coredev-cms3-service-proxy-cnn.train.services.ec2.dmtio.net
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:9b:9d:a5:78:2e:6a:d6:e8:81:7b:20:a3:33:a4:43 was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=coredev-cms3-service-proxy-cnn.train.services.ec2.dmtio.net
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:9b:9d:a5:78:2e:6a:d6:e8:81:7b:20:a3:33:a4:43Serial Number (int): 19417195402210624970415693042306753603
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: e4:ac:4b:6f:bc:aa:1c:b9:6c:52:7a:73:19:b9:44:f6:d6:7d:bb:48
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 93:68:59:0a:33:b6:f7:5f:b9:c8:89:e3:94:d2:19:64:df:c1:47:1c
Fingerprint (sha256): 06:3c:a2:8c:8a:ca:24:d3:a3:f3:f1:c7:c7:10:32:b4:2f:5d:ca:f4:5b:9d:4a:8d:e1:5a:54:de:a5:0f:ab:68
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate coredev-cms3-service-proxy-cnn.train.services.ec2.dmtio.net
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for coredev-cms3-service-proxy-cnn.train.services.ec2.dmtio.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
coredev-cms3-service-proxy-cnn.train.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.esand.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.politics.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.enable.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.video.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.terra.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.sweet.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.esand.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.politics.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.enable.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.video.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.terra.services.ec2.dmtio.net
coredev-cms3-service-proxy-cnn.sweet.services.ec2.dmtio.net
Other certificates including the domain name dmtio.net
(limited to 100 certificates)
customs.services.dmtio.net
tls.backplane.io
staging-jira-p2.services.dmtio.net
coredev-cms3-service-proxy-cnn.train.services.ec2.dmtio.net
mssdoc.turner.com
deployit.services.dmtio.net
argonaut.services.dmtio.net
coredev-cnn-dynaimage.prod.services.ec2.dmtio.net
*.morgz.dmtio.net
gp.cso.warnermedia.com
*.planetdraco.net
dev.contrail.cnn.com
argonaut.dev.services.ec2.dmtio.net
mss-vault.turner.com
globalprotect.tbsbest.com
grafana-www.services.dmtio.net
cnnmoney-section-content-service.prod.services.ec2.dmtio.net
*.doc.dmtio.net
cnnmoney-section-content-service.prod.services.ec2.dmtio.net
*.doc.dmtio.net
cartoon-sayin-moderation.prod.56m.dmtio.net
coredev-capi-ptolemy.prod.services.ec2.dmtio.net
*.doc.dmtio.net
registry.services.dmtio.net
coredev-cnn-dynaimage.prod.services.ec2.dmtio.net
tbs.services.dmtio.net
s.livedata.dmtio.net
*.doc.dmtio.net
nba-drupal.int.services.ec2.dmtio.net
target-builder-api.prod.services.ec2.dmtio.net
coredev-capi-ptolemy.preview.services.ec2.dmtio.net
staging-confluence-p2.services.dmtio.net
deployit.services.dmtio.net
turnerdotcom-qa.services.dmtio.net
rancher-mss.services.cop.dmtio.net
staging-confluence-p2.services.dmtio.net
rancher-mss.services.cop.dmtio.net
coredev-cnn-dynaimage.prod.services.ec2.dmtio.net
*.doc.warnermediagroup.com
argonaut.services.dmtio.net
coredev-entertainment-dynaimage.prod.services.ec2.dmtio.net
staging-confluence-p2.services.dmtio.net
coredev-nba-dynaimage.prod.services.ec2.dmtio.net
coredev-tnt-dynaimage.prod.services.ec2.dmtio.net
argonaut.dev.services.ec2.dmtio.net
*.planetdraco.net
customs.services.dmtio.net
argonaut.services.dmtio.net
rancher-sox.services.56m.dmtio.net
coredev-capi-ptolemy.prod-2.services.ec2.dmtio.net
coredev-tnt-dynaimage.prod.services.ec2.dmtio.net
staging-confluence.services.dmtio.net
gp.cso.warnermedia.com
coredev-cnn-dynaimage.prod.services.ec2.dmtio.net
customs.services.dmtio.net
staging-jira-p2.services.dmtio.net
s.livedata.dmtio.net
coredev-tnt-dynaimage.prod.services.ec2.dmtio.net
gitlab.services.dmtio.net
satis.draco.services.dmtio.net
tbs.services.dmtio.net
staging-jira-p2.services.dmtio.net
cnnmoney-section-content-service.prod.services.ec2.dmtio.net
target-builder-api.staging.services.ec2.dmtio.net
cnnmoney-section-content-service.prod.services.ec2.dmtio.net
nba-teamsite-auth.services.dmtio.net
tbs.services.dmtio.net
cnnmoney-section-content-service.prod.services.ec2.dmtio.net
livedataint.56m.dmtio.net
argonaut.dev.services.ec2.dmtio.net
auth.services.dmtio.net
tectonic-prod.services.cop.dmtio.net
rancher-sox.services.56m.dmtio.net
poc.services.dmtio.net
helmit.services.dmtio.net
*.ca.us-east-1.dmtio.net
rancher-mss.services.56m.dmtio.net
tbs-dejavu-www.prod-editorial.services.ec2.dmtio.net
ceph-s3.services.dmtio.net
rancher-sox.services.cop.dmtio.net
coredev-nba-dynaimage.prod.services.ec2.dmtio.net
rancher-mss.services.56m.dmtio.net
coredev-tbs-dynaimage.prod.services.ec2.dmtio.net
livedataint.56m.dmtio.net
*.doc.warnermediagroup.com
s.livedata.dmtio.net
staging-jira-p2.services.dmtio.net
auth.services.dmtio.net
nasm1isil1.turner.com
coredev-cms3-service-proxy-cnn.prod.services.ec2.dmtio.net
auth.services.dmtio.net
idb.services.dmtio.net
satis.draco.services.dmtio.net
coredev-nba-dynaimage.prod.services.ec2.dmtio.net
tnt.services.dmtio.net
coredev-nba-dynaimage.prod.services.ec2.dmtio.net
*.doc.warnermediagroup.com
nba-teamsite-auth.services.dmtio.net
pga.morgz.dmtio.net
idb.services.dmtio.net
tls.backplane.io
staging-jira-p2.services.dmtio.net
coredev-cms3-service-proxy-cnn.train.services.ec2.dmtio.net
mssdoc.turner.com
deployit.services.dmtio.net
argonaut.services.dmtio.net
coredev-cnn-dynaimage.prod.services.ec2.dmtio.net
*.morgz.dmtio.net
gp.cso.warnermedia.com
*.planetdraco.net
dev.contrail.cnn.com
argonaut.dev.services.ec2.dmtio.net
mss-vault.turner.com
globalprotect.tbsbest.com
grafana-www.services.dmtio.net
cnnmoney-section-content-service.prod.services.ec2.dmtio.net
*.doc.dmtio.net
cnnmoney-section-content-service.prod.services.ec2.dmtio.net
*.doc.dmtio.net
cartoon-sayin-moderation.prod.56m.dmtio.net
coredev-capi-ptolemy.prod.services.ec2.dmtio.net
*.doc.dmtio.net
registry.services.dmtio.net
coredev-cnn-dynaimage.prod.services.ec2.dmtio.net
tbs.services.dmtio.net
s.livedata.dmtio.net
*.doc.dmtio.net
nba-drupal.int.services.ec2.dmtio.net
target-builder-api.prod.services.ec2.dmtio.net
coredev-capi-ptolemy.preview.services.ec2.dmtio.net
staging-confluence-p2.services.dmtio.net
deployit.services.dmtio.net
turnerdotcom-qa.services.dmtio.net
rancher-mss.services.cop.dmtio.net
staging-confluence-p2.services.dmtio.net
rancher-mss.services.cop.dmtio.net
coredev-cnn-dynaimage.prod.services.ec2.dmtio.net
*.doc.warnermediagroup.com
argonaut.services.dmtio.net
coredev-entertainment-dynaimage.prod.services.ec2.dmtio.net
staging-confluence-p2.services.dmtio.net
coredev-nba-dynaimage.prod.services.ec2.dmtio.net
coredev-tnt-dynaimage.prod.services.ec2.dmtio.net
argonaut.dev.services.ec2.dmtio.net
*.planetdraco.net
customs.services.dmtio.net
argonaut.services.dmtio.net
rancher-sox.services.56m.dmtio.net
coredev-capi-ptolemy.prod-2.services.ec2.dmtio.net
coredev-tnt-dynaimage.prod.services.ec2.dmtio.net
staging-confluence.services.dmtio.net
gp.cso.warnermedia.com
coredev-cnn-dynaimage.prod.services.ec2.dmtio.net
customs.services.dmtio.net
staging-jira-p2.services.dmtio.net
s.livedata.dmtio.net
coredev-tnt-dynaimage.prod.services.ec2.dmtio.net
gitlab.services.dmtio.net
satis.draco.services.dmtio.net
tbs.services.dmtio.net
staging-jira-p2.services.dmtio.net
cnnmoney-section-content-service.prod.services.ec2.dmtio.net
target-builder-api.staging.services.ec2.dmtio.net
cnnmoney-section-content-service.prod.services.ec2.dmtio.net
nba-teamsite-auth.services.dmtio.net
tbs.services.dmtio.net
cnnmoney-section-content-service.prod.services.ec2.dmtio.net
livedataint.56m.dmtio.net
argonaut.dev.services.ec2.dmtio.net
auth.services.dmtio.net
tectonic-prod.services.cop.dmtio.net
rancher-sox.services.56m.dmtio.net
poc.services.dmtio.net
helmit.services.dmtio.net
*.ca.us-east-1.dmtio.net
rancher-mss.services.56m.dmtio.net
tbs-dejavu-www.prod-editorial.services.ec2.dmtio.net
ceph-s3.services.dmtio.net
rancher-sox.services.cop.dmtio.net
coredev-nba-dynaimage.prod.services.ec2.dmtio.net
rancher-mss.services.56m.dmtio.net
coredev-tbs-dynaimage.prod.services.ec2.dmtio.net
livedataint.56m.dmtio.net
*.doc.warnermediagroup.com
s.livedata.dmtio.net
staging-jira-p2.services.dmtio.net
auth.services.dmtio.net
nasm1isil1.turner.com
coredev-cms3-service-proxy-cnn.prod.services.ec2.dmtio.net
auth.services.dmtio.net
idb.services.dmtio.net
satis.draco.services.dmtio.net
coredev-nba-dynaimage.prod.services.ec2.dmtio.net
tnt.services.dmtio.net
coredev-nba-dynaimage.prod.services.ec2.dmtio.net
*.doc.warnermediagroup.com
nba-teamsite-auth.services.dmtio.net
pga.morgz.dmtio.net
idb.services.dmtio.net
Certificate
The complete raw certificate details for coredev-cms3-service-proxy-cnn.train.services.ec2.dmtio.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRDCCBSygAwIBAgIQDpudpXguatbogXsgozOkQzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xODEwMjYwMDAwMDBaFw0xOTExMjYx MjAwMDBaMEYxRDBCBgNVBAMTO2NvcmVkZXYtY21zMy1zZXJ2aWNlLXByb3h5LWNu bi50cmFpbi5zZXJ2aWNlcy5lYzIuZG10aW8ubmV0MIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAp0ZSjLHWbwzIYs46IcJQ9vUdxbXbsVKYhO6lBqwTs24V ETb/xHBcygTO6QHiYRiE9oG/gEm9bTJUEu4ZX7p6T96bZHTFy/mcggk6MX2YGDM9 I8ls/qa6hZJi0fqXCBlGXVxVmyWlyCmnOoUVgbeDO97zX9sWYA8jNb5FXtVC4NNR VDyRhG7yj4TfmoB+AtiTS+7UW/mwhQO1ZT20KxJeaLwTstTs+NH4dFokHLPPmIED XkagVg0znVzwbaZB0nikbvQ4SnC4pqbJhzLW/8JDfcVVuleyMbnGLHO+WwhyzbTM Q8JuOIxDpyjETRftPmMXQgFxFfpOpujNFwK7g94PNwIDAQABo4IDLDCCAygwHwYD VR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFOSsS2+8qhy5 bFJ6cxm5RPbWfbtIMIIBvAYDVR0RBIIBszCCAa+CO2NvcmVkZXYtY21zMy1zZXJ2 aWNlLXByb3h5LWNubi50cmFpbi5zZXJ2aWNlcy5lYzIuZG10aW8ubmV0gjtjb3Jl ZGV2LWNtczMtc2VydmljZS1wcm94eS1jbm4uZXNhbmQuc2VydmljZXMuZWMyLmRt dGlvLm5ldII+Y29yZWRldi1jbXMzLXNlcnZpY2UtcHJveHktY25uLnBvbGl0aWNz LnNlcnZpY2VzLmVjMi5kbXRpby5uZXSCPGNvcmVkZXYtY21zMy1zZXJ2aWNlLXBy b3h5LWNubi5lbmFibGUuc2VydmljZXMuZWMyLmRtdGlvLm5ldII7Y29yZWRldi1j bXMzLXNlcnZpY2UtcHJveHktY25uLnZpZGVvLnNlcnZpY2VzLmVjMi5kbXRpby5u ZXSCO2NvcmVkZXYtY21zMy1zZXJ2aWNlLXByb3h5LWNubi50ZXJyYS5zZXJ2aWNl cy5lYzIuZG10aW8ubmV0gjtjb3JlZGV2LWNtczMtc2VydmljZS1wcm94eS1jbm4u c3dlZXQuc2VydmljZXMuZWMyLmRtdGlvLm5ldDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0 dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDAgBgNVHSAE GTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsG AQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYB BQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNy dDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1AswKN/OCqei+j6RGZhUCM9/YecAlVvoWfBFsi9A4oQ0c4+zytlc5 pgabtXHMCTaBrgGQKtSKaOaWIHjXFaZKd0Ht5X5CY9vKEXtqDqic7rUkxgVFsbUd zjwgo5ssA18qDEmDaHaQH2L90K257RgFnI00jgaGTU2xbJYc2/Lhy2no1Fql4AJq n+2nmwttIYUlwYN6x0N+p3MlXyDNFXmu79TYxhOL0TbtCr+H34Ai4L4mQXM0vHf4 lC/MJxUMTkIlVkPk22n8jAIZQ8nQgf7RbW4SoWRzmtJFPg2zsTEcpunen1AuCPZA rc29LJmvOnoGY/hyO6Z4bHJTwVPRQdKt -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0ZSjLHWbwzIYs46IcJQ 9vUdxbXbsVKYhO6lBqwTs24VETb/xHBcygTO6QHiYRiE9oG/gEm9bTJUEu4ZX7p6 T96bZHTFy/mcggk6MX2YGDM9I8ls/qa6hZJi0fqXCBlGXVxVmyWlyCmnOoUVgbeD O97zX9sWYA8jNb5FXtVC4NNRVDyRhG7yj4TfmoB+AtiTS+7UW/mwhQO1ZT20KxJe aLwTstTs+NH4dFokHLPPmIEDXkagVg0znVzwbaZB0nikbvQ4SnC4pqbJhzLW/8JD fcVVuleyMbnGLHO+WwhyzbTMQ8JuOIxDpyjETRftPmMXQgFxFfpOpujNFwK7g94P NwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19417195402210624970415693042306753603 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-26 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'coredev-cms3-service-proxy-cnn.train.services.ec2.dmtio.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21116474226468182558239635590579434661114303114115709297663870525016260401917713917249755895542539374149773806681676602076236061049789336505445433273877828086593296300223419124481374500167652230609718183955114799634572216603558743502995342513863886373219116571123643443264210096385230588697761787922233336737155656349461264441344592843581608731991031257211431416251831966346329236849356949891360738051769752782024260561134572939893701136286913456364213512186488927911840229177090901624993063792953413743864845928895588011534778804919243974990445678273271697836388715168941907786953398329962854363157829535601512025911 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e4ac4b6fbcaa1cb96c527a7319b944f6d67dbb48 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (435 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coredev-cms3-service-proxy-cnn.train.services.ec2.dmtio.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coredev-cms3-service-proxy-cnn.esand.services.ec2.dmtio.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coredev-cms3-service-proxy-cnn.politics.services.ec2.dmtio.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coredev-cms3-service-proxy-cnn.enable.services.ec2.dmtio.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coredev-cms3-service-proxy-cnn.video.services.ec2.dmtio.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coredev-cms3-service-proxy-cnn.terra.services.ec2.dmtio.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coredev-cms3-service-proxy-cnn.sweet.services.ec2.dmtio.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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