prod-eu1.app.asana.com
Issued by Amazon
About this certificate
This digital certificate with serial number 05:96:ea:aa:51:85:99:6f:cd:f6:f4:c7:87:c7:89:1f was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=prod-eu1.app.asana.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:96:ea:aa:51:85:99:6f:cd:f6:f4:c7:87:c7:89:1fSerial Number (int): 7429744085569482938654690554338052383
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 30:2d:22:6f:7f:9c:4b:18:f6:66:25:f5:26:22:b3:6a:18:52:e1:e8
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 04:d4:90:d3:24:f2:20:4d:7e:56:ba:9a:36:7c:ff:ea:80:56:45:8f
Fingerprint (sha256): 04:ef:ce:41:14:a0:66:7f:93:eb:1c:f5:1e:36:5e:4f:41:e9:92:15:fb:65:f0:cf:80:d4:64:f5:0c:76:e5:b6
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate prod-eu1.app.asana.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for prod-eu1.app.asana.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
prod-eu1.app.asana.com
*.prod-eu1.app.asana.com
eu1.app.asana.com
*.eu1.app.asana.com
*.prod-eu1.app.asana.com
eu1.app.asana.com
*.eu1.app.asana.com
Other certificates including the domain name asana.com
(limited to 100 certificates)
hello.asana.com
dns-vetting1b.map.fastly.net
partnerlearning.asana.com
dns-vetting1b.map.fastly.net
govcloud-status.elastic.co
dns-vetting1m.map.fastly.net
*.beta-us1-asana-exp-cell100-238a3931.app.asana.com
t.ssl.fastly.net
leapfrog-ssl-56.gcs-web.com
academy.asana.com
leapfrog-ssl-56.gcs-web.com
bistatus.mplatform.ch
kubeville000.asana.com
go.asana.com
share.asana.com
leapfrog-ssl-56.gcs-web.com
labpages.braze.com
webhooks.revenue.asana.com
dns-vetting1b.map.fastly.net
t-antenna.asana.com
wavelength.asana.com
*.prod-internal-internal.app.asana.com
t.ssl.fastly.net
hello.asana.com
godaddy-status.elastic.co
advisors.asana.com
govcloud-status.elastic.co
sales.asana.com
shop.asana.com
shop.asana.com
dns-vetting1b.map.fastly.net
dns-vetting1b.map.fastly.net
forum.asana.com
prod-au1.app.asana.com
t-antenna.asana.com
dns-vetting1j.map.fastly.net
wavelength.asana.com
statuspage.io
dns-vetting1j.map.fastly.net
dns-vetting1b.map.fastly.net
gtm-analytics.asana.com
customer-test.ssl.fastly.net
sepsbe.status.symantec.com
sepsbe.status.symantec.com
customer-test.ssl.fastly.net
aproposalfrom.freeman.com
customer-test.ssl.fastly.net
dns-vetting1b.map.fastly.net
gdrive.asana.com
wavelength.asana.com
customer-test.ssl.fastly.net
go.asana.com
prod-eu1.app.asana.com
*.prod-prod-prod-us1-prod.app.asana.com
customer-test.ssl.fastly.net
dns-vetting1j.map.fastly.net
partnerlearning.asana.com
partnerportal.kornferry.com
partnerlearning.asana.com
aproposalfrom.freeman.com
customer-test.ssl.fastly.net
dns-vetting1j.map.fastly.net
*.beta-us1-asana-cell01-0b7a99d5.app.asana.com
customer-test.ssl.fastly.net
labplaybooks.braze.com
forum.asana.com
t.ssl.fastly.net
t-antenna.asana.com
hello.asana.com
dns-vetting1b.map.fastly.net
govcloud-status.elastic.co
eng.asana.com
dns-vetting1b.map.fastly.net
t.ssl.fastly.net
value.kpmg.ch
t-antenna.asana.com
blog.asana.com
t.ssl.fastly.net
certifiedpros.asana.com
dns-vetting1b.map.fastly.net
community.asana.com
b2-alt.shared.global.fastly.net
dns-vetting1b.map.fastly.net
dns-vetting1b.map.fastly.net
*.asana.biz
advisors.asana.com
dns-vetting1m.map.fastly.net
dns-vetting1b.map.fastly.net
dns-vetting1j.map.fastly.net
customer-test.ssl.fastly.net
b2-alt.shared.global.fastly.net
customer-test.ssl.fastly.net
space.adlittle.com
customer-test.ssl.fastly.net
dns-vetting1b.map.fastly.net
wavelength.asana.com
portal.kearney.com
customer-test.ssl.fastly.net
dns-vetting1b.map.fastly.net
t.ssl.fastly.net
dns-vetting1b.map.fastly.net
partnerlearning.asana.com
dns-vetting1b.map.fastly.net
govcloud-status.elastic.co
dns-vetting1m.map.fastly.net
*.beta-us1-asana-exp-cell100-238a3931.app.asana.com
t.ssl.fastly.net
leapfrog-ssl-56.gcs-web.com
academy.asana.com
leapfrog-ssl-56.gcs-web.com
bistatus.mplatform.ch
kubeville000.asana.com
go.asana.com
share.asana.com
leapfrog-ssl-56.gcs-web.com
labpages.braze.com
webhooks.revenue.asana.com
dns-vetting1b.map.fastly.net
t-antenna.asana.com
wavelength.asana.com
*.prod-internal-internal.app.asana.com
t.ssl.fastly.net
hello.asana.com
godaddy-status.elastic.co
advisors.asana.com
govcloud-status.elastic.co
sales.asana.com
shop.asana.com
shop.asana.com
dns-vetting1b.map.fastly.net
dns-vetting1b.map.fastly.net
forum.asana.com
prod-au1.app.asana.com
t-antenna.asana.com
dns-vetting1j.map.fastly.net
wavelength.asana.com
statuspage.io
dns-vetting1j.map.fastly.net
dns-vetting1b.map.fastly.net
gtm-analytics.asana.com
customer-test.ssl.fastly.net
sepsbe.status.symantec.com
sepsbe.status.symantec.com
customer-test.ssl.fastly.net
aproposalfrom.freeman.com
customer-test.ssl.fastly.net
dns-vetting1b.map.fastly.net
gdrive.asana.com
wavelength.asana.com
customer-test.ssl.fastly.net
go.asana.com
prod-eu1.app.asana.com
*.prod-prod-prod-us1-prod.app.asana.com
customer-test.ssl.fastly.net
dns-vetting1j.map.fastly.net
partnerlearning.asana.com
partnerportal.kornferry.com
partnerlearning.asana.com
aproposalfrom.freeman.com
customer-test.ssl.fastly.net
dns-vetting1j.map.fastly.net
*.beta-us1-asana-cell01-0b7a99d5.app.asana.com
customer-test.ssl.fastly.net
labplaybooks.braze.com
forum.asana.com
t.ssl.fastly.net
t-antenna.asana.com
hello.asana.com
dns-vetting1b.map.fastly.net
govcloud-status.elastic.co
eng.asana.com
dns-vetting1b.map.fastly.net
t.ssl.fastly.net
value.kpmg.ch
t-antenna.asana.com
blog.asana.com
t.ssl.fastly.net
certifiedpros.asana.com
dns-vetting1b.map.fastly.net
community.asana.com
b2-alt.shared.global.fastly.net
dns-vetting1b.map.fastly.net
dns-vetting1b.map.fastly.net
*.asana.biz
advisors.asana.com
dns-vetting1m.map.fastly.net
dns-vetting1b.map.fastly.net
dns-vetting1j.map.fastly.net
customer-test.ssl.fastly.net
b2-alt.shared.global.fastly.net
customer-test.ssl.fastly.net
space.adlittle.com
customer-test.ssl.fastly.net
dns-vetting1b.map.fastly.net
wavelength.asana.com
portal.kearney.com
customer-test.ssl.fastly.net
dns-vetting1b.map.fastly.net
t.ssl.fastly.net
Certificate
The complete raw certificate details for prod-eu1.app.asana.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFuDCCBKCgAwIBAgIQBZbqqlGFmW/N9vTHh8eJHzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA0MjIwMDAwMDBaFw0yMDA1MjIx MjAwMDBaMCExHzAdBgNVBAMTFnByb2QtZXUxLmFwcC5hc2FuYS5jb20wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDes5HpcAXebtDlzuMmVORnHNnbeN0i rNbZMdbSrC9RnGYKDRum1+IPIKjyNmEtzsBqB/Eks5dJ7tCcfWGQEBQ9hWISb81Q DhQMKcimShFvxHcGlMev36M4zNGYgw0LfcIEu6rCXS9xU2np1LSK2ukJg2myMkPa /SzD97AwG+sxShwANluSBzGkSAP6Cewl6NLR4htmsvr+UuepsREsLp34AZbO/K8k sa+x8VWBJDVILirEUnw7FojuOfjbhiCoHCGgSAccijdbrbE5ORJK6KuLxkwz2wEB xTmP9wTPv00kIZIpc4BM0A0mE8WBKbM82n1muSOXt+i67Un6ZN3fyo2pAgMBAAGj ggLFMIICwTAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4E FgQUMC0ib3+cSxj2ZiX1JiKzahhS4egwYwYDVR0RBFwwWoIWcHJvZC1ldTEuYXBw LmFzYW5hLmNvbYIYKi5wcm9kLWV1MS5hcHAuYXNhbmEuY29tghFldTEuYXBwLmFz YW5hLmNvbYITKi5ldTEuYXBwLmFzYW5hLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0 dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDAgBgNVHSAE GTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsG AQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYB BQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNy dDAMBgNVHRMBAf8EAjAAMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAu9nfvB+K cbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFqRfvBWAAABAMARzBFAiAJObwc QvfpJfN+sx0dIaPjAsBuCRzZlfl9OFakP9zwHwIhAJSXqHnxzeFfgU+4285Fhf+a 1kvbE2Fifps/XYNOe83aAHcAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16g gw8AAAFqRfvCeAAABAMASDBGAiEA8NDdzpP65H9vp2sgk5dkURsBTIX22FRatW0Y 9OMwme0CIQDbFMcMu/rW4Ul46H0PPhYZ7ZYnIohAfAqsG6yiaZR6GzANBgkqhkiG 9w0BAQsFAAOCAQEAwZiiKU/O+e85TD74c2iWeOJATkLvOlheUzqtqlKgcRoq7Lrs oZr8fKfotX0Mw9fv0ofUwc6LPR1IyepJq5mS/vsCP16K16v4BqLKpNSnkYmXoSkv JukuX67bi5JqPxHTdsSAH/BCgA4ErwMWTi/BfShbFw1WuQsvp36wlBtXi6ZruWvs QrqAOZLFWp8Vw6ed3+/2jvq0lNVcELuL1TXQ/ql6lLVcDQLkFdBzjXIkNNS5r7iP t3LrLzNWnH3a26LI64kP4qXWqZ/CnupXi5DzBOzmuCx8TeOwvNvSsnTawYZXhBah x+bPFF/v5lT5UpGhdbG2UXI9H+tYlwmLSLd4Sw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rOR6XAF3m7Q5c7jJlTk ZxzZ23jdIqzW2THW0qwvUZxmCg0bptfiDyCo8jZhLc7AagfxJLOXSe7QnH1hkBAU PYViEm/NUA4UDCnIpkoRb8R3BpTHr9+jOMzRmIMNC33CBLuqwl0vcVNp6dS0itrp CYNpsjJD2v0sw/ewMBvrMUocADZbkgcxpEgD+gnsJejS0eIbZrL6/lLnqbERLC6d +AGWzvyvJLGvsfFVgSQ1SC4qxFJ8OxaI7jn424YgqBwhoEgHHIo3W62xOTkSSuir i8ZMM9sBAcU5j/cEz79NJCGSKXOATNANJhPFgSmzPNp9Zrkjl7fouu1J+mTd38qN qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7429744085569482938654690554338052383 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-22 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'prod-eu1.app.asana.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28113452954072534491350902854517171705565847713074552934832616454759272014086016700176191012980543698607728799430825689905501702843865394445887089798704472223228358215343203380417673677283359261614323395213825321069685526925280660457500116532400018321155098773093374978978215627925390432772307784178785983089013728789351362973476251708346362526582516818428555048941597591008254823234210023606395918344540622381743461368269318870202499871564236708156310240647619482552222567817283484696682542813620809623034118781013362971763696304348744277064783970902653343394500887701797185450799531081029655050264202573207573269929 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 302d226f7f9c4b18f66625f52622b36a1852e1e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod-eu1.app.asana.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prod-eu1.app.asana.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eu1.app.asana.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eu1.app.asana.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016a45fbc158000004030047304502200939bc1c42f7e925f37eb31d1d21a3e302c06e091cd995f97d3856a43fdcf01f0221009497a879f1cde15f814fb8dbce4585ff9ad64bdb1361627e9b3f5d834e7bcdda0077008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016a45fbc2780000040300483046022100f0d0ddce93fae47f6fa76b20939764511b014c85f6d8545ab56d18f4e33099ed022100db14c70cbbfad6e14978e87d0f3e1619ed96272288407c0aac1baca269947a1b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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