scores.api-test.yle.fi
Issued by Amazon
About this certificate
This digital certificate with serial number 06:40:e3:5f:fb:c9:4d:a0:72:1c:3d:cd:95:2c:bf:07 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=scores.api-test.yle.fi
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:40:e3:5f:fb:c9:4d:a0:72:1c:3d:cd:95:2c:bf:07Serial Number (int): 8312286685235290126768001982567071495
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 21:3c:00:8a:ff:3f:92:30:5a:bf:c9:a4:2e:91:49:fb:17:00:ce:f0
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): df:80:88:31:14:c2:95:7b:94:ed:dc:d9:85:94:f6:e7:9a:8f:7e:4d
Fingerprint (sha256): 06:9a:68:fb:51:ad:69:1b:2c:ad:7f:33:47:30:0d:5b:9a:0d:c2:ff:44:7c:a0:b0:e9:54:a3:a7:a4:eb:df:00
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate scores.api-test.yle.fi
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for scores.api-test.yle.fi
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
scores.api-test.yle.fi
scores-api-test.c1t.yle.fi
scores-api-test.c1t.yle.fi
Other certificates including the domain name yle.fi
(limited to 100 certificates)
*.c6t.yle.fi
ovp-search.api-test.yle.fi
*.yle.fi
yleplus.yle.fi
areena-webviews.apps-test.yle.fi
areena.yle.fi
ad-recommender.api.yle.fi
vaalibotti.yle.fi
datacloud.api-test.yle.fi
playlist-aws.api-test.yle.fi
lusi-dataviz.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
radiator.aws.yle.fi
external.api-test.yle.fi
san.cloudinary.com
ma-proxy.api-test.yle.fi
san.cloudinary.com
postituslista-ylex.yle.fi
www.3scale.net
site-survey.yle.fi
*.apps-test.yle.fi
survey.yle.fi
svenska-dataviz.test.ylestatic.fi
programs-cdn.api.yle.fi
design-system.yle.fi
kioski-vaalibotti-epv2019.test.yle.fi
packages.api.yle.fi
datacloud.api.yle.fi
areena-webviews.apps.yle.fi
comments-websocket.api.yle.fi
reference-data.api.yle.fi
bamboo.test.yle.fi
programs-v2.api-test.yle.fi
aihe.test.yle.fi
packages.api-test.yle.fi
elavaarkisto-test.c2t.yle.fi
www.3scale.net
www.3scale.net
tehtava.api-test.yle.fi
areena.api.yle.fi
tunnus-v4.apps.yle.fi
aihe.yle.fi
tableau.api-test.yle.fi
pumpumhiihto.apps-test.yle.fi
da.yle.fi
san.cloudinary.com
media-manifest.api-test.yle.fi
san.cloudinary.com
val.yle.fi
link.yle.fi
da.yle.fi
svo.yle.fi
player.api.yle.fi
grafana-test.aws.yle.fi
vaalit.yle.fi
*.c2t.yle.fi
areena-program-info-widget.yle.fi
metrics.api-test.yle.fi
beaver.api-test.yle.fi
broadcast-recommendations.api.yle.fi
*.api-test.yle.fi
trollitehdas.test.yle.fi
yle-comments-livefeed-widget.apps-test.yle.fi
beaver.api-test.yle.fi
tehtava.api.yle.fi
analytics-sdk.yle.fi
areena-webviews.apps.yle.fi
datacloud.api-test.yle.fi
beta.yle.fi
*.yle.fi
yle.fi
media-manifest.api.yle.fi
ohjeet.areena.yle.fi
futistietaja.api-test.yle.fi
contact-center.apps.yle.fi
hattara.yle.fi
areena-taittelija.yle.fi
*.c3.yle.fi
*.c4.yle.fi
postituslista-radio-suomi.yle.fi
analytics-sdk-test.yle.fi
parliament-api-admin.apps.yle.fi
urheilu-taittelija.yle.fi
parliament.api.yle.fi
asiakaspalvelu.yle.fi
scores.api-test.yle.fi
identification.api-test.yle.fi
s1-sni.cloudinary.com
tehtava.api-test.yle.fi
tunnus-token-login.apps.yle.fi
ohjeet.areena.yle.fi
s1-cloudinary-pin-sni.map.fastly.net
areena-preview.api.yle.fi
areena.test.ylestatic.fi
kioski-vaalibotti-epv2019.test.yle.fi
headline-recommender.api-test.yle.fi
s4-san.cloudinary.com
vaalikone.yle.fi
vaalit.test.yle.fi
hulahulasuomi.yle.fi
ovp-search.api-test.yle.fi
*.yle.fi
yleplus.yle.fi
areena-webviews.apps-test.yle.fi
areena.yle.fi
ad-recommender.api.yle.fi
vaalibotti.yle.fi
datacloud.api-test.yle.fi
playlist-aws.api-test.yle.fi
lusi-dataviz.ylestatic.fi
parliament-api-membercard.test.ylestatic.fi
radiator.aws.yle.fi
external.api-test.yle.fi
san.cloudinary.com
ma-proxy.api-test.yle.fi
san.cloudinary.com
postituslista-ylex.yle.fi
www.3scale.net
site-survey.yle.fi
*.apps-test.yle.fi
survey.yle.fi
svenska-dataviz.test.ylestatic.fi
programs-cdn.api.yle.fi
design-system.yle.fi
kioski-vaalibotti-epv2019.test.yle.fi
packages.api.yle.fi
datacloud.api.yle.fi
areena-webviews.apps.yle.fi
comments-websocket.api.yle.fi
reference-data.api.yle.fi
bamboo.test.yle.fi
programs-v2.api-test.yle.fi
aihe.test.yle.fi
packages.api-test.yle.fi
elavaarkisto-test.c2t.yle.fi
www.3scale.net
www.3scale.net
tehtava.api-test.yle.fi
areena.api.yle.fi
tunnus-v4.apps.yle.fi
aihe.yle.fi
tableau.api-test.yle.fi
pumpumhiihto.apps-test.yle.fi
da.yle.fi
san.cloudinary.com
media-manifest.api-test.yle.fi
san.cloudinary.com
val.yle.fi
link.yle.fi
da.yle.fi
svo.yle.fi
player.api.yle.fi
grafana-test.aws.yle.fi
vaalit.yle.fi
*.c2t.yle.fi
areena-program-info-widget.yle.fi
metrics.api-test.yle.fi
beaver.api-test.yle.fi
broadcast-recommendations.api.yle.fi
*.api-test.yle.fi
trollitehdas.test.yle.fi
yle-comments-livefeed-widget.apps-test.yle.fi
beaver.api-test.yle.fi
tehtava.api.yle.fi
analytics-sdk.yle.fi
areena-webviews.apps.yle.fi
datacloud.api-test.yle.fi
beta.yle.fi
*.yle.fi
yle.fi
media-manifest.api.yle.fi
ohjeet.areena.yle.fi
futistietaja.api-test.yle.fi
contact-center.apps.yle.fi
hattara.yle.fi
areena-taittelija.yle.fi
*.c3.yle.fi
*.c4.yle.fi
postituslista-radio-suomi.yle.fi
analytics-sdk-test.yle.fi
parliament-api-admin.apps.yle.fi
urheilu-taittelija.yle.fi
parliament.api.yle.fi
asiakaspalvelu.yle.fi
scores.api-test.yle.fi
identification.api-test.yle.fi
s1-sni.cloudinary.com
tehtava.api-test.yle.fi
tunnus-token-login.apps.yle.fi
ohjeet.areena.yle.fi
s1-cloudinary-pin-sni.map.fastly.net
areena-preview.api.yle.fi
areena.test.ylestatic.fi
kioski-vaalibotti-epv2019.test.yle.fi
headline-recommender.api-test.yle.fi
s4-san.cloudinary.com
vaalikone.yle.fi
vaalit.test.yle.fi
hulahulasuomi.yle.fi
Certificate
The complete raw certificate details for scores.api-test.yle.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGADCCBOigAwIBAgIQBkDjX/vJTaByHD3NlSy/BzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMTEyMDYwMDAwMDBaFw0yMzAxMDIy MzU5NTlaMCExHzAdBgNVBAMTFnNjb3Jlcy5hcGktdGVzdC55bGUuZmkwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyymeHVSXLFwFTkAI2C21YrZYtS5+7 cA25Ok9NWjVCS0T9iRj6u4ATdMEQBbe1BZ6HIBaPab1dcsdCC7CFf2Qy54lfSl64 mRq9Gwu5uaQ6xkwBGsZJ0HrGAX4PNHk4t+B6WFJnTwrZDGya5KmmprDJqnFbqb2X NPV5QswChvoZR3yueH7jbpjx5Pvd9M10iNJpjarsc3efMGmaS5MBOQNx3VRrgq0/ sTgo9a8LsjxRvjOJvdId3rK9ifl0K0fckFzxq29MEtHqamPNzb9gTzL3MTsLCa0m YXZFP2Nn5I2BD8ZXw9/zHWTdtoouvykjgly08qAZLm/QJWQAJUonJjY5AgMBAAGj ggMNMIIDCTAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4E FgQUITwAiv8/kjBav8mkLpFJ+xcAzvAwPQYDVR0RBDYwNIIWc2NvcmVzLmFwaS10 ZXN0LnlsZS5maYIac2NvcmVzLWFwaS10ZXN0LmMxdC55bGUuZmkwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA9BgNVHR8ENjA0 MDKgMKAuhixodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi0x LmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYB BQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEF BQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0 MAwGA1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AOg+0No+ 9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABfY3KNj4AAAQDAEcwRQIhALYk mF8FCQiBd3/ZeQzp16UCwbtRa1CdEkRCuZTbP5OqAiAnKhDv+Ry5yAX7IBIQAzUc x6Dpb7Eu2OHPZxVd90LoxwB2ADXPGRu/sWxXvw+tTG1Cy7u2JyAmUeo/4SrvqAPD O9ZMAAABfY3KNhcAAAQDAEcwRQIhAOCVDSijj1lWR/pzoFpsAzPGLhE74iaqiqpk 1B8VyB/CAiAXI1L7pD8XAGAXoHdxiB03JEQu89oJD/UdFGYuDCNFxAB2ALNzdwfh hFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAABfY3KNkoAAAQDAEcwRQIhAJLN h5XBBCmbbBHCJycRmTSJFyHtXfRHGx1LTKCsQmRxAiB87ZCPEyA/D8ZSkDGDTxWG rgnFOn9e+PTxUvxXUc1QZDANBgkqhkiG9w0BAQsFAAOCAQEANUNVbuleA1phtNHy 7KazbOE+IbuBOfP2+igFrnhGxSPEt4exyQ8jCte+TUG6rW3UaC3qUiK1fnCCBwto UbA9DKchKD4QgRMjj4MTBY6xYa3HDLeFUlrjV+gMNURZJ7qxaDfDvCsmGEStsCOB X04wMrH5jGMQWAzbCVtjkjtiQK4LeCopVqyu1wifY9zfLpNVSuqsOITfGBxxtG1P 9aB6ndAhAWUMOhqtxNiqN90uoX9t74oGhxHikHZN/HA2XNIUT5CdQ8H8Q82B7d/s qIZ2yCNaFpXSiCfW6hEkW5MtVCQ/0VpGmYFM4xlDozDOeP5gImWjB4qhyRnT84A6 piCBKw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsspnh1UlyxcBU5ACNgtt WK2WLUufu3ANuTpPTVo1QktE/YkY+ruAE3TBEAW3tQWehyAWj2m9XXLHQguwhX9k MueJX0peuJkavRsLubmkOsZMARrGSdB6xgF+DzR5OLfgelhSZ08K2QxsmuSppqaw yapxW6m9lzT1eULMAob6GUd8rnh+426Y8eT73fTNdIjSaY2q7HN3nzBpmkuTATkD cd1Ua4KtP7E4KPWvC7I8Ub4zib3SHd6yvYn5dCtH3JBc8atvTBLR6mpjzc2/YE8y 9zE7CwmtJmF2RT9jZ+SNgQ/GV8Pf8x1k3baKLr8pI4JctPKgGS5v0CVkACVKJyY2 OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8312286685235290126768001982567071495 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'scores.api-test.yle.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22570227617863655486921464564276297712420792420666675257336158526727418904520937543587308706115530516282041575416665190744999253077361693156979090890184772129940223868955010830623201052360790166927928809649933261749172856029466083418521412224615280731622112485459550075309333215791124734749874394674897048023174019673576207262729500525826386690689900176816372566309454193459330774850136918742558948757154910575790678653569514266312170014116538365269389364310173312789027572370247987889144415960793447617833284838563474874098408796695313180168260506767988219372035923536095018605215354116429465487959624285403669214777 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 213c008aff3f92305abfc9a42e9149fb1700cef0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scores.api-test.yle.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scores-api-test.c1t.yle.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000017d8dca363e0000040300473045022100b624985f05090881777fd9790ce9d7a502c1bb516b509d124442b994db3f93aa0220272a10eff91cb9c805fb20121003351cc7a0e96fb12ed8e1cf67155df742e8c700760035cf191bbfb16c57bf0fad4c6d42cbbbb627202651ea3fe12aefa803c33bd64c0000017d8dca36170000040300473045022100e0950d28a38f595647fa73a05a6c0333c62e113be226aa8aaa64d41f15c81fc20220172352fba43f17006017a07771881d3724442ef3da090ff51d14662e0c2345c4007600b3737707e18450f86386d605a9dc11094a792db1670c0b87dcf0030e7936a59a0000017d8dca364a000004030047304502210092cd8795c104299b6c11c22727119934891721ed5df4471b1d4b4ca0ac42647102207ced908f13203f0fc6529031834f1586ae09c53a7f5ef8f4f152fc5751cd5064 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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