graph.windows.net
Issued by Microsoft IT TLS CA 2
About this certificate
This digital certificate with serial number 20:00:05:16:8e:94:1d:c3:6e:71:3e:64:fd:00:00:00:05:16:8e was issued on by Microsoft Corporation.
With 59 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=graph.windows.net
Microsoft Corporation
Organization:
Microsoft Corporation
Organization unit: Microsoft IT
Organization unit: Microsoft IT
State / Province:
Washington
Locality: Redmond
Country: US
Locality: Redmond
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 20:00:05:16:8e:94:1d:c3:6e:71:3e:64:fd:00:00:00:05:16:8eSerial Number (int): 713625577748140761122701923328971961266411150
Serial Number lenght: 150 bits, 19 octets
SubjectKeyId: b1:33:9c:be:fa:20:ee:35:48:57:ac:68:5f:02:ce:6d:eb:11:5f:85
AuthorityKeyId: 91:9e:3b:44:6c:3d:57:9c:42:77:2a:34:d7:4f:d1:cc:4a:97:2c:da
Fingerprint (sha1): 8f:de:07:a5:92:f7:0e:52:e7:b4:cd:49:57:f0:45:82:41:28:b9:0a
Fingerprint (sha256): 04:81:19:9d:a6:b2:36:41:92:cd:ee:67:44:53:93:5a:d4:db:9d:a6:6f:4a:4b:3e:3f:fa:44:93:69:1f:b4:96
Issuing Certificate URL: http://www.microsoft.com/pki/mscorp/Microsoft%20IT%20TLS%20CA%202.crt
Revocation information
OCSP Server: http://ocsp.msocsp.comCRL Distribution Point: http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%202.crl
CRL Distribution Point: http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%202.crl
Check the revocation status for certificate graph.windows.net
59
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for graph.windows.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.accesscontrol.windows.net
*.accesscontrol.windows-ppe.net
*.b2clogin.com
*.cpim.windows.net
*.microsoftaik.azure.net
*.microsoftaik-int.azure-int.net
*.windows-ppe.net
aadg.windows.net
aadgv6.ppe.windows.net
aadgv6.windows.net
account.live.com
account.live-int.com
api.password.ccsctp.com
api.passwordreset.microsoftonline.com
autologon.microsoftazuread-sso.com
becws.ccsctp.com
clientconfig.microsoftonline-p.net
clientconfig.microsoftonline-p-int.net
companymanager.ccsctp.com
companymanager.microsoftonline.com
cpim.windows.net
device.login.microsoftonline.com
device.login.windows-ppe.net
directoryproxy.ppe.windows.net
directoryproxy.windows.net
graph.ppe.windows.net
graph.windows.net
graphstore.windows.net
login.live.com
login.live-int.com
login.microsoft.com
login.microsoftonline.com
login.microsoftonline-p.com
login.microsoftonline-pst.com
login.microsoft-ppe.com
login.windows.net
logincert.microsoftonline.com
logincert.microsoftonline-int.com
login-us.microsoftonline.com
microsoftaik.azure.net
microsoftaik-int.azure-int.net
nexus.microsoftonline-p.com
nexus.microsoftonline-p-int.com
pas.windows.net
pas.windows-ppe.net
password.ccsctp.com
passwordreset.activedirectory.windowsazure.us
passwordreset.microsoftonline.com
provisioning.microsoftonline.com
signup.live.com
signup.live-int.com
sts.windows.net
xml.login.live.com
xml.login.live-int.com
*.login.microsoftonline.com
login.microsoftonline-int.com
accesscontrol.aadtst3.windows-int.net
*.accesscontrol.aadtst3.windows-int.net
api.login.microsoftonline.com
*.accesscontrol.windows-ppe.net
*.b2clogin.com
*.cpim.windows.net
*.microsoftaik.azure.net
*.microsoftaik-int.azure-int.net
*.windows-ppe.net
aadg.windows.net
aadgv6.ppe.windows.net
aadgv6.windows.net
account.live.com
account.live-int.com
api.password.ccsctp.com
api.passwordreset.microsoftonline.com
autologon.microsoftazuread-sso.com
becws.ccsctp.com
clientconfig.microsoftonline-p.net
clientconfig.microsoftonline-p-int.net
companymanager.ccsctp.com
companymanager.microsoftonline.com
cpim.windows.net
device.login.microsoftonline.com
device.login.windows-ppe.net
directoryproxy.ppe.windows.net
directoryproxy.windows.net
graph.ppe.windows.net
graph.windows.net
graphstore.windows.net
login.live.com
login.live-int.com
login.microsoft.com
login.microsoftonline.com
login.microsoftonline-p.com
login.microsoftonline-pst.com
login.microsoft-ppe.com
login.windows.net
logincert.microsoftonline.com
logincert.microsoftonline-int.com
login-us.microsoftonline.com
microsoftaik.azure.net
microsoftaik-int.azure-int.net
nexus.microsoftonline-p.com
nexus.microsoftonline-p-int.com
pas.windows.net
pas.windows-ppe.net
password.ccsctp.com
passwordreset.activedirectory.windowsazure.us
passwordreset.microsoftonline.com
provisioning.microsoftonline.com
signup.live.com
signup.live-int.com
sts.windows.net
xml.login.live.com
xml.login.live-int.com
*.login.microsoftonline.com
login.microsoftonline-int.com
accesscontrol.aadtst3.windows-int.net
*.accesscontrol.aadtst3.windows-int.net
api.login.microsoftonline.com
Other certificates including the domain name windows.net
(limited to 100 certificates)
tr522.westeurope1-a.worker.database.windows.net
ma.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-mwh-1e0d2a21-api.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
ams-ts05-1-hos-rest-1-1.cloudapp.net
enc.p.azurewebsites.windows.net
tr1225.southcentralus1-a.worker.database.windows.net
testonly.secretstore.windows.net
waws-prod-bay-55440bad.publish.p.azurewebsites.windows.net
readonly-tr4659.eastus1-a.worker.database.windows.net
waws-prod-bay-e21e34c0-api.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
tr1037.eastus1-a.worker.database.windows.net
*.store.core.windows.net
ams-ts46-1-hos-rest-1-1.cloudapp.net
metricsclient.geneva.core.windows.net
tr1075.westus2-a.worker.database.windows.net
*.blob.core.windows.net
*.sds-diagnostics.store.core.windows.net
waws-prod-am2-da5883af-api.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
waws-prod-am2-c0d608da-api.p.azurewebsites.windows.net
tr455.australiasoutheast1-a.worker.database.windows.net
waws-prod-blu-df231187.publish.p.azurewebsites.windows.net
waws-prod-bay-6f6e9dfa.state.p.azurewebsites.windows.net
waws-prod-hk1-8db07b87-api.p.azurewebsites.windows.net
tr1686.northeurope1-a.worker.database.windows.net
BN2B.agent.core.windows.net
metricsclient.geneva.core.windows.net
DM3.agent.core.windows.net
tr354.australiaeast1-a.control.database.windows.net
waws-prod-sy3-fb5d9039-api.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-ch1-3955dc27.publish.p.azurewebsites.windows.net
waws-prod-yt1-982c2880.publish.p.azurewebsites.windows.net
waws-prod-mwh-37f9bd5f.publish.p.azurewebsites.windows.net
waws-prod-am2-013.publish.azurewebsites.windows.net
tr469.australiaeast1-a.worker.database.windows.net
tr1348.westus1-a.worker.database.windows.net
waws-prod-bn1-009.state.azurewebsites.windows.net
tr409.westeurope1-a.worker.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-mwh-cbf02dd4.publish.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
3f7611921e87.database.windows.net
metricsclient.geneva.core.windows.net
testonly.secretstore.windows.net
cpim.windows.net
ams-ts61-1-hos-rest-1-1.cloudapp.net
40b5d28d821e.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-sy3-87a8eac9.state.p.azurewebsites.windows.net
waws-prod-pn1-e4d07c21.api.p.azurewebsites.windows.net
waws-prod-bn1-e45ca43e-api.p.azurewebsites.windows.net
*.blob.core.windows.net
testonly.secretstore.windows.net
gwpdctosf-d9afa021808b.worker.database.windows.net
testonly.secretstore.windows.net
tr976.centralus1-a.worker.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-am2-04f0829f.publish.p.azurewebsites.windows.net
waws-prod-db3-a4287263.api.p.azurewebsites.windows.net
waws-prod-am2-6c285c27.publish.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
*.stream-diagnostics.store.core.windows.net
testonly.secretstore.windows.net
SN3P.agent.core.windows.net
enc.p.azurewebsites.windows.net
tr832.australiaeast1-a.control.database.windows.net
enc.p.azurewebsites.windows.net
waws-prod-bay-a1bbcb3e-api.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-cw1-d3d1bfdf.publish.p.azurewebsites.windows.net
testonly.secretstore.windows.net
testonly.secretstore.windows.net
*.stream-diagnostics.store.core.windows.net
tr1419.centralus1-a.worker.database.windows.net
waws-prod-blu-96e6d8f2-api.p.azurewebsites.windows.net
waws-prod-blu-edf2d934-api.p.azurewebsites.windows.net
waws-prod-bn1-53f95518-api.p.azurewebsites.windows.net
uswest12.rnm.core.windows.net
tr16.southcentralus1-a.worker.database.windows.net
waws-prod-sn1-ea02b418-api.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
metricsclient.geneva.core.windows.net
waws-prod-sy3-24d1ce36.state.p.azurewebsites.windows.net
testonly.secretstore.windows.net
testonly.secretstore.windows.net
HK2.agent.core.windows.net
gwpdctosf-e77d764d22ff.worker.database.windows.net
waws-prod-am2-13bb9e6c.state.p.azurewebsites.windows.net
waws-prod-db3-92f298be.publish.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-bay-f5246b21.publish.p.azurewebsites.windows.net
tr165.ukwest1-a.worker.database.windows.net
testonly.secretstore.windows.net
tr277.australiasoutheast1-a.control.database.windows.net
metricsclient.geneva.core.windows.net
metricsclient.geneva.core.windows.net
ma.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-mwh-1e0d2a21-api.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
ams-ts05-1-hos-rest-1-1.cloudapp.net
enc.p.azurewebsites.windows.net
tr1225.southcentralus1-a.worker.database.windows.net
testonly.secretstore.windows.net
waws-prod-bay-55440bad.publish.p.azurewebsites.windows.net
readonly-tr4659.eastus1-a.worker.database.windows.net
waws-prod-bay-e21e34c0-api.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
tr1037.eastus1-a.worker.database.windows.net
*.store.core.windows.net
ams-ts46-1-hos-rest-1-1.cloudapp.net
metricsclient.geneva.core.windows.net
tr1075.westus2-a.worker.database.windows.net
*.blob.core.windows.net
*.sds-diagnostics.store.core.windows.net
waws-prod-am2-da5883af-api.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
waws-prod-am2-c0d608da-api.p.azurewebsites.windows.net
tr455.australiasoutheast1-a.worker.database.windows.net
waws-prod-blu-df231187.publish.p.azurewebsites.windows.net
waws-prod-bay-6f6e9dfa.state.p.azurewebsites.windows.net
waws-prod-hk1-8db07b87-api.p.azurewebsites.windows.net
tr1686.northeurope1-a.worker.database.windows.net
BN2B.agent.core.windows.net
metricsclient.geneva.core.windows.net
DM3.agent.core.windows.net
tr354.australiaeast1-a.control.database.windows.net
waws-prod-sy3-fb5d9039-api.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-ch1-3955dc27.publish.p.azurewebsites.windows.net
waws-prod-yt1-982c2880.publish.p.azurewebsites.windows.net
waws-prod-mwh-37f9bd5f.publish.p.azurewebsites.windows.net
waws-prod-am2-013.publish.azurewebsites.windows.net
tr469.australiaeast1-a.worker.database.windows.net
tr1348.westus1-a.worker.database.windows.net
waws-prod-bn1-009.state.azurewebsites.windows.net
tr409.westeurope1-a.worker.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-mwh-cbf02dd4.publish.p.azurewebsites.windows.net
enc.p.azurewebsites.windows.net
3f7611921e87.database.windows.net
metricsclient.geneva.core.windows.net
testonly.secretstore.windows.net
cpim.windows.net
ams-ts61-1-hos-rest-1-1.cloudapp.net
40b5d28d821e.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-sy3-87a8eac9.state.p.azurewebsites.windows.net
waws-prod-pn1-e4d07c21.api.p.azurewebsites.windows.net
waws-prod-bn1-e45ca43e-api.p.azurewebsites.windows.net
*.blob.core.windows.net
testonly.secretstore.windows.net
gwpdctosf-d9afa021808b.worker.database.windows.net
testonly.secretstore.windows.net
tr976.centralus1-a.worker.database.windows.net
metricsclient.geneva.core.windows.net
waws-prod-am2-04f0829f.publish.p.azurewebsites.windows.net
waws-prod-db3-a4287263.api.p.azurewebsites.windows.net
waws-prod-am2-6c285c27.publish.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
*.stream-diagnostics.store.core.windows.net
testonly.secretstore.windows.net
SN3P.agent.core.windows.net
enc.p.azurewebsites.windows.net
tr832.australiaeast1-a.control.database.windows.net
enc.p.azurewebsites.windows.net
waws-prod-bay-a1bbcb3e-api.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-cw1-d3d1bfdf.publish.p.azurewebsites.windows.net
testonly.secretstore.windows.net
testonly.secretstore.windows.net
*.stream-diagnostics.store.core.windows.net
tr1419.centralus1-a.worker.database.windows.net
waws-prod-blu-96e6d8f2-api.p.azurewebsites.windows.net
waws-prod-blu-edf2d934-api.p.azurewebsites.windows.net
waws-prod-bn1-53f95518-api.p.azurewebsites.windows.net
uswest12.rnm.core.windows.net
tr16.southcentralus1-a.worker.database.windows.net
waws-prod-sn1-ea02b418-api.p.azurewebsites.windows.net
metricsclient.geneva.core.windows.net
metricsclient.geneva.core.windows.net
waws-prod-sy3-24d1ce36.state.p.azurewebsites.windows.net
testonly.secretstore.windows.net
testonly.secretstore.windows.net
HK2.agent.core.windows.net
gwpdctosf-e77d764d22ff.worker.database.windows.net
waws-prod-am2-13bb9e6c.state.p.azurewebsites.windows.net
waws-prod-db3-92f298be.publish.p.azurewebsites.windows.net
testonly.secretstore.windows.net
waws-prod-bay-f5246b21.publish.p.azurewebsites.windows.net
tr165.ukwest1-a.worker.database.windows.net
testonly.secretstore.windows.net
tr277.australiasoutheast1-a.control.database.windows.net
metricsclient.geneva.core.windows.net
metricsclient.geneva.core.windows.net
Certificate
The complete raw certificate details for graph.windows.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIO2TCCDMGgAwIBAgITIAAFFo6UHcNucT5k/QAAAAUWjjANBgkqhkiG9w0BAQsF ADCBizELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEVMBMGA1UE CxMMTWljcm9zb2Z0IElUMR4wHAYDVQQDExVNaWNyb3NvZnQgSVQgVExTIENBIDIw HhcNMTkwMTAzMDAzMTU1WhcNMjEwMTAzMDAzMTU1WjAcMRowGAYDVQQDExFncmFw aC53aW5kb3dzLm5ldDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMoV HjsXF+S6yA/F6Yj4kPxVAXE/7uQUNbYphIEeg8heRKxbdjTrMexdxmoQpC7depi0 SDPMIL4tCXaASE8CUYJVH0VBcV2woP5xxORgH0Suyf5j1NxStn+68JitoNEfUsbF GCFPFGXV2OCKV//Z6pLLYe/52e7xMah3MTJLBl3vTGgdjEEihegaoe9TjV8AO2an dxfMJ0sHVTt1GL6rlLK2s2i3TRq7rLFHAEqgYNETlTzu1jMIbOwtKXFZ1jKV80N6 tVffNxCRCfm/qVXwXXKe8JR5Xs7QhrdZgZi/5YnGiWsR9kT51Xy28skOJvZYh13I TVR8XPka9PTaMpLZd68CAwEAAaOCCqIwggqeMIIB9wYKKwYBBAHWeQIEAgSCAecE ggHjAeEAdwC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAWgRKOVl AAAEAwBIMEYCIQDcWjNRJysgIvrBExn9iQcs33As7qBmrVXwMKDXWWOvdQIhAI+e YXtc+KjNI3mQitFe1Xdb8XonGq6c10uSQ88tsjcoAHYARJRlLrDuzq/EQAfYqP4o wNrmgr7YyzG1P9MzlrW2gagAAAFoESjk4wAABAMARzBFAiEA1ZjwYoUKkLoQ7t4P SuPcJwn+tRkapq90wDdZbIshRb4CIEOGO7wa3FWRmCSBripmH3NWMXOUNo5bylmD GnHKGpjpAHYAXNxDkv7mq0VEsV6a1FbmEDf71fpH3KFzlLJe5vbHDsoAAAFoESjm WQAABAMARzBFAiAcyu/ZKAzTs0XZVHzWIRGSw9L4ZR0dtDS5i4nffpFs8wIhANpV IBniiCjjJuv0Q1Ul9u7RcubM8hJdLyqIVO+lobk1AHYAVYHUwhaQNgFK6gubVzxT 8MDkOHhwJQgXL6OqHQcT0wwAAAFoESjlGwAABAMARzBFAiAnTbE5mMDGcgoqIx5O zR7O1cRYnUL7hWPXrU8mWseoegIhANQ2r3OMd4LI73c8kWkEWqanBRUxX2N3i8g/ l6eItgh4MCcGCSsGAQQBgjcVCgQaMBgwCgYIKwYBBQUHAwIwCgYIKwYBBQUHAwEw PgYJKwYBBAGCNxUHBDEwLwYnKwYBBAGCNxUIh9qGdYPu2QGCyYUbgbWeYYX062CB XYTS30KC55N6AgFkAgEdMIGFBggrBgEFBQcBAQR5MHcwUQYIKwYBBQUHMAKGRWh0 dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2kvbXNjb3JwL01pY3Jvc29mdCUyMElU JTIwVExTJTIwQ0ElMjAyLmNydDAiBggrBgEFBQcwAYYWaHR0cDovL29jc3AubXNv Y3NwLmNvbTAdBgNVHQ4EFgQUsTOcvvog7jVIV6xoXwLObesRX4UwCwYDVR0PBAQD AgSwMIIGRAYDVR0RBIIGOzCCBjeCGyouYWNjZXNzY29udHJvbC53aW5kb3dzLm5l dIIfKi5hY2Nlc3Njb250cm9sLndpbmRvd3MtcHBlLm5ldIIOKi5iMmNsb2dpbi5j b22CEiouY3BpbS53aW5kb3dzLm5ldIIYKi5taWNyb3NvZnRhaWsuYXp1cmUubmV0 giAqLm1pY3Jvc29mdGFpay1pbnQuYXp1cmUtaW50Lm5ldIIRKi53aW5kb3dzLXBw ZS5uZXSCEGFhZGcud2luZG93cy5uZXSCFmFhZGd2Ni5wcGUud2luZG93cy5uZXSC EmFhZGd2Ni53aW5kb3dzLm5ldIIQYWNjb3VudC5saXZlLmNvbYIUYWNjb3VudC5s aXZlLWludC5jb22CF2FwaS5wYXNzd29yZC5jY3NjdHAuY29tgiVhcGkucGFzc3dv cmRyZXNldC5taWNyb3NvZnRvbmxpbmUuY29tgiJhdXRvbG9nb24ubWljcm9zb2Z0 YXp1cmVhZC1zc28uY29tghBiZWN3cy5jY3NjdHAuY29tgiJjbGllbnRjb25maWcu bWljcm9zb2Z0b25saW5lLXAubmV0giZjbGllbnRjb25maWcubWljcm9zb2Z0b25s aW5lLXAtaW50Lm5ldIIZY29tcGFueW1hbmFnZXIuY2NzY3RwLmNvbYIiY29tcGFu eW1hbmFnZXIubWljcm9zb2Z0b25saW5lLmNvbYIQY3BpbS53aW5kb3dzLm5ldIIg ZGV2aWNlLmxvZ2luLm1pY3Jvc29mdG9ubGluZS5jb22CHGRldmljZS5sb2dpbi53 aW5kb3dzLXBwZS5uZXSCHmRpcmVjdG9yeXByb3h5LnBwZS53aW5kb3dzLm5ldIIa ZGlyZWN0b3J5cHJveHkud2luZG93cy5uZXSCFWdyYXBoLnBwZS53aW5kb3dzLm5l dIIRZ3JhcGgud2luZG93cy5uZXSCFmdyYXBoc3RvcmUud2luZG93cy5uZXSCDmxv Z2luLmxpdmUuY29tghJsb2dpbi5saXZlLWludC5jb22CE2xvZ2luLm1pY3Jvc29m dC5jb22CGWxvZ2luLm1pY3Jvc29mdG9ubGluZS5jb22CG2xvZ2luLm1pY3Jvc29m dG9ubGluZS1wLmNvbYIdbG9naW4ubWljcm9zb2Z0b25saW5lLXBzdC5jb22CF2xv Z2luLm1pY3Jvc29mdC1wcGUuY29tghFsb2dpbi53aW5kb3dzLm5ldIIdbG9naW5j ZXJ0Lm1pY3Jvc29mdG9ubGluZS5jb22CIWxvZ2luY2VydC5taWNyb3NvZnRvbmxp bmUtaW50LmNvbYIcbG9naW4tdXMubWljcm9zb2Z0b25saW5lLmNvbYIWbWljcm9z b2Z0YWlrLmF6dXJlLm5ldIIebWljcm9zb2Z0YWlrLWludC5henVyZS1pbnQubmV0 ghtuZXh1cy5taWNyb3NvZnRvbmxpbmUtcC5jb22CH25leHVzLm1pY3Jvc29mdG9u bGluZS1wLWludC5jb22CD3Bhcy53aW5kb3dzLm5ldIITcGFzLndpbmRvd3MtcHBl Lm5ldIITcGFzc3dvcmQuY2NzY3RwLmNvbYItcGFzc3dvcmRyZXNldC5hY3RpdmVk aXJlY3Rvcnkud2luZG93c2F6dXJlLnVzgiFwYXNzd29yZHJlc2V0Lm1pY3Jvc29m dG9ubGluZS5jb22CIHByb3Zpc2lvbmluZy5taWNyb3NvZnRvbmxpbmUuY29tgg9z aWdudXAubGl2ZS5jb22CE3NpZ251cC5saXZlLWludC5jb22CD3N0cy53aW5kb3dz Lm5ldIISeG1sLmxvZ2luLmxpdmUuY29tghZ4bWwubG9naW4ubGl2ZS1pbnQuY29t ghsqLmxvZ2luLm1pY3Jvc29mdG9ubGluZS5jb22CHWxvZ2luLm1pY3Jvc29mdG9u bGluZS1pbnQuY29tgiVhY2Nlc3Njb250cm9sLmFhZHRzdDMud2luZG93cy1pbnQu bmV0gicqLmFjY2Vzc2NvbnRyb2wuYWFkdHN0My53aW5kb3dzLWludC5uZXSCHWFw aS5sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tMIGsBgNVHR8EgaQwgaEwgZ6ggZug gZiGS2h0dHA6Ly9tc2NybC5taWNyb3NvZnQuY29tL3BraS9tc2NvcnAvY3JsL01p Y3Jvc29mdCUyMElUJTIwVExTJTIwQ0ElMjAyLmNybIZJaHR0cDovL2NybC5taWNy b3NvZnQuY29tL3BraS9tc2NvcnAvY3JsL01pY3Jvc29mdCUyMElUJTIwVExTJTIw Q0ElMjAyLmNybDBNBgNVHSAERjBEMEIGCSsGAQQBgjcqATA1MDMGCCsGAQUFBwIB FidodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20vcGtpL21zY29ycC9jcHMwHwYDVR0j BBgwFoAUkZ47RGw9V5xCdyo010/RzEqXLNowHQYDVR0lBBYwFAYIKwYBBQUHAwIG CCsGAQUFBwMBMA0GCSqGSIb3DQEBCwUAA4ICAQAzJsSFswIfkFkjzA2nXWN+pwII MhrE08lJDmIDxi91uIOfcmEwcBRjFDLnS3UxzTFcbqakVilIsOaqu1ZVCozn3ibE dh7ehEq5hiFJsvskkUsfr6kjosAbCimgib2m3i6jUuDWDdNFWvVLT5cWggpARwLg cPgHjLJOSFyJVG78vUb7FLzJvn8EMWcOVuXzKaq4l5ba4TjNa7JV6MtoVLvL3PYh YunomxizptSahZ5wzi+necJ4NiJntVS+N8d14/svHw24go4b13rySteSfW/K5sGV IJtAZ8BR5VDF7JSKlWagxy7505XCULH6X3Ta8cdOTkkE/rrk4CxYrhvc2Y9BjuLl zTamtj7H0EYDv68KO3/Dgk1692xf+CHjeuiDTjPP1oXe2y9stK84NXx0E/uYmF/B Fz171wJKCeGnmmjqVdnjTWIG33xfpEh6tGDkICMPrd0ZejPzQDXx9BwVvri2llmj Lm0AR8njXKc7xM8ix3EurYg1CdicKWBmyJ6dOIJ4Pvsif6HRk3ZbAMNOS8mpNM/X 6Ek8KKmFYoG0eUVYE6mmNRe/PUYg3zWCo1jZnkpmQ2I/s/mZz2qmVGveuN6McNpi q7nMeDV4jHjiUMehhX1tdkS1apN1pfjq9+x2rk4no29yPT/N187nPRXH7sx0ah0R ZtTrFsKX4iLZFg4HqQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhUeOxcX5LrID8XpiPiQ /FUBcT/u5BQ1timEgR6DyF5ErFt2NOsx7F3GahCkLt16mLRIM8wgvi0JdoBITwJR glUfRUFxXbCg/nHE5GAfRK7J/mPU3FK2f7rwmK2g0R9SxsUYIU8UZdXY4IpX/9nq ksth7/nZ7vExqHcxMksGXe9MaB2MQSKF6Bqh71ONXwA7Zqd3F8wnSwdVO3UYvquU srazaLdNGrussUcASqBg0ROVPO7WMwhs7C0pcVnWMpXzQ3q1V983EJEJ+b+pVfBd cp7wlHleztCGt1mBmL/licaJaxH2RPnVfLbyyQ4m9liHXchNVHxc+Rr09Noyktl3 rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 713625577748140761122701923328971961266411150 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT TLS CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-03 00:31:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-03 00:31:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'graph.windows.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25510551321025834018623101132102243209446863800641839457975289381065434362132712236785869420001789931031553296898637717081207998979872705638534824679748828074612030464726310182441768306117676374581450812570430516361915947384200313401620437790848269888332524787213253822041979977158887495583410682492175100837975417733156723924237478676129392580127902164092997956996497654597294033187277381055698858314660352915739251301319638953631336715310097100785069650619495007459575708593346543551557180457634357898357467630510364547837170129161694267955322096797403049169197468978098829402503969381617513762002994401531259353007 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 01e1007700bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001681128e5650000040300483046022100dc5a3351272b2022fac11319fd89072cdf702ceea066ad55f030a0d75963af750221008f9e617b5cf8a8cd2379908ad15ed5775bf17a271aae9cd74b9243cf2db237280076004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a8000001681128e4e30000040300473045022100d598f062850a90ba10eede0f4ae3dc2709feb5191aa6af74c037596c8b2145be022043863bbc1adc5591982481ae2a661f7356317394368e5bca59831a71ca1a98e90076005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca000001681128e659000004030047304502201ccaefd9280cd3b345d9547cd6211192c3d2f8651d1db434b98b89df7e916cf3022100da552019e28828e326ebf4435525f6eed172e6ccf2125d2f2a8854efa5a1b9350076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c000001681128e51b00000403004730450220274db13998c0c6720a2a231e4ecd1eced5c4589d42fb8563d7ad4f265ac7a87a022100d436af738c7782c8ef773c9169045aa6a70515315f63778bc83f97a788b60878 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.16155509.8105089.5391003.2969441.12400096.221.9744322.5884410 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pki/mscorp/Microsoft%20IT%20TLS%20CA%202.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.msocsp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b1339cbefa20ee354857ac685f02ce6deb115f85 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1595 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.accesscontrol.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.accesscontrol.windows-ppe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.b2clogin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cpim.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.microsoftaik.azure.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.microsoftaik-int.azure-int.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.windows-ppe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aadg.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aadgv6.ppe.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aadgv6.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'account.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'account.live-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.password.ccsctp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.passwordreset.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autologon.microsoftazuread-sso.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'becws.ccsctp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clientconfig.microsoftonline-p.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clientconfig.microsoftonline-p-int.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companymanager.ccsctp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'companymanager.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpim.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'device.login.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'device.login.windows-ppe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'directoryproxy.ppe.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'directoryproxy.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'graph.ppe.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'graph.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'graphstore.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.live-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoftonline-p.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoftonline-pst.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoft-ppe.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'logincert.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'logincert.microsoftonline-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login-us.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'microsoftaik.azure.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'microsoftaik-int.azure-int.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nexus.microsoftonline-p.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nexus.microsoftonline-p-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pas.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pas.windows-ppe.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'password.ccsctp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'passwordreset.activedirectory.windowsazure.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'passwordreset.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provisioning.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'signup.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'signup.live-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sts.windows.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xml.login.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xml.login.live-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.login.microsoftonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.microsoftonline-int.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'accesscontrol.aadtst3.windows-int.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.accesscontrol.aadtst3.windows-int.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.login.microsoftonline.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (164 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%202.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%202.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.42.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pki/mscorp/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 919e3b446c3d579c42772a34d74fd1cc4a972cda . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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