live.prod.image-upload.mdb.aws.migros.ch
Issued by Amazon
About this certificate
This digital certificate with serial number 02:2d:c6:95:52:ce:b2:ba:84:3b:d7:2f:c7:c4:20:9d was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=live.prod.image-upload.mdb.aws.migros.ch
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:2d:c6:95:52:ce:b2:ba:84:3b:d7:2f:c7:c4:20:9dSerial Number (int): 2896137097929290191269433238272352413
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 5a:be:8b:0f:d3:42:5a:71:d7:e7:13:9e:db:d9:c9:c6:f9:dc:4a:1e
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 2c:89:26:c5:6d:b1:ed:e9:1a:7c:e1:a3:6a:af:3e:6b:15:c8:cc:c0
Fingerprint (sha256): 07:45:81:66:aa:17:04:41:ff:96:f8:d1:8a:7c:52:92:66:37:c3:82:5c:1e:ae:b1:2d:c1:c7:d7:cf:d8:7c:91
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate live.prod.image-upload.mdb.aws.migros.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for live.prod.image-upload.mdb.aws.migros.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
live.prod.image-upload.mdb.aws.migros.ch
Other certificates including the domain name migros.ch
(limited to 100 certificates)
secure03.stage.lithium.com
commentmatch.m-budget.migros.ch
secure06.lithium.com
mitarbeiteranlass.events.migros.ch
rsc.migros.ch
staging.prod.pema-coupons.mdb.migros.net
test-basel.migros.ch
secure06.lithium.com
photoset.widgets.migros.ch
secure03.stage.lithium.com
migusto.migros.ch
aus-der-region.migros.ch
test-mgo-api.migros.ch
secure03.stage.lithium.com
gmaare.elearning.migros.ch
meineidee-ext-s.gmsap.migros.ch
famigros.migros.ch
perimeter-dmz1-meineip.migros.ch
api.migros.ch
cadismobile.migros.ch
test-hybrid-app.migros.ch
pos-coupons-api.migros.ch
storybox.migros.ch
dev-basel.migros.ch
support.migros.ch
test-web-api.migros.ch
inveco-s.gmsap.migros.ch
konsumententagung.migros.ch
test-mom.migros.ch
portal.migroszh.ch
login.migros.ch
m-learning.migros.ch
secure03.stage.lithium.com
ca.status.clio.com
e3mobilege-test.gmge.migros.ch
photoset.widgets.migros.ch
staging.qual.mam.mdb.migros.net
admin.operations.migros.ch
mymigros.ch
m-learning-t.migros.ch
yellowworldtest.migros.ch
test-mobile-app-api.migros.ch
corporate.migros.ch
recipeapi-t.gmsap.migros.ch
mcrm.migros.ch
test-socialmedia.migros.ch
meineidee.gmsap.migros.ch
connect.gmz.migros.ch
mcds.migros.net
ucb10testews.migros.ch
live.qual.kms-portal.mdb.aws.migros.ch
dev-migipedia-backend.migros.ch
bb2status.mambu.com
storybox.migros.ch
test-help.migros.ch
*.gmaare.migros.ch
quiz-adr.migros.ch
secure06.lithium.com
tiptoimania.migros.ch
secure.clubs.migros.ch
terrasuisse.migros.ch
retitest-ews.migros.ch
ins-staging.migros.ch
jobs.migros.ch
test-winwin-vonuns-vonhier.migros.ch
mein.m-budget.migros.ch
sni.cloudflaressl.com
thehost.widgets.migros.ch
allowlist.sterda.com
report-download.migros.ch
proxy-mdb.migros.ch
test-corporate.migros.ch
ca.status.clio.com
test-auth.magnolia.migros.ch
meineidee-ext-t.gmsap.migros.ch
lyncaccess.datacenter-migros.ch
dev-vaud.migros.ch
dev-cdn.migros.ch
api.migros.ch
admin.logistikplattform.migros.ch
live.prod.image-upload.mdb.aws.migros.ch
image-upload.mdb.migros.net
secure03.stage.lithium.com
cert-test.migros.ch
rc-mobile-app.migros.ch
mylogin.migros.ch
test-hybrid-app.migros.ch
p99.migros.ch
proxy-mdb.migros.ch
auth.migros.ch
ca.status.clio.com
wartung.migros.ch
staging.prod.pema-coupons.mdb.aws.migros.ch
natro.gmaare.migros.ch
impuls.migros.ch
allowlist.sterda.com
recipeapi-s.gmsap.migros.ch
m-payment.pos.migros.ch
fragments.migros.ch
ostern.migros.ch
commentmatch.m-budget.migros.ch
secure06.lithium.com
mitarbeiteranlass.events.migros.ch
rsc.migros.ch
staging.prod.pema-coupons.mdb.migros.net
test-basel.migros.ch
secure06.lithium.com
photoset.widgets.migros.ch
secure03.stage.lithium.com
migusto.migros.ch
aus-der-region.migros.ch
test-mgo-api.migros.ch
secure03.stage.lithium.com
gmaare.elearning.migros.ch
meineidee-ext-s.gmsap.migros.ch
famigros.migros.ch
perimeter-dmz1-meineip.migros.ch
api.migros.ch
cadismobile.migros.ch
test-hybrid-app.migros.ch
pos-coupons-api.migros.ch
storybox.migros.ch
dev-basel.migros.ch
support.migros.ch
test-web-api.migros.ch
inveco-s.gmsap.migros.ch
konsumententagung.migros.ch
test-mom.migros.ch
portal.migroszh.ch
login.migros.ch
m-learning.migros.ch
secure03.stage.lithium.com
ca.status.clio.com
e3mobilege-test.gmge.migros.ch
photoset.widgets.migros.ch
staging.qual.mam.mdb.migros.net
admin.operations.migros.ch
mymigros.ch
m-learning-t.migros.ch
yellowworldtest.migros.ch
test-mobile-app-api.migros.ch
corporate.migros.ch
recipeapi-t.gmsap.migros.ch
mcrm.migros.ch
test-socialmedia.migros.ch
meineidee.gmsap.migros.ch
connect.gmz.migros.ch
mcds.migros.net
ucb10testews.migros.ch
live.qual.kms-portal.mdb.aws.migros.ch
dev-migipedia-backend.migros.ch
bb2status.mambu.com
storybox.migros.ch
test-help.migros.ch
*.gmaare.migros.ch
quiz-adr.migros.ch
secure06.lithium.com
tiptoimania.migros.ch
secure.clubs.migros.ch
terrasuisse.migros.ch
retitest-ews.migros.ch
ins-staging.migros.ch
jobs.migros.ch
test-winwin-vonuns-vonhier.migros.ch
mein.m-budget.migros.ch
sni.cloudflaressl.com
thehost.widgets.migros.ch
allowlist.sterda.com
report-download.migros.ch
proxy-mdb.migros.ch
test-corporate.migros.ch
ca.status.clio.com
test-auth.magnolia.migros.ch
meineidee-ext-t.gmsap.migros.ch
lyncaccess.datacenter-migros.ch
dev-vaud.migros.ch
dev-cdn.migros.ch
api.migros.ch
admin.logistikplattform.migros.ch
live.prod.image-upload.mdb.aws.migros.ch
image-upload.mdb.migros.net
secure03.stage.lithium.com
cert-test.migros.ch
rc-mobile-app.migros.ch
mylogin.migros.ch
test-hybrid-app.migros.ch
p99.migros.ch
proxy-mdb.migros.ch
auth.migros.ch
ca.status.clio.com
wartung.migros.ch
staging.prod.pema-coupons.mdb.aws.migros.ch
natro.gmaare.migros.ch
impuls.migros.ch
allowlist.sterda.com
recipeapi-s.gmsap.migros.ch
m-payment.pos.migros.ch
fragments.migros.ch
ostern.migros.ch
Certificate
The complete raw certificate details for live.prod.image-upload.mdb.aws.migros.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEpjCCA46gAwIBAgIQAi3GlVLOsrqEO9cvx8QgnTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTEyMTEwMDAwMDBaFw0yMTAxMTEx MjAwMDBaMDMxMTAvBgNVBAMTKGxpdmUucHJvZC5pbWFnZS11cGxvYWQubWRiLmF3 cy5taWdyb3MuY2gwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTrbwe DngszCSP2WK+8aXRnCBEd5SGrN9pY3k8Q5cXsNS54ga9QfQVqUrRtGUm+BtFNWKg bhP8gsMrQW/5w4YeJDIjN+IHNJyRqyMukY/rSnQNRZrq+5s/TTiiss8dbxfyyvsz ELCKm72igUvvwpHafxG4fAzMOBZUUyr6PMl4mm+yMWNQpdZQfSZApzIRf5UOcFkt 4IEa7DXrZCDOHad3lq+Q9x8E0HzPVPIes/K2+Tx19yfG1zgqvsW5hmA6USwXbgit L1hx8CnIwXNI7Ud4VzxWLeaVcisN1LUto0Q12JxnKxrnfJ5GcfnOh6uSHQxNo0jC BRyFhbO6r38cwarFAgMBAAGjggGhMIIBnTAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8 o5QHJ5Z0W/k90DAdBgNVHQ4EFgQUWr6LD9NCWnHX5xOe29nJxvncSh4wMwYDVR0R BCwwKoIobGl2ZS5wcm9kLmltYWdlLXVwbG9hZC5tZGIuYXdzLm1pZ3Jvcy5jaDAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsG A1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29t L3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYI KwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6 b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9u dHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMB Af8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBkTSujtDJrAf5J1/srGRTD/ACxD010 zPPX0WzKIuVXDV0MmAh1i3OzJiRr18Ba751z94sHlCCJlyDKYUvM1FFhKh562isI Q2aX9Sz79jzOtC5o0jsZPDe2Ab1+o9j4SCCEbygY40cAQIBGrjmd8dF+BUDeTM4S fb2+N/7KUPRlM/0Wsn4XudL72J7stxbxu2mWXV3+9YauQ4FN1WzDnoMh2YHpq72b L6VrSyne4SMbAzIyMXk+aB0PWuLs0P+mt24LFtub/9L8DkeswQUzmFoiwo5n5exH UU+4JHWJdXb6GA1jv+mscRZJk6iIwXPXL5qtwSllgLr/W+Ie+te2aLff -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0628Hg54LMwkj9livvGl 0ZwgRHeUhqzfaWN5PEOXF7DUueIGvUH0FalK0bRlJvgbRTVioG4T/ILDK0Fv+cOG HiQyIzfiBzSckasjLpGP60p0DUWa6vubP004orLPHW8X8sr7MxCwipu9ooFL78KR 2n8RuHwMzDgWVFMq+jzJeJpvsjFjUKXWUH0mQKcyEX+VDnBZLeCBGuw162Qgzh2n d5avkPcfBNB8z1TyHrPytvk8dfcnxtc4Kr7FuYZgOlEsF24IrS9YcfApyMFzSO1H eFc8Vi3mlXIrDdS1LaNENdicZysa53yeRnH5zoerkh0MTaNIwgUchYWzuq9/HMGq xQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2896137097929290191269433238272352413 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-11 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'live.prod.image-upload.mdb.aws.migros.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26721954187332592950442954411448029539664239692946144497609809494983411206062584863533889018001212461200589398974385718392806254456751735302577169805874606975675087704765536523118422844253321326482453936701966851901379973817421914066452131861196425165082884940558820054820978262685434004577889432829352035926804629266017134307406996116592224870429422914701508483401283199619351177365491035818764670986227720513215569730145058988705687554838800891390989816608242795524781495145077930337653543519182278729793968367488065619075199804494694097598568799587696133607773835190336378302498465519225380089353808851907563858629 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5abe8b0fd3425a71d7e7139edbd9c9c6f9dc4a1e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.prod.image-upload.mdb.aws.migros.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00644d2ba3b4326b01fe49d7fb2b1914c3fc00b10f4d74ccf3d7d16cca22e5570d5d0c9808758b73b326246bd7c05aef9d73f78b079420899720ca614bccd451612a1e7ada2b08436697f52cfbf63cceb42e68d23b193c37b601bd7ea3d8f84820846f2818e34700408046ae399df1d17e0540de4cce127dbdbe37feca50f46533fd16b27e17b9d2fbd89eecb716f1bb69965d5dfef586ae43814dd56cc39e8321d981e9abbd9b2fa56b4b29dee1231b03323231793e681d0f5ae2ecd0ffa6b76e0b16db9bffd2fc0e47acc10533985a22c28e67e5ec47514fb82475897576fa180d63bfe9ac71164993a888c173d72f9aadc1296580baff5be21efad7b668b7df