc.officeapps.live.com
account.microsoft.com
teamsopenaisvc.prod.teams.live.com
*.ra.live.com
hololens-surfacehub-prod.auth.partner.hip.live.com
groups.prod.teams.live.com
ssw.live.com
ssl.chinanetcenter.com
present.edog.officeapps.live.com
ssl.chinanetcenter.com
ssl.chinanetcenter.com
fpt.microsoft.com
config.edog.officeapps.live.com
graph.windows.net
chatsvcagg.teams.microsoft.com
graph.windows.net
store.office.com
graph.windows.net
outlook-fd-0007.live.com
storage.live.com
outlook.com
fpt.microsoft.com
pptcts.officeapps.live.com
outlook-fd-0009.live.com
client.hip.live.com
uci.edog.officeapps.live.com
outlook.com
graph.windows.net
support.office.com
mail.live.com
graph.windows.net
wordwrs.edog.officeapps.live.com
*.domains.live.com
sa167gl.wpc.edgecastcdn.net
sa54gl.wpc.edgecastcdn.net
middletier.prod.teams.live.com
pptmobius.officeapps.live.com
*.vo.msecnd.net
virtualearth.at
excelcs.officeapps.live.com
sendersupport.olc.protection.outlook.com
login.live-int.com
middletier.nonprod.teams.live.com
wordcs.edog.officeapps.live.com
graph.windows.net
g.msn.com
imgw.live.com
graph.windows.net
login.live-int.com
groups.prod.teams.live.com
outlook.live.com
*.maps.live.com
c2rsetup.edog.officeapps.live.com
profile-df.live.com
storage.live.com
shim.hip.live.com
outlook-fd-0009.live.com
account.live.com
www.multimap.com
graph.windows.net
client.hip.live.com
*.storage.msn.com
notifsvc.nonprod.teams.live.com
outlook.com
groups.prod.teams.live.com
ocws.officeapps.live.com
designerapp.officeapps.live.com
graph.windows.net
login.live.com
sa146gl.wpc.edgecastcdn.net
support.office.com
pptwrs.officeapps.live.com
config.officeapps.live.com
login.live.com
authsvc.nonprod.teams.live.com
outlook.com
mail.live.com
sa54gl.wpc.edgecastcdn.net
uci.officeapps.live.com
account.live.com
d.sfx-df.ms

Certificate

The complete raw certificate details for designerapp.officeapps.live.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7jotCaIIDAjjV7Vk2Ty2
8mEtbQ7AgEWSsCDW0ghUntXG7GHXmrfVi4RykJ3/f/Ysrv1KZgVm9wpMotkBwicP
9y2BchuCd2oHtUbCjZsf0pk3x/S3Y3d1eFhEcNnWc4nwibBSQHiyEAeNz4qG+Tfe
23tqyAJsOhmp+EP0u1NnHTcQ7JOICV1TxDyPUKRD6ak4TSEmdyy2rrbAXrPMf7ox
JJqw98cFTyatHGJ3qz2U1RLtuWvJ8x/SgY94c6+3/FzRLhEjgp3w8VBrOdZF8ey8
kn3dK7lenYkRMv/KOiURFRdhSRvwvgjT0HJ4EMzM3fXuGYGuTuEGbTC8aT+aeXTy
WQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 1137386459700509092933294153516801985367401771
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Azure TLS Issuing CA 02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-31 06:47:02 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-26 06:47:02 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'designerapp.officeapps.live.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30073404201337799007429808251642272763400737038860110158030615946791120791309135880007918011769517942621871660751748489056887413178972801402897669973464751588627315318830184848673109967092324514217200735717775085906107963363173070028226499456497431912284346958006929232346734444184050004731717942438589176243864789956120930340390711420009137705421438368815978998024506394346950821422976704910867729014198196757183936410769300863029188254421537358345361121680432783663799874978929400242790840672531054144240146197367912134222413930544279750901130613783085179528724877744027100931495777966558724529643404770875551314521
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							0168007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000186069d6b3c0000040300483046022100f5eed0aebcb1ce60d1c549b75b8120ccfe8bc3021f05e2cfa4dd3f12e7822303022100a7a5e09485f8646e576bb99bd6f20b4fbae7fbc7d2ce0165250b572b14067189007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab00000186069d6b4e0000040300473045022100d0cba4efda97e769fe21fadd790aec72aa64010188a895d5e0c3ad298e71f62d022054d031dbcb1b1ee40e78e09127b74b1c063cd085c7d33d55885672c54b3a0b6800750073d99e891b4c9678a0207d479de6b2c61cd0515e71192a8c6b80107ac17772b500000186069d6baf0000040300463044022006734c7b6a61c7ab5d99045248b7f3c1ea40309374bb162fd5e35e79a0dd34be02206264495be3d70798b44379d07a0363ff54c6bd2b966d270e7e9c35acf9723e4f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.15690651.3798470.4214446.239628.16526621.93.4272873.6083518
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 37
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (161 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2002%20-%20xsign.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://oneocsp.microsoft.com/ocsp'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							939093b9402d4984a5aac3eb1906029728b3a62a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits)
							04b0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'designerapp.officeapps.live.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.designerapp.officeapps.live.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'designer.microsoft.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2002.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.76.509.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pkiops/Docs/Repository.htm'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 00ab91fc216226979aa8791b61419060a96267fd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		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