spiffe.uberinternal.com
Issued by GTS CA 1D4
About this certificate
This digital certificate with serial number ab:91:e0:ae:17:17:d9:22:12:7d:af:0c:68:c5:43:2c was issued on by Google Trust Services LLC.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=spiffe.uberinternal.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): ab:91:e0:ae:17:17:d9:22:12:7d:af:0c:68:c5:43:2cSerial Number (int): 228055427376306645630648202540039357228
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 64:73:f7:9f:1a:dd:f7:23:fd:e9:5f:02:37:04:28:3e:34:4b:98:ee
AuthorityKeyId: 25:e2:18:0e:b2:57:91:94:2a:e5:d4:5d:86:90:83:de:53:b3:b8:92
Fingerprint (sha1): aa:11:1a:5a:b4:03:2e:b1:f7:1e:f0:35:0f:c7:c6:a6:78:32:fa:32
Fingerprint (sha256): 05:17:e2:5f:9e:e1:d6:39:47:d6:44:67:a8:10:e0:67:18:5e:44:40:8c:71:4f:ae:5c:a8:b0:02:64:28:1f:c2
Issuing Certificate URL: http://pki.goog/repo/certs/gts1d4.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1d4/Y8W8bLa5hTgCRL Distribution Point: http://crls.pki.goog/gts1d4/hmOrLMHcKLw.crl
Check the revocation status for certificate spiffe.uberinternal.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for spiffe.uberinternal.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
spiffe.uberinternal.com
Other certificates including the domain name uberinternal.com
(limited to 100 certificates)
uberhub.uberinternal.com
chatbot-uchat-integration.uberinternal.com
productops.uberinternal.com
blogadmin.uberinternal.com
metal-api-dev.uberinternal.com
productops.uberinternal.com
ubergram-api.uberinternal.com
uberhubtest.uberinternal.com
devpod-us-or.uberinternal.com
ktb-staging.uberinternal.com
jmighty.uberinternal.com
*.devpod-us-va.uberinternal.com
uberhubdev.uberinternal.com
uberhub.uberinternal.com
devpod-us-or.uberinternal.com
ktb-staging.uberinternal.com
uberhubtraining.uberinternal.com
devpod-eu.uberinternal.com
uview-api-staging.uberinternal.com
chef.uberinternal.com
bizconductguide.uberinternal.com
jetbrains-staging.uberinternal.com
creativeproduction.uberinternal.com
*.prod.awscorp.uberinternal.com
spiffe.uberinternal.com
bizconductguide.uberinternal.com
itelogs.uberinternal.com
lzc.uberinternal.com
corpss-test.uberinternal.com
*.vscode.devpod-nld.uberinternal.com
ktb.uberinternal.com
uberhubdev.uberinternal.com
uberhub.uberinternal.com
spiffe.uberinternal.com
uberhubdev.uberinternal.com
devpod-pln.uberinternal.com
ess-staging.uberinternal.com
scout.uberinternal.com
bizconductguide.uberinternal.com
uberhub.uberinternal.com
devpod-ind.uberinternal.com
creativeproduction.uberinternal.com
u4b.uberinternal.com
productops.uberinternal.com
devpod-nld.uberinternal.com
*.uberinternal.com
devpod-ind.uberinternal.com
uchat-staging.uberinternal.com
devpod-pln.uberinternal.com
lzc.uberinternal.com
u4b.uberinternal.com
jiraext.uberinternal.com
metal-api-dev.uberinternal.com
*.vscode.devpod-us-or.uberinternal.com
ess.uberinternal.com
cess.uberinternal.com
u4b.uberinternal.com
teqtivity-staging.uberinternal.com
munki.awscorp.uberinternal.com
jiraext.uberinternal.com
bizconductguide.uberinternal.com
devpod-bra.uberinternal.com
uberhubdev.uberinternal.com
uberhub.uberinternal.com
emearex.uberinternal.com
uberhubtest.uberinternal.com
arize-api.uberinternal.com
prod1.insightvm.uberinternal.com
scout.uberinternal.com
lzc-staging.uberinternal.com
opusimageserver-client.uberinternal.com
devpod-bra.uberinternal.com
uberhubtraining.uberinternal.com
newsroomadmin.uberinternal.com
bizconductguide.uberinternal.com
backup.uberinternal.com
lzc.uberinternal.com
stash-cdn.uberinternal.com
usearch-backend-dev.uberinternal.com
lambdai-test.uberinternal.com
photo.uber.com
ess.uberinternal.com
arize-api.uberinternal.com
vpn-emea-net1.uberinternal.com
uberhub.uberinternal.com
jira-staging.uberinternal.com
arize.uberinternal.com
ess-staging.uberinternal.com
uberhubtraining.uberinternal.com
*.devpod-ind.uberinternal.com
admindevices.uberinternal.com
*.staging.awscorp.uberinternal.com
devices.uberinternal.com
newsroomadmin.uberinternal.com
coeshift-staging.uberinternal.com
*.awscorp.uberinternal.com
ktb-staging.uberinternal.com
vpn-east.uberinternal.com
vpn.awscorp.uberinternal.com
blogadmin.uberinternal.com
chatbot-uchat-integration.uberinternal.com
productops.uberinternal.com
blogadmin.uberinternal.com
metal-api-dev.uberinternal.com
productops.uberinternal.com
ubergram-api.uberinternal.com
uberhubtest.uberinternal.com
devpod-us-or.uberinternal.com
ktb-staging.uberinternal.com
jmighty.uberinternal.com
*.devpod-us-va.uberinternal.com
uberhubdev.uberinternal.com
uberhub.uberinternal.com
devpod-us-or.uberinternal.com
ktb-staging.uberinternal.com
uberhubtraining.uberinternal.com
devpod-eu.uberinternal.com
uview-api-staging.uberinternal.com
chef.uberinternal.com
bizconductguide.uberinternal.com
jetbrains-staging.uberinternal.com
creativeproduction.uberinternal.com
*.prod.awscorp.uberinternal.com
spiffe.uberinternal.com
bizconductguide.uberinternal.com
itelogs.uberinternal.com
lzc.uberinternal.com
corpss-test.uberinternal.com
*.vscode.devpod-nld.uberinternal.com
ktb.uberinternal.com
uberhubdev.uberinternal.com
uberhub.uberinternal.com
spiffe.uberinternal.com
uberhubdev.uberinternal.com
devpod-pln.uberinternal.com
ess-staging.uberinternal.com
scout.uberinternal.com
bizconductguide.uberinternal.com
uberhub.uberinternal.com
devpod-ind.uberinternal.com
creativeproduction.uberinternal.com
u4b.uberinternal.com
productops.uberinternal.com
devpod-nld.uberinternal.com
*.uberinternal.com
devpod-ind.uberinternal.com
uchat-staging.uberinternal.com
devpod-pln.uberinternal.com
lzc.uberinternal.com
u4b.uberinternal.com
jiraext.uberinternal.com
metal-api-dev.uberinternal.com
*.vscode.devpod-us-or.uberinternal.com
ess.uberinternal.com
cess.uberinternal.com
u4b.uberinternal.com
teqtivity-staging.uberinternal.com
munki.awscorp.uberinternal.com
jiraext.uberinternal.com
bizconductguide.uberinternal.com
devpod-bra.uberinternal.com
uberhubdev.uberinternal.com
uberhub.uberinternal.com
emearex.uberinternal.com
uberhubtest.uberinternal.com
arize-api.uberinternal.com
prod1.insightvm.uberinternal.com
scout.uberinternal.com
lzc-staging.uberinternal.com
opusimageserver-client.uberinternal.com
devpod-bra.uberinternal.com
uberhubtraining.uberinternal.com
newsroomadmin.uberinternal.com
bizconductguide.uberinternal.com
backup.uberinternal.com
lzc.uberinternal.com
stash-cdn.uberinternal.com
usearch-backend-dev.uberinternal.com
lambdai-test.uberinternal.com
photo.uber.com
ess.uberinternal.com
arize-api.uberinternal.com
vpn-emea-net1.uberinternal.com
uberhub.uberinternal.com
jira-staging.uberinternal.com
arize.uberinternal.com
ess-staging.uberinternal.com
uberhubtraining.uberinternal.com
*.devpod-ind.uberinternal.com
admindevices.uberinternal.com
*.staging.awscorp.uberinternal.com
devices.uberinternal.com
newsroomadmin.uberinternal.com
coeshift-staging.uberinternal.com
*.awscorp.uberinternal.com
ktb-staging.uberinternal.com
vpn-east.uberinternal.com
vpn.awscorp.uberinternal.com
blogadmin.uberinternal.com
Certificate
The complete raw certificate details for spiffe.uberinternal.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgIRAKuR4K4XF9kiEn2vDGjFQywwDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxRDQwHhcNMjMxMTI2MTA1NjQxWhcNMjQwMjI0 MTE1MDM1WjAiMSAwHgYDVQQDExdzcGlmZmUudWJlcmludGVybmFsLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMGXf9TN4drxQB7Sso3aqpQ+Gvrq dWUz/645kXx1+FLicSxF06anHX5LmM6+4O5bjIu/D1kgTODzLrgGayj+Q/VZfaf2 zICrIUFUGK8RIeP6Cgf+mf9xvoZY3NuCHi40ustdEVG5IA9sglWJyxmZrkgs5t0+ tesRXD1rKcjnh0OMm/H3gPjwdOQX9/deS6dDOauFpL1kWewb/B+3JbxmMMAe+f77 0+JPKM3uzIj1PLI25JOG0l07j67Dg5bZJnYWO3zLRuT8I6KXDPRkapTcPL1RybZ1 PymYY1x3VsX4ZH3XDP9aL53SkBVg186OcJr2+Y9eYpco54yw8R80xlALe2kCAwEA AaOCAn8wggJ7MA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRkc/efGt33I/3pXwI3BCg+NEuY7jAfBgNV HSMEGDAWgBQl4hgOsleRlCrl1F2GkIPeU7O4kjB4BggrBgEFBQcBAQRsMGowNQYI KwYBBQUHMAGGKWh0dHA6Ly9vY3NwLnBraS5nb29nL3MvZ3RzMWQ0L1k4VzhiTGE1 aFRnMDEGCCsGAQUFBzAChiVodHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMx ZDQuZGVyMCIGA1UdEQQbMBmCF3NwaWZmZS51YmVyaW50ZXJuYWwuY29tMCEGA1Ud IAQaMBgwCAYGZ4EMAQIBMAwGCisGAQQB1nkCBQMwPAYDVR0fBDUwMzAxoC+gLYYr aHR0cDovL2NybHMucGtpLmdvb2cvZ3RzMWQ0L2htT3JMTUhjS0x3LmNybDCCAQUG CisGAQQB1nkCBAIEgfYEgfMA8QB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0t cm/h+tQXAAABjAt9LCoAAAQDAEgwRgIhAMGR9VQi+7jzhECQaHJS5c7c9o6yedMK 9cDjmwJMI2ETAiEAoJxOWEOE2m5StE7oPHu9JUYtnm032A2hZ+U++cey4RkAdgDu zdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYwLfSwaAAAEAwBHMEUC IAqHi0hX9Tordew19gXP44g1E4owplR/kF+/6cS15oeCAiEA9n7LfesLc9eFCWwF qjdz932/DJz8CezhBA2dQRrbvF0wDQYJKoZIhvcNAQELBQADggEBAGrVMfemyp+H 1Gia/p0/9mi7emY8HT6FOOJJNhNYk1SQqsIOaWg55tNenp5/zgsAW9m6DVfFVnl6 9Vx2HO7QmKIfNPAQul11jp21Y+xdzKuR++GR6nsjZGRLS7GgT2ZzsePjYSz6Y061 KAQXGCUwmUafB/HL2O0DRepsXEVWpQrU/UK/2xdhOvwZ4FsBmp5FpC3+uiuTrhdy uG5hnrKXikGJxKHPhKHVTFJd2yI9TTZr6TnuHnnI5w+Am+StIog9mJQ5lRWNWAdi 9Xms61EGnefbcItCs2bi5U7R0875+7QR5R0m4Xb7r08Vi59xhaTtKNVOvjOEa8Ec EF9H7uhnIXc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZd/1M3h2vFAHtKyjdqq lD4a+up1ZTP/rjmRfHX4UuJxLEXTpqcdfkuYzr7g7luMi78PWSBM4PMuuAZrKP5D 9Vl9p/bMgKshQVQYrxEh4/oKB/6Z/3G+hljc24IeLjS6y10RUbkgD2yCVYnLGZmu SCzm3T616xFcPWspyOeHQ4yb8feA+PB05Bf3915Lp0M5q4WkvWRZ7Bv8H7clvGYw wB75/vvT4k8oze7MiPU8sjbkk4bSXTuPrsODltkmdhY7fMtG5PwjopcM9GRqlNw8 vVHJtnU/KZhjXHdWxfhkfdcM/1ovndKQFWDXzo5wmvb5j15ilyjnjLDxHzTGUAt7 aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 228055427376306645630648202540039357228 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-26 10:56:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-24 11:50:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'spiffe.uberinternal.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24438699967811715313954439763558690197399281994038776571932635379528839577521744115699610672193266233560804785809927292436570209884701179633041874353102411415080778895952465796833879552120978244052467623389259104629673447034484729087099182642578028144206603142302612645677378152022619792647760194427795819862136816344379304450921806313283721458399242301630811243589168443236141294867746983380096930988066452917032460293491300865299476908517778584477405282863928274819707041202920482083836526062901127030360873840017616727575586555774013374294053731019678025206855331547355647581180734570697919867134951729278961285993 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6473f79f1addf723fde95f023704283e344b98ee . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 25e2180eb25791942ae5d45d869083de53b3b892 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1d4/Y8W8bLa5hTg' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1d4.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'spiffe.uberinternal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1d4/hmOrLMHcKLw.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c0b7d2c2a0000040300483046022100c191f55422fbb8f3844090687252e5cedcf68eb279d30af5c0e39b024c236113022100a09c4e584384da6e52b44ee83c7bbd25462d9e6d37d80da167e53ef9c7b2e119007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c0b7d2c1a000004030047304502200a878b4857f53a2b75ec35f605cfe38835138a30a6547f905fbfe9c4b5e68782022100f67ecb7deb0b73d785096c05aa3773f77dbf0c9cfc09ece1040d9d411adbbc5d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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