ap-apse1-apeksprod.k8s.foursquare.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0b:f2:0a:33:59:ef:06:6e:ef:f6:0b:d6:26:80:08:7d was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ap-apse1-apeksprod.k8s.foursquare.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:f2:0a:33:59:ef:06:6e:ef:f6:0b:d6:26:80:08:7dSerial Number (int): 15878250685964957157851088166924060797
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 1c:8c:80:6e:31:26:3a:da:f9:1a:75:e2:90:e7:77:18:96:39:a1:d2
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 0b:6f:07:17:77:13:61:c3:55:2f:46:9e:10:57:d9:ba:30:d9:c1:90
Fingerprint (sha256): 07:4e:f6:3a:c4:d4:02:de:34:b1:96:99:c9:57:a3:28:bd:2e:b6:7b:e1:e2:31:e5:7a:c6:5d:d7:1d:0d:e1:82
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate ap-apse1-apeksprod.k8s.foursquare.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ap-apse1-apeksprod.k8s.foursquare.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ap-apse1-apeksprod.k8s.foursquare.com
*.ap-apse1-apeksprod.k8s.foursquare.com
*.ap-apse1-apeksprod.k8s.foursquare.com
Other certificates including the domain name foursquare.com
(limited to 100 certificates)
f6.shared.global.fastly.net
n2.shared.global.fastly.net
www2.foursquare.com
k2.shared.global.fastly.net
n2.shared.global.fastly.net
n2.shared.global.fastly.net
k2.shared.global.fastly.net
n2.shared.global.fastly.net
k2.shared.global.fastly.net
n2.shared.global.fastly.net
k2.shared.global.fastly.net
design.foursquare.com
f6.shared.global.fastly.net
*.sdk.foursquare.com
k2.shared.global.fastly.net
we-usw1-infra.k8s.foursquare.com
k2.shared.global.fastly.net
dns-vetting1h.map.fastly.net
n2.shared.global.fastly.net
n2.shared.global.fastly.net
dns-vetting1e.map.fastly.net
f6.shared.global.fastly.net
dns-vetting1e.map.fastly.net
k2.shared.global.fastly.net
n2.shared.global.fastly.net
connect.foursquare.com
business.foursquare.com
n2.shared.global.fastly.net
n2.shared.global.fastly.net
cg-status.isr.co.jp
k2.shared.global.fastly.net
*.a.ssl.fastly.net
n2.shared.global.fastly.net
*.foursquare.com
cg-status.isr.co.jp
k2.shared.global.fastly.net
dns-vetting1i.map.fastly.net
n2.shared.global.fastly.net
ap-apse1-apeksprod.k8s.foursquare.com
fastly-log-ingestion.foursquare.com
n2.shared.global.fastly.net
k2.shared.global.fastly.net
dns-vetting1d.map.fastly.net
n2.shared.global.fastly.net
cg-status.isr.co.jp
ja3.foursquare.com
*.a.ssl.fastly.net
f6.shared.global.fastly.net
n2.shared.global.fastly.net
n2.shared.global.fastly.net
k2.shared.global.fastly.net
n2.shared.global.fastly.net
cg-status.isr.co.jp
f6.shared.global.fastly.net
k2.shared.global.fastly.net
f6.shared.global.fastly.net
k2.shared.global.fastly.net
statuspage.io
*.a.ssl.fastly.net
n2.shared.global.fastly.net
k2.shared.global.fastly.net
f6.shared.global.fastly.net
casb.status.symantec.com
foursquare.com
fr.foursquare.com
earlyadopter.foursquare.com
n2.shared.global.fastly.net
k2.shared.global.fastly.net
f6.shared.global.fastly.net
foursquare.com
k2.shared.global.fastly.net
statuspage.io
k2.shared.global.fastly.net
k2.shared.global.fastly.net
cupcake.design
foursquare.com
k2.shared.global.fastly.net
casb.status.symantec.com
n2.shared.global.fastly.net
n2.shared.global.fastly.net
us-use1-testing.k8s.foursquare.com
auth.studio.foursquare.com
f6.shared.global.fastly.net
k2.shared.global.fastly.net
ybivdalkbyzpnsjsjwv.foursquare.com
dns-vetting1e.map.fastly.net
f6.shared.global.fastly.net
foursquare.com
n2.shared.global.fastly.net
resources.foursquare.com
n2.shared.global.fastly.net
k2.shared.global.fastly.net
foursquare.com
f6.shared.global.fastly.net
f6.shared.global.fastly.net
support.foursquare.com
f6.shared.global.fastly.net
docs.foursquare.com
earlyadopter.foursquare.com
statuspage.io
n2.shared.global.fastly.net
www2.foursquare.com
k2.shared.global.fastly.net
n2.shared.global.fastly.net
n2.shared.global.fastly.net
k2.shared.global.fastly.net
n2.shared.global.fastly.net
k2.shared.global.fastly.net
n2.shared.global.fastly.net
k2.shared.global.fastly.net
design.foursquare.com
f6.shared.global.fastly.net
*.sdk.foursquare.com
k2.shared.global.fastly.net
we-usw1-infra.k8s.foursquare.com
k2.shared.global.fastly.net
dns-vetting1h.map.fastly.net
n2.shared.global.fastly.net
n2.shared.global.fastly.net
dns-vetting1e.map.fastly.net
f6.shared.global.fastly.net
dns-vetting1e.map.fastly.net
k2.shared.global.fastly.net
n2.shared.global.fastly.net
connect.foursquare.com
business.foursquare.com
n2.shared.global.fastly.net
n2.shared.global.fastly.net
cg-status.isr.co.jp
k2.shared.global.fastly.net
*.a.ssl.fastly.net
n2.shared.global.fastly.net
*.foursquare.com
cg-status.isr.co.jp
k2.shared.global.fastly.net
dns-vetting1i.map.fastly.net
n2.shared.global.fastly.net
ap-apse1-apeksprod.k8s.foursquare.com
fastly-log-ingestion.foursquare.com
n2.shared.global.fastly.net
k2.shared.global.fastly.net
dns-vetting1d.map.fastly.net
n2.shared.global.fastly.net
cg-status.isr.co.jp
ja3.foursquare.com
*.a.ssl.fastly.net
f6.shared.global.fastly.net
n2.shared.global.fastly.net
n2.shared.global.fastly.net
k2.shared.global.fastly.net
n2.shared.global.fastly.net
cg-status.isr.co.jp
f6.shared.global.fastly.net
k2.shared.global.fastly.net
f6.shared.global.fastly.net
k2.shared.global.fastly.net
statuspage.io
*.a.ssl.fastly.net
n2.shared.global.fastly.net
k2.shared.global.fastly.net
f6.shared.global.fastly.net
casb.status.symantec.com
foursquare.com
fr.foursquare.com
earlyadopter.foursquare.com
n2.shared.global.fastly.net
k2.shared.global.fastly.net
f6.shared.global.fastly.net
foursquare.com
k2.shared.global.fastly.net
statuspage.io
k2.shared.global.fastly.net
k2.shared.global.fastly.net
cupcake.design
foursquare.com
k2.shared.global.fastly.net
casb.status.symantec.com
n2.shared.global.fastly.net
n2.shared.global.fastly.net
us-use1-testing.k8s.foursquare.com
auth.studio.foursquare.com
f6.shared.global.fastly.net
k2.shared.global.fastly.net
ybivdalkbyzpnsjsjwv.foursquare.com
dns-vetting1e.map.fastly.net
f6.shared.global.fastly.net
foursquare.com
n2.shared.global.fastly.net
resources.foursquare.com
n2.shared.global.fastly.net
k2.shared.global.fastly.net
foursquare.com
f6.shared.global.fastly.net
f6.shared.global.fastly.net
support.foursquare.com
f6.shared.global.fastly.net
docs.foursquare.com
earlyadopter.foursquare.com
statuspage.io
Certificate
The complete raw certificate details for ap-apse1-apeksprod.k8s.foursquare.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEvjCCA6agAwIBAgIQC/IKM1nvBm7v9gvWJoAIfTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA4MTEwMDAwMDBaFw0yMzA5MDky MzU5NTlaMDAxLjAsBgNVBAMTJWFwLWFwc2UxLWFwZWtzcHJvZC5rOHMuZm91cnNx dWFyZS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHMgxXIm/j LnUY2IEX25PKOeXPBZ6vjKCwFc5eixtF7omRvgqnBkILzGtjtkWyetxX0GswC8dB 5HqYgxXD+dkCTMMUTIaAq2pMIPXE4ht4bhstwcGaNRhEo5XZFvoyPYG71ITYxCM0 D5l5lgWyi3p4sloHdvaGI5054dNyT9XQVXFKGG+YdtS5oqik3TnZusFd4aMwivzV JneY2jWO/oEMjBEEtbv41tlD4GgIj0i2Tg+FXCEfQJzIcfoLvnTkv1xtf7nmH6/7 lvjOenz5bx5C29cyrVlxbwPUdyyD4l3YQ5lkVK9PtrbdRyzIt0kFdGeVYy1XKBI3 vyUUDfETPvyFAgMBAAGjggG8MIIBuDAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QH J5Z0W/k90DAdBgNVHQ4EFgQUHIyAbjEmOtr5GnXikOd3GJY5odIwWQYDVR0RBFIw UIIlYXAtYXBzZTEtYXBla3Nwcm9kLms4cy5mb3Vyc3F1YXJlLmNvbYInKi5hcC1h cHNlMS1hcGVrc3Byb2QuazhzLmZvdXJzcXVhcmUuY29tMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPQYDVR0fBDYwNDAyoDCg LoYsaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWItMS5jcmww EwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzAB hiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKG Kmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNV HRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBlmexVIJUs6vZrAiOhOkxzrauGrx44KbawbGrEC3+tR7yWwH7rHOZhocFYfB4q EBOkj/o7EgRKM93BBFI2zV3sDS1qC+D66Bmww0l9YnfvPYOczf4NCeTSnbipX86A 79hZx4B5wjSTfm92vDjj9JJq2y7Y5d0LecXNlkJ8GA47pGMtyZfqV9eFUZGL93LK bq2606gbXAKSjcl9P1EweR/bu6VlPhwPnQQLSuKMR4mugphCiXTHtwkmCA4fxmsx BaXF1HYXmEcxC95CHL4RfQXaVTvaBXm0qoC0GuRWhITw0tg1x/yzhHp/gBgWuZmT wpbjpbs2i+t4qXP13qQgiK5h -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzIMVyJv4y51GNiBF9uT yjnlzwWer4ygsBXOXosbRe6Jkb4KpwZCC8xrY7ZFsnrcV9BrMAvHQeR6mIMVw/nZ AkzDFEyGgKtqTCD1xOIbeG4bLcHBmjUYRKOV2Rb6Mj2Bu9SE2MQjNA+ZeZYFsot6 eLJaB3b2hiOdOeHTck/V0FVxShhvmHbUuaKopN052brBXeGjMIr81SZ3mNo1jv6B DIwRBLW7+NbZQ+BoCI9Itk4PhVwhH0CcyHH6C7505L9cbX+55h+v+5b4znp8+W8e QtvXMq1ZcW8D1Hcsg+Jd2EOZZFSvT7a23UcsyLdJBXRnlWMtVygSN78lFA3xEz78 hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15878250685964957157851088166924060797 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ap-apse1-apeksprod.k8s.foursquare.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25146102377742404503662466094949815133474716320295307147964064384987026639758083883093670477167547732906650000892059057046986520293421316852832679062828728140950699567489929012679484186773537359923383396980643006993853519359946830011787925502122365180960942177060340508111093495519082034931088601951975708489524419000807790337346346943641822944131370766414441144303990223723969666389956484654466092428737777133387479007840458544938957347504894896074979660072147113720829926876210659007578653092371911386691520127558032358701973036805304962933313898005448150614255674534239571910627914534138845375425391628587416616069 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1c8c806e31263adaf91a75e290e777189639a1d2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ap-apse1-apeksprod.k8s.foursquare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ap-apse1-apeksprod.k8s.foursquare.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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