designerapp.officeapps.live.com
- Microsoft Corporation -
Issued by Microsoft Azure TLS Issuing CA 02
About this certificate
This digital certificate with serial number 33:00:8e:65:2b:c7:97:78:82:85:da:31:08:00:00:00:8e:65:2b was issued on by Microsoft Corporation.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Microsoft Corporation
Organization:
Microsoft Corporation
State / Province:
WA
Locality: Redmond
Country: US
Locality: Redmond
Country: US
Microsoft Corporation
Organization:
Microsoft Corporation
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 33:00:8e:65:2b:c7:97:78:82:85:da:31:08:00:00:00:8e:65:2bSerial Number (int): 1137386459700509092933294153516801985367401771
Serial Number lenght: 150 bits, 19 octets
SubjectKeyId: 93:90:93:b9:40:2d:49:84:a5:aa:c3:eb:19:06:02:97:28:b3:a6:2a
AuthorityKeyId: 00:ab:91:fc:21:62:26:97:9a:a8:79:1b:61:41:90:60:a9:62:67:fd
Fingerprint (sha1): 9f:a2:fc:45:45:5b:cf:35:e2:74:a2:4d:01:f9:b8:b0:56:06:1b:02
Fingerprint (sha256): 04:71:99:83:c9:72:a1:0c:df:34:3a:e7:ce:0c:fa:02:5d:11:49:da:c2:1b:18:f6:12:4c:1d:67:76:70:fc:c1
Issuing Certificate URL: http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2002%20-%20xsign.crt
Revocation information
OCSP Server: http://oneocsp.microsoft.com/ocspCRL Distribution Point: http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2002.crl
Check the revocation status for certificate designerapp.officeapps.live.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for designerapp.officeapps.live.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
12 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
designerapp.officeapps.live.com
*.designerapp.officeapps.live.com
designer.microsoft.com
*.designerapp.officeapps.live.com
designer.microsoft.com
Other certificates including the domain name live.com
(limited to 100 certificates)
client.hip.live.com
config.edog.officeapps.live.com
outlook-fd-0009.live.com
sa5gl.wpc.edgecastcdn.net
ssl.chinanetcenter.com
officeapps.live.com
odc.edog.officeapps.live.com
blu196.mail.live.com
reporting.fss.live.com
sdx.microsoft.com
*.gateway.messenger.live.com
mrodevicemgr.edog.officeapps.live.com
storage.live.com
settings.familysafety.microsoft.com
sa9gl.wpc.edgecastcdn.net
login.live.com
outlook.com
images.partner.windowsphone.com
graph.windows.net
odc.officeapps.live.com
account.microsoft.com
teamsopenaisvc.prod.teams.live.com
*.ra.live.com
hololens-surfacehub-prod.auth.partner.hip.live.com
groups.prod.teams.live.com
ssw.live.com
ssl.chinanetcenter.com
present.edog.officeapps.live.com
ssl.chinanetcenter.com
ssl.chinanetcenter.com
fpt.microsoft.com
config.edog.officeapps.live.com
graph.windows.net
chatsvcagg.teams.microsoft.com
graph.windows.net
store.office.com
graph.windows.net
outlook-fd-0007.live.com
storage.live.com
outlook.com
fpt.microsoft.com
pptcts.officeapps.live.com
outlook-fd-0009.live.com
client.hip.live.com
uci.edog.officeapps.live.com
outlook.com
graph.windows.net
support.office.com
mail.live.com
graph.windows.net
wordwrs.edog.officeapps.live.com
*.domains.live.com
sa167gl.wpc.edgecastcdn.net
sa54gl.wpc.edgecastcdn.net
middletier.prod.teams.live.com
pptmobius.officeapps.live.com
*.vo.msecnd.net
virtualearth.at
excelcs.officeapps.live.com
sendersupport.olc.protection.outlook.com
login.live-int.com
middletier.nonprod.teams.live.com
wordcs.edog.officeapps.live.com
graph.windows.net
g.msn.com
imgw.live.com
graph.windows.net
login.live-int.com
groups.prod.teams.live.com
outlook.live.com
*.maps.live.com
c2rsetup.edog.officeapps.live.com
profile-df.live.com
storage.live.com
shim.hip.live.com
outlook-fd-0009.live.com
account.live.com
www.multimap.com
graph.windows.net
client.hip.live.com
*.storage.msn.com
notifsvc.nonprod.teams.live.com
outlook.com
groups.prod.teams.live.com
ocws.officeapps.live.com
designerapp.officeapps.live.com
graph.windows.net
login.live.com
sa146gl.wpc.edgecastcdn.net
support.office.com
pptwrs.officeapps.live.com
config.officeapps.live.com
login.live.com
authsvc.nonprod.teams.live.com
outlook.com
mail.live.com
sa54gl.wpc.edgecastcdn.net
uci.officeapps.live.com
account.live.com
d.sfx-df.ms
config.edog.officeapps.live.com
outlook-fd-0009.live.com
sa5gl.wpc.edgecastcdn.net
ssl.chinanetcenter.com
officeapps.live.com
odc.edog.officeapps.live.com
blu196.mail.live.com
reporting.fss.live.com
sdx.microsoft.com
*.gateway.messenger.live.com
mrodevicemgr.edog.officeapps.live.com
storage.live.com
settings.familysafety.microsoft.com
sa9gl.wpc.edgecastcdn.net
login.live.com
outlook.com
images.partner.windowsphone.com
graph.windows.net
odc.officeapps.live.com
account.microsoft.com
teamsopenaisvc.prod.teams.live.com
*.ra.live.com
hololens-surfacehub-prod.auth.partner.hip.live.com
groups.prod.teams.live.com
ssw.live.com
ssl.chinanetcenter.com
present.edog.officeapps.live.com
ssl.chinanetcenter.com
ssl.chinanetcenter.com
fpt.microsoft.com
config.edog.officeapps.live.com
graph.windows.net
chatsvcagg.teams.microsoft.com
graph.windows.net
store.office.com
graph.windows.net
outlook-fd-0007.live.com
storage.live.com
outlook.com
fpt.microsoft.com
pptcts.officeapps.live.com
outlook-fd-0009.live.com
client.hip.live.com
uci.edog.officeapps.live.com
outlook.com
graph.windows.net
support.office.com
mail.live.com
graph.windows.net
wordwrs.edog.officeapps.live.com
*.domains.live.com
sa167gl.wpc.edgecastcdn.net
sa54gl.wpc.edgecastcdn.net
middletier.prod.teams.live.com
pptmobius.officeapps.live.com
*.vo.msecnd.net
virtualearth.at
excelcs.officeapps.live.com
sendersupport.olc.protection.outlook.com
login.live-int.com
middletier.nonprod.teams.live.com
wordcs.edog.officeapps.live.com
graph.windows.net
g.msn.com
imgw.live.com
graph.windows.net
login.live-int.com
groups.prod.teams.live.com
outlook.live.com
*.maps.live.com
c2rsetup.edog.officeapps.live.com
profile-df.live.com
storage.live.com
shim.hip.live.com
outlook-fd-0009.live.com
account.live.com
www.multimap.com
graph.windows.net
client.hip.live.com
*.storage.msn.com
notifsvc.nonprod.teams.live.com
outlook.com
groups.prod.teams.live.com
ocws.officeapps.live.com
designerapp.officeapps.live.com
graph.windows.net
login.live.com
sa146gl.wpc.edgecastcdn.net
support.office.com
pptwrs.officeapps.live.com
config.officeapps.live.com
login.live.com
authsvc.nonprod.teams.live.com
outlook.com
mail.live.com
sa54gl.wpc.edgecastcdn.net
uci.officeapps.live.com
account.live.com
d.sfx-df.ms
Certificate
The complete raw certificate details for designerapp.officeapps.live.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIrjCCBpagAwIBAgITMwCOZSvHl3iChdoxCAAAAI5lKzANBgkqhkiG9w0BAQwF ADBZMQswCQYDVQQGEwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9u MSowKAYDVQQDEyFNaWNyb3NvZnQgQXp1cmUgVExTIElzc3VpbmcgQ0EgMDIwHhcN MjMwMTMxMDY0NzAyWhcNMjQwMTI2MDY0NzAyWjB2MQswCQYDVQQGEwJVUzELMAkG A1UECBMCV0ExEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBD b3Jwb3JhdGlvbjEoMCYGA1UEAxMfZGVzaWduZXJhcHAub2ZmaWNlYXBwcy5saXZl LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAO46LQmiCAwI41e1 ZNk8tvJhLW0OwIBFkrAg1tIIVJ7Vxuxh15q31YuEcpCd/3/2LK79SmYFZvcKTKLZ AcInD/ctgXIbgndqB7VGwo2bH9KZN8f0t2N3dXhYRHDZ1nOJ8ImwUkB4shAHjc+K hvk33tt7asgCbDoZqfhD9LtTZx03EOyTiAldU8Q8j1CkQ+mpOE0hJncstq62wF6z zH+6MSSasPfHBU8mrRxid6s9lNUS7blryfMf0oGPeHOvt/xc0S4RI4Kd8PFQaznW RfHsvJJ93Su5Xp2JETL/yjolERUXYUkb8L4I09ByeBDMzN317hmBrk7hBm0wvGk/ mnl08lkCAwEAAaOCBFAwggRMMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdwDu zdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYYGnWs8AAAEAwBIMEYC IQD17tCuvLHOYNHFSbdbgSDM/ovDAh8F4s+k3T8S54IjAwIhAKel4JSF+GRuV2u5 m9byC0+65/vH0s4BZSULVysUBnGJAHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0 vaQ9MEjX+6sAAAGGBp1rTgAABAMARzBFAiEA0Muk79qX52n+IfrdeQrscqpkAQGI qJXV4MOtKY5x9i0CIFTQMdvLGx7kDnjgkSe3SxwGPNCFx9M9VYhWcsVLOgtoAHUA c9meiRtMlnigIH1HneayxhzQUV5xGSqMa4AQesF3crUAAAGGBp1rrwAABAMARjBE AiAGc0x7amHHq12ZBFJIt/PB6kAwk3S7Fi/V4155oN00vgIgYmRJW+PXB5i0Q3nQ egNj/1TGvSuWbScOfpw1rPlyPk8wJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcD AjAKBggrBgEFBQcDATA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3FQiHvdcbgefr RoKBnS6O0AyH8NodXYKE5WmC86c+AgFkAgElMIGuBggrBgEFBQcBAQSBoTCBnjBt BggrBgEFBQcwAoZhaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0 cy9NaWNyb3NvZnQlMjBBenVyZSUyMFRMUyUyMElzc3VpbmclMjBDQSUyMDAyJTIw LSUyMHhzaWduLmNydDAtBggrBgEFBQcwAYYhaHR0cDovL29uZW9jc3AubWljcm9z b2Z0LmNvbS9vY3NwMB0GA1UdDgQWBBSTkJO5QC1JhKWqw+sZBgKXKLOmKjAOBgNV HQ8BAf8EBAMCBLAwZQYDVR0RBF4wXIIfZGVzaWduZXJhcHAub2ZmaWNlYXBwcy5s aXZlLmNvbYIhKi5kZXNpZ25lcmFwcC5vZmZpY2VhcHBzLmxpdmUuY29tghZkZXNp Z25lci5taWNyb3NvZnQuY29tMAwGA1UdEwEB/wQCMAAwZAYDVR0fBF0wWzBZoFeg VYZTaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jcmwvTWljcm9zb2Z0 JTIwQXp1cmUlMjBUTFMlMjBJc3N1aW5nJTIwQ0ElMjAwMi5jcmwwZgYDVR0gBF8w XTBRBgwrBgEEAYI3TIN9AQEwQTA/BggrBgEFBQcCARYzaHR0cDovL3d3dy5taWNy b3NvZnQuY29tL3BraW9wcy9Eb2NzL1JlcG9zaXRvcnkuaHRtMAgGBmeBDAECAjAf BgNVHSMEGDAWgBQAq5H8IWIml5qoeRthQZBgqWJn/TAdBgNVHSUEFjAUBggrBgEF BQcDAgYIKwYBBQUHAwEwDQYJKoZIhvcNAQEMBQADggIBAHR7GNwXvuIVaRZaZS7K amO7gIf+Hw2PSFppMAZCok/HGh3Eh/T9GBeqbZxkdGInqqkLQqqxPjwtUr2y95Y7 1kBeILxqh+2vu9JqH8ZF6awippcy1Wv2gZ1k95SxvhuehppnRpLnA1atk+dWKjkU eOx6c4DZF7ZOG3trhZU16SltsnwV3X9TfwH4oKoRmc72d+nuEiQJpw4GLiSrPOzy iVCu1b5zVqagpPumEXkxPKTOBITt9ixx95HfPhw7qNDVs3NbLfhz6Ey7GBo0525v 4XO/bslf1XwKFDO8R95cgn51u7n/WdTRnNuQh1CjTaY3zDFL6Ymy7t3xzoOmca9a m/akL337OYK2GE1qkjZwYKV5LTto5csP/fuTpmkWqWCeLS/O0Y0lc/tq1bfqr1dZ L4zwZOteGIBjDqRQxcrRwcWaBo88HG8XCAreqyz5mzwD1ibSoElZozHY2chKMNSU g5Yj+z3qSD2tpATalSrQppHmLkc0iafGo3DDd3iyNwjU/WCPPeIwVXQJ+EFsbzwP qq+gt6w62ny1WFohjY4sND0+ZQGo0MFjczAZnqRWM/Y2C//tJfY1RtyAIk1cuCWG peevzdTAdrOC4h0cbdvlHL6+AwK4Nnbq8YCnhiSDDmNPKd6jNGp3dRZoJrGSc0/u 3UnG2lwuuFa7MpRgNJufTL3C -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7jotCaIIDAjjV7Vk2Ty2 8mEtbQ7AgEWSsCDW0ghUntXG7GHXmrfVi4RykJ3/f/Ysrv1KZgVm9wpMotkBwicP 9y2BchuCd2oHtUbCjZsf0pk3x/S3Y3d1eFhEcNnWc4nwibBSQHiyEAeNz4qG+Tfe 23tqyAJsOhmp+EP0u1NnHTcQ7JOICV1TxDyPUKRD6ak4TSEmdyy2rrbAXrPMf7ox JJqw98cFTyatHGJ3qz2U1RLtuWvJ8x/SgY94c6+3/FzRLhEjgp3w8VBrOdZF8ey8 kn3dK7lenYkRMv/KOiURFRdhSRvwvgjT0HJ4EMzM3fXuGYGuTuEGbTC8aT+aeXTy WQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1137386459700509092933294153516801985367401771 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Azure TLS Issuing CA 02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-31 06:47:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-26 06:47:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'designerapp.officeapps.live.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30073404201337799007429808251642272763400737038860110158030615946791120791309135880007918011769517942621871660751748489056887413178972801402897669973464751588627315318830184848673109967092324514217200735717775085906107963363173070028226499456497431912284346958006929232346734444184050004731717942438589176243864789956120930340390711420009137705421438368815978998024506394346950821422976704910867729014198196757183936410769300863029188254421537358345361121680432783663799874978929400242790840672531054144240146197367912134222413930544279750901130613783085179528724877744027100931495777966558724529643404770875551314521 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.15690651.3798470.4214446.239628.16526621.93.4272873.6083518 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 37 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (161 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2002%20-%20xsign.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://oneocsp.microsoft.com/ocsp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 939093b9402d4984a5aac3eb1906029728b3a62a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'designerapp.officeapps.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.designerapp.officeapps.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'designer.microsoft.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2002.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.76.509.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pkiops/Docs/Repository.htm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 00ab91fc216226979aa8791b61419060a96267fd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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