api.tpst.svc.ms
- Microsoft Corporation -
Issued by Microsoft Azure TLS Issuing CA 06
About this certificate
This digital certificate with serial number 33:00:0f:4f:3e:5f:b2:42:ea:bc:43:5f:a4:00:00:00:0f:4f:3e was issued on by Microsoft Corporation.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Microsoft Corporation
Organization:
Microsoft Corporation
State / Province:
WA
Locality: Redmond
Country: US
Locality: Redmond
Country: US
Microsoft Corporation
Organization:
Microsoft Corporation
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 33:00:0f:4f:3e:5f:b2:42:ea:bc:43:5f:a4:00:00:00:0f:4f:3eSerial Number (int): 1137343214693440618767849640357056611924004670
Serial Number lenght: 150 bits, 19 octets
SubjectKeyId: da:5e:f5:0c:4c:fb:7d:f9:6a:77:17:a7:e8:7a:41:31:c2:57:69:a9
AuthorityKeyId: d5:c1:67:3a:c2:a3:9d:f4:77:52:5b:59:12:38:29:e6:55:68:bb:a5
Fingerprint (sha1): 3e:01:23:7f:62:dd:af:09:1f:54:26:c8:b9:31:86:30:ee:a2:3b:7c
Fingerprint (sha256): 07:d6:0c:9f:f8:5d:2b:dd:27:15:e4:96:fd:c4:34:2d:55:81:d0:ad:60:6a:22:7a:da:03:51:22:65:e4:72:fe
Issuing Certificate URL: http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2006%20-%20xsign.crt
Revocation information
OCSP Server: http://oneocsp.microsoft.com/ocspCRL Distribution Point: http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2006.crl
Check the revocation status for certificate api.tpst.svc.ms
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.tpst.svc.ms
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
12 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.api.tpst.svc.ms
api.tpst.svc.ms
api.tpst.svc.ms
Other certificates including the domain name svc.ms
(limited to 100 certificates)
*.notifyd.svc.ms
servicefabric.pushns.svc.ms
*.badgers.svc.ms
*.mediap.svc.ms
*.hwp.svc.ms
SPO-BF-MS-AAD.svc.ms
*.pushng.svc.ms
*.hwp.svc.ms
usdodeast0-notifyg.svc.ms
sdesti.prod.servicecerts.svc.ms
*.mediap.svc.ms
*.pushb.svc.ms
*.hwp.svc.ms
usdodeast0-notifyg.svc.ms
*.pushfp.svc.ms
gcc-notify-sphomep.svc.ms
gcc-managementcert-sphomep.svc.ms
*.pushnp.svc.ms
*.badgerp.svc.ms
usdodeast0-mediag.svc.ms
usgovvirginia0-notifyg.svc.ms
*.badgerb.svc.ms
*.hwp.svc.ms
test.test.usgovvirginia0-mediap.svc.ms
*.pushng.svc.ms
sti.sphomep.svc.ms
*.pushnb.svc.ms
cma.pushs.svc.ms
SPO-DOD-AS-STI.notifyp.svc.ms
servicefabric.pushng.svc.ms
*.pushng.svc.ms
sdeazureauth.prod.servicecerts.svc.ms
api.tpst.svc.ms
*.badgerg.svc.ms
onedrive.com
usgovvirginia0-notifyg.svc.ms
servicefabric.pushfb.svc.ms
usgovvirginia0-notifyp.svc.ms
usgovvirginia0-notifyg.svc.ms
*.kmgcc.svc.ms
servicefabric.pushfp.svc.ms
*.pushfb.svc.ms
*.svc.ms
api.tpsprod.svc.ms
svc.ms
servicefabric.pushfp.svc.ms
*.pushfd.svc.ms
germanynortheast0-notifyp.svc.ms
germanynortheast0-notifyp.svc.ms
*.notifyp.svc.ms
*.badgerp.svc.ms
servicefabric.pushnb.svc.ms
servicefabric.pushfb.svc.ms
servicefabric.photostreamt.svc.ms
*.pushnp.svc.ms
*.badgers.svc.ms
*.pushnp.svc.ms
api.tpsedog.svc.ms
usgovvirginia0-notifyg.svc.ms
*.connectort.svc.ms
sdesti.prod.servicecerts.svc.ms
api.tpsprod.svc.ms
*.hwp.svc.ms
*.badgerb.svc.ms
spo-completenessprod-cma.servicecerts.svc.ms
sdegenevacert.prod.servicecerts.svc.ms
*.mediad.svc.ms
servicefabric.photostreamd.svc.ms
servicefabric.pushnb.svc.ms
SPO-PF-MS-MC-mediag.svc.ms
spo-completenessedog-cma.servicecerts.svc.ms
*.pushfb.svc.ms
*.badgerg.svc.ms
*.completenesss.svc.ms
SPO-BF-MS-AAD.svc.ms
gcc-sti-sphomep.svc.ms
SPO-BF-AS-CMA.svc.ms
usgovvirginia0-notifyg.svc.ms
managementcert.sphomep.svc.ms
onedrive.com
sti.sphomed.svc.ms
*.badgerb.svc.ms
gcc-griffinruntime-sphomep.svc.ms
spo-sscprod.cma.servicecerts.svc.ms
servicefabric.pushns.svc.ms
SPO-TB-STI-notifyg.svc.ms
usgovvirginia0-mediap.svc.ms
*.connectorp.svc.ms
*.pushng.svc.ms
usdodeast0-notifyg.svc.ms
api.tpsedog.svc.ms
spo-sscprod.cma.servicecerts.svc.ms
*.photostreamd.svc.ms
*.connectorp.svc.ms
api.tpsspdf.svc.ms
servicefabric.pushnb.svc.ms
kbstate.sphomeg.svc.ms
*.pushng.svc.ms
kbstate.sphomep.svc.ms
odspsscsiphonedog.servicecerts.svc.ms
servicefabric.pushns.svc.ms
*.badgers.svc.ms
*.mediap.svc.ms
*.hwp.svc.ms
SPO-BF-MS-AAD.svc.ms
*.pushng.svc.ms
*.hwp.svc.ms
usdodeast0-notifyg.svc.ms
sdesti.prod.servicecerts.svc.ms
*.mediap.svc.ms
*.pushb.svc.ms
*.hwp.svc.ms
usdodeast0-notifyg.svc.ms
*.pushfp.svc.ms
gcc-notify-sphomep.svc.ms
gcc-managementcert-sphomep.svc.ms
*.pushnp.svc.ms
*.badgerp.svc.ms
usdodeast0-mediag.svc.ms
usgovvirginia0-notifyg.svc.ms
*.badgerb.svc.ms
*.hwp.svc.ms
test.test.usgovvirginia0-mediap.svc.ms
*.pushng.svc.ms
sti.sphomep.svc.ms
*.pushnb.svc.ms
cma.pushs.svc.ms
SPO-DOD-AS-STI.notifyp.svc.ms
servicefabric.pushng.svc.ms
*.pushng.svc.ms
sdeazureauth.prod.servicecerts.svc.ms
api.tpst.svc.ms
*.badgerg.svc.ms
onedrive.com
usgovvirginia0-notifyg.svc.ms
servicefabric.pushfb.svc.ms
usgovvirginia0-notifyp.svc.ms
usgovvirginia0-notifyg.svc.ms
*.kmgcc.svc.ms
servicefabric.pushfp.svc.ms
*.pushfb.svc.ms
*.svc.ms
api.tpsprod.svc.ms
svc.ms
servicefabric.pushfp.svc.ms
*.pushfd.svc.ms
germanynortheast0-notifyp.svc.ms
germanynortheast0-notifyp.svc.ms
*.notifyp.svc.ms
*.badgerp.svc.ms
servicefabric.pushnb.svc.ms
servicefabric.pushfb.svc.ms
servicefabric.photostreamt.svc.ms
*.pushnp.svc.ms
*.badgers.svc.ms
*.pushnp.svc.ms
api.tpsedog.svc.ms
usgovvirginia0-notifyg.svc.ms
*.connectort.svc.ms
sdesti.prod.servicecerts.svc.ms
api.tpsprod.svc.ms
*.hwp.svc.ms
*.badgerb.svc.ms
spo-completenessprod-cma.servicecerts.svc.ms
sdegenevacert.prod.servicecerts.svc.ms
*.mediad.svc.ms
servicefabric.photostreamd.svc.ms
servicefabric.pushnb.svc.ms
SPO-PF-MS-MC-mediag.svc.ms
spo-completenessedog-cma.servicecerts.svc.ms
*.pushfb.svc.ms
*.badgerg.svc.ms
*.completenesss.svc.ms
SPO-BF-MS-AAD.svc.ms
gcc-sti-sphomep.svc.ms
SPO-BF-AS-CMA.svc.ms
usgovvirginia0-notifyg.svc.ms
managementcert.sphomep.svc.ms
onedrive.com
sti.sphomed.svc.ms
*.badgerb.svc.ms
gcc-griffinruntime-sphomep.svc.ms
spo-sscprod.cma.servicecerts.svc.ms
servicefabric.pushns.svc.ms
SPO-TB-STI-notifyg.svc.ms
usgovvirginia0-mediap.svc.ms
*.connectorp.svc.ms
*.pushng.svc.ms
usdodeast0-notifyg.svc.ms
api.tpsedog.svc.ms
spo-sscprod.cma.servicecerts.svc.ms
*.photostreamd.svc.ms
*.connectorp.svc.ms
api.tpsspdf.svc.ms
servicefabric.pushnb.svc.ms
kbstate.sphomeg.svc.ms
*.pushng.svc.ms
kbstate.sphomep.svc.ms
odspsscsiphonedog.servicecerts.svc.ms
Certificate
The complete raw certificate details for api.tpst.svc.ms in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG+DCCBOCgAwIBAgITMwAPTz5fskLqvENfpAAAAA9PPjANBgkqhkiG9w0BAQwF ADBZMQswCQYDVQQGEwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9u MSowKAYDVQQDEyFNaWNyb3NvZnQgQXp1cmUgVExTIElzc3VpbmcgQ0EgMDYwHhcN MjEwNDE5MjAxOTU0WhcNMjEwNzE4MjAxOTU0WjBmMQswCQYDVQQGEwJVUzELMAkG A1UECBMCV0ExEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBD b3Jwb3JhdGlvbjEYMBYGA1UEAxMPYXBpLnRwc3Quc3ZjLm1zMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHpA/Ka9EEndHK5oXoGnlQqOqXFZNm+FaZsf zzOVbThvq3v0zGcFiJik3Al0k3yhYMx3gKQDnKISmuZ0xaOvDqLT1lk3BzHqR9wM hu0Z79ZZg72SgthT1WV+EAeXb8sfqo5AgvZFJHLJry99v/skMpUu4+lIKAPFkA91 vlPGnstdv29laa4+mhD34bepMJk/tvoozeLbXXtGO1qEPRYsQ/roXPDY8jHZFnj7 u3VTBxeVqYmi4xfFqiIEqpLVHNgUoKhbPhnPi5fBrRfamUW4trlLu7zXpaR+wdYu RLQWuFX29CheCiA4lsuhYCtJw0v5C0c+24qYM+IknU1AoyUnuQIDAQABo4ICqjCC AqYwEwYKKwYBBAHWeQIEAwEB/wQCBQAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEF BQcDAjAKBggrBgEFBQcDATA7BgkrBgEEAYI3FQcELjAsBiQrBgEEAYI3FQiHvdcb gefrRoKBnS6O0AyH8NodXdi5bYGlkEICAWQCASgwga4GCCsGAQUFBwEBBIGhMIGe MG0GCCsGAQUFBzAChmFodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20vcGtpb3BzL2Nl cnRzL01pY3Jvc29mdCUyMEF6dXJlJTIwVExTJTIwSXNzdWluZyUyMENBJTIwMDYl MjAtJTIweHNpZ24uY3J0MC0GCCsGAQUFBzABhiFodHRwOi8vb25lb2NzcC5taWNy b3NvZnQuY29tL29jc3AwHQYDVR0OBBYEFNpe9QxM+335ancXp+h6QTHCV2mpMA4G A1UdDwEB/wQEAwIEsDAtBgNVHREEJjAkghEqLmFwaS50cHN0LnN2Yy5tc4IPYXBp LnRwc3Quc3ZjLm1zMAwGA1UdEwEB/wQCMAAwZAYDVR0fBF0wWzBZoFegVYZTaHR0 cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jcmwvTWljcm9zb2Z0JTIwQXp1 cmUlMjBUTFMlMjBJc3N1aW5nJTIwQ0ElMjAwNi5jcmwwZgYDVR0gBF8wXTBRBgwr BgEEAYI3TIN9AQEwQTA/BggrBgEFBQcCARYzaHR0cDovL3d3dy5taWNyb3NvZnQu Y29tL3BraW9wcy9Eb2NzL1JlcG9zaXRvcnkuaHRtMAgGBmeBDAECAjAfBgNVHSME GDAWgBTVwWc6wqOd9HdSW1kSOCnmVWi7pTAdBgNVHSUEFjAUBggrBgEFBQcDAgYI KwYBBQUHAwEwDQYJKoZIhvcNAQEMBQADggIBAEyQygrTGBqBDpFpzRujf7WT1qvQ 5vS0dUzbT3rh4R+egE7Mq5wmyTsQDChg9KEWeQKbKPaubh5LM1/MqeBCHdBpS0D0 KMOn0Yrm5iyGlwTU2r20AyCZEMx1cMiSCFo7VZhVx81UWqpWNn0pyVHYMvC1hccG Kj+K/DbJRsfCUppysaReEFY6rlU09giD3+K3t450lgriMlTcsUUnmSy55oLQ4yYb Pwl/cOvW3rXjg97CZbpHaTkIIy8iO7aJLV4060cvfApxW7p9mrfIjyZsiB1b1LcT OejYVTdTNHIomoCd1jbzTETkGodX8a5O3piGu2VGsmuDiaC99zEqbM4j5UE0DrCK i0nGc7vptwRQQxK0mdchAPb2JJtqr2o0olaumzgERQ0/WI2gt5I6fHRTHOM+igNI 36v+T93V/mOOaqU6I3xGbawQ3ks31OmN/3slzcWIZ2eEpNE71tGOyqxfoKNQchIb lbEaZ0IzcnM+RWCDtoOPz3tZEfaIbE8DPOG/Xcy6P7t0FEc/SwyKJ4yYOHRWBoBu SNhRVm5LYqGwRyQnHHY+h+WLhPIA13o//XtM+nE/+su8o36vctd88xXShYGQLK3Z 6pWu3kS+i/fvu0oj1L6BFFlOqc0x4C/cEydykq5iJAS1OmiWzyTmFNWalyT9Dtge fBmzs9UzlkGcvoAc -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHpA/Ka9EEndHK5oXoGn lQqOqXFZNm+FaZsfzzOVbThvq3v0zGcFiJik3Al0k3yhYMx3gKQDnKISmuZ0xaOv DqLT1lk3BzHqR9wMhu0Z79ZZg72SgthT1WV+EAeXb8sfqo5AgvZFJHLJry99v/sk MpUu4+lIKAPFkA91vlPGnstdv29laa4+mhD34bepMJk/tvoozeLbXXtGO1qEPRYs Q/roXPDY8jHZFnj7u3VTBxeVqYmi4xfFqiIEqpLVHNgUoKhbPhnPi5fBrRfamUW4 trlLu7zXpaR+wdYuRLQWuFX29CheCiA4lsuhYCtJw0v5C0c+24qYM+IknU1AoyUn uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1137343214693440618767849640357056611924004670 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Azure TLS Issuing CA 06' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-19 20:19:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-07-18 20:19:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.tpst.svc.ms' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22278227296878311212474372023354135355239489010396068307107189014906093930468685445366043530640054826152488262735542709708869094941650074337408313348668716879280642397402501561063306586269310256921868088144440115863813131919828744320389322103768678117640014343838409187243293373535977011468659545439772646126690188670721076932266781032293940119564162540618557562624628014446533677847135754490400675361309344372112108098263767863001751034690701587528428566387738130297772471777549694678110190584246936015738297667884289275099169577386988038246717112812408010065426172445080858993917484759967795283698037522406501066681 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.15690651.3798470.4214446.239628.16526621.93.1449197.2705474 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 40 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (161 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2006%20-%20xsign.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://oneocsp.microsoft.com/ocsp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) da5ef50c4cfb7df96a7717a7e87a4131c25769a9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.tpst.svc.ms' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.tpst.svc.ms' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2006.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.76.509.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pkiops/Docs/Repository.htm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5c1673ac2a39df477525b59123829e65568bba5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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