origin.web.production.hca.brightspot.cloud
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 08:b4:e8:f6:45:ea:2a:2c:92:ab:39:a1:f4:7c:27:c7 was issued on by Amazon.
With 17 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=origin.web.production.hca.brightspot.cloud
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 08:b4:e8:f6:45:ea:2a:2c:92:ab:39:a1:f4:7c:27:c7Serial Number (int): 11573162431609175134011606651132192711
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d4:4b:87:58:f8:6e:9f:58:7a:52:24:30:f8:53:00:05:be:ba:95:0f
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): de:98:29:6d:1f:58:e7:0a:6d:60:53:86:b3:2d:3f:59:f1:58:1e:ed
Fingerprint (sha256): 07:ec:a4:6b:52:e4:16:cd:40:ef:7b:59:0e:dd:ef:02:3b:b2:82:c5:db:b9:9c:25:5c:c6:b6:e5:fb:c4:36:9e
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate origin.web.production.hca.brightspot.cloud
17
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for origin.web.production.hca.brightspot.cloud
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
origin.web.production.hca.brightspot.cloud
web.production.hca.brightspot.cloud
*.origin.web.production.hca.brightspot.cloud
verify.origin.web.production.hca.brightspot.cloud
*.web.production.hca.brightspot.cloud
www.homecareassistanceservices.com
www.thekey.ca
cms.web.production.hca.brightspot.cloud
thekey.ca
verify.cms.web.production.hca.brightspot.cloud
www.thekey.com
homecareassistanceservices.com
athome.healthcare.msu.edu
static.web.production.hca.brightspot.cloud
thekey.brightspotcdn.com
thekey.com
brightspot.thekey.com
web.production.hca.brightspot.cloud
*.origin.web.production.hca.brightspot.cloud
verify.origin.web.production.hca.brightspot.cloud
*.web.production.hca.brightspot.cloud
www.homecareassistanceservices.com
www.thekey.ca
cms.web.production.hca.brightspot.cloud
thekey.ca
verify.cms.web.production.hca.brightspot.cloud
www.thekey.com
homecareassistanceservices.com
athome.healthcare.msu.edu
static.web.production.hca.brightspot.cloud
thekey.brightspotcdn.com
thekey.com
brightspot.thekey.com
Other certificates including the domain name brightspot.cloud
(limited to 100 certificates)
cst-qa.lower.chorus.brightspot.cloud
origin.ser.production.k1.amazon.brightspot.cloud
church-qa3.church.lower.church.brightspot.cloud
origin.uat.lower.google-marketing.brightspot.cloud
entertainment.production.k1.amazon.brightspot.cloud
origin.relay-qa.lower.k1.amazon.brightspot.cloud
biospace-qa.lower.k1.m1.brightspot.cloud
origin.kpbs.kpbs.production.k3.m1.brightspot.cloud
cms.6amcity.com
origin.pitchbook-prod.production.k2.m1.brightspot.cloud
origin.ajga-uat.ajga.lower.k1.m1.brightspot.cloud
amazon-hvh.lower.k3.m1.brightspot.cloud
static.amazon-hvh.lower.k3.m1.brightspot.cloud
origin.acertus.production.k1.m1.brightspot.cloud
origin.cst-web.production.chorus.brightspot.cloud
aarp-content-uat2.aarp.lower.k1.m1.brightspot.cloud
origin.web.production.projectm.brightspot.cloud
tvnotas.production.k3.m1.brightspot.cloud
origin.medtech.production.jnj.brightspot.cloud
origin.web.production.hca.brightspot.cloud
intsys.inter-systems.production.k2.m1.brightspot.cloud
origin.wwe-prod.production.k2.m1.brightspot.cloud
origin.jobs.production.amazon-jobs.brightspot.cloud
origin.berlin-2023-qa.berlin-2023.lower.k2.m1.brightspot.cloud
www.nbcsportsathletedirect.com
static.church-qa.church.lower.church.brightspot.cloud
origin.epe-uat.epe.lower.k2.m1.brightspot.cloud
lehigh-v.lehigh-valley.production.k1.m1.brightspot.cloud
origin.pitchbook-uat.lower.k2.m1.brightspot.cloud
ensign-qa.ensign.lower.church.brightspot.cloud
fastmarkets.com
origin.deseret.production.chorus.brightspot.cloud
static.lexipol.lower.k1.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
static.bwater-uat.bridgewater.lower.k2.m1.brightspot.cloud
static.farm-journal-qa.lower.k1.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
origin.web.production.teaching-strategies.brightspot.cloud
origin.thecity.production.chorus.brightspot.cloud
origin.intsys.inter-systems.production.k2.m1.brightspot.cloud
origin.church-uat.church.lower.church.brightspot.cloud
amazon-last-mile.lower.k3.m1.brightspot.cloud
church-qa4.church.lower.church.brightspot.cloud
origin.vpm.production.k1.m1.brightspot.cloud
origin.foods.wholefoods.production.k1.amazon.brightspot.cloud
aarp-content-uat.aarp.lower.k1.m1.brightspot.cloud
static.biospace.production.k1.m1.brightspot.cloud
bsp.elpais.com.uy
origin.vpm.production.k1.m1.brightspot.cloud
origin.carrick.production.k1.m1.brightspot.cloud
cms.6amcity.com
static.timothy-shriver-prod.production.k1.m1.brightspot.cloud
origin.chalkbeat.production.chorus.brightspot.cloud
origin.berlin-2023.berlin-2023.production.k2.m1.brightspot.cloud
static.prod-wires.production.ap.brightspot.cloud
origin.music2-qa.lower.k1.amazon.brightspot.cloud
kpbs-qa.kpbs.lower.k3.m1.brightspot.cloud
acertus-qa.lower.k1.m1.brightspot.cloud
cms.6amcity.com
cms.6amcity.com
origin.marriott-news.production.k1.m1.brightspot.cloud
origin.ei.energy-intelligence.production.k1.m1.brightspot.cloud
origin.thecity.production.chorus.brightspot.cloud
origin.lehigh-v.lehigh-valley.production.k1.m1.brightspot.cloud
static.uat.lower.dispatch-health.brightspot.cloud
erepublic-qa2.erepublic.lower.k3.m1.brightspot.cloud
lexipol.production.k1.m1.brightspot.cloud
qa2.lower.forum-communications.brightspot.cloud
*.dispatchhealth.com
origin.chopra.chopra.production.k2.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
origin.qa.lower.grove2.brightspot.cloud
static.uat.lower.amazon-sell.brightspot.cloud
origin.kpbs-uat.kpbs.lower.k3.m1.brightspot.cloud
static.notmusa.production.k3.m1.brightspot.cloud
static.aarp-states-uat.aarp.lower.k1.m1.brightspot.cloud
science-qa2.topics.lower.k1.amazon.brightspot.cloud
origin.im-qa.lower.jnj.brightspot.cloud
aarp-content.aarp.production.k1.m1.brightspot.cloud
origin.uat.lower.dispatch-health.brightspot.cloud
sixam-city-uat.lower.k1.m1.brightspot.cloud
origin.csx-qa.lower.k2.m1.brightspot.cloud
origin.rfdtv.k1.go.brightspot.cloud
static.web.production.forum-communications.brightspot.cloud
static.gbh.production.k1.m1.brightspot.cloud
origin.aji.production.k2.m1.brightspot.cloud
origin.notmusa.production.k3.m1.brightspot.cloud
origin.usnews-uat.lower.usnews.brightspot.cloud
verify.origin.prod-news.production.ap.brightspot.cloud
mattress-uat.mattress-firm.lower.k2.m1.brightspot.cloud
origin.qa-migration.lower.el-pais.brightspot.cloud
castle-qa.castle-connolly.lower.k2.m1.brightspot.cloud
origin.qa.lower.google-marketing.brightspot.cloud
sustainability.production.k1.amazon.brightspot.cloud
static.uat.lower.google-marketing.brightspot.cloud
origin.in-investor-qa2.lower.k2.m1.brightspot.cloud
campaigns2.jnj-migrated.production.jnj.brightspot.cloud
static.acertus.production.k1.m1.brightspot.cloud
origin.lexis.production.ln-production.brightspot.cloud
static.nautilus.lower.k1.m1.brightspot.cloud
origin.ser.production.k1.amazon.brightspot.cloud
church-qa3.church.lower.church.brightspot.cloud
origin.uat.lower.google-marketing.brightspot.cloud
entertainment.production.k1.amazon.brightspot.cloud
origin.relay-qa.lower.k1.amazon.brightspot.cloud
biospace-qa.lower.k1.m1.brightspot.cloud
origin.kpbs.kpbs.production.k3.m1.brightspot.cloud
cms.6amcity.com
origin.pitchbook-prod.production.k2.m1.brightspot.cloud
origin.ajga-uat.ajga.lower.k1.m1.brightspot.cloud
amazon-hvh.lower.k3.m1.brightspot.cloud
static.amazon-hvh.lower.k3.m1.brightspot.cloud
origin.acertus.production.k1.m1.brightspot.cloud
origin.cst-web.production.chorus.brightspot.cloud
aarp-content-uat2.aarp.lower.k1.m1.brightspot.cloud
origin.web.production.projectm.brightspot.cloud
tvnotas.production.k3.m1.brightspot.cloud
origin.medtech.production.jnj.brightspot.cloud
origin.web.production.hca.brightspot.cloud
intsys.inter-systems.production.k2.m1.brightspot.cloud
origin.wwe-prod.production.k2.m1.brightspot.cloud
origin.jobs.production.amazon-jobs.brightspot.cloud
origin.berlin-2023-qa.berlin-2023.lower.k2.m1.brightspot.cloud
www.nbcsportsathletedirect.com
static.church-qa.church.lower.church.brightspot.cloud
origin.epe-uat.epe.lower.k2.m1.brightspot.cloud
lehigh-v.lehigh-valley.production.k1.m1.brightspot.cloud
origin.pitchbook-uat.lower.k2.m1.brightspot.cloud
ensign-qa.ensign.lower.church.brightspot.cloud
fastmarkets.com
origin.deseret.production.chorus.brightspot.cloud
static.lexipol.lower.k1.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
static.bwater-uat.bridgewater.lower.k2.m1.brightspot.cloud
static.farm-journal-qa.lower.k1.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
origin.web.production.teaching-strategies.brightspot.cloud
origin.thecity.production.chorus.brightspot.cloud
origin.intsys.inter-systems.production.k2.m1.brightspot.cloud
origin.church-uat.church.lower.church.brightspot.cloud
amazon-last-mile.lower.k3.m1.brightspot.cloud
church-qa4.church.lower.church.brightspot.cloud
origin.vpm.production.k1.m1.brightspot.cloud
origin.foods.wholefoods.production.k1.amazon.brightspot.cloud
aarp-content-uat.aarp.lower.k1.m1.brightspot.cloud
static.biospace.production.k1.m1.brightspot.cloud
bsp.elpais.com.uy
origin.vpm.production.k1.m1.brightspot.cloud
origin.carrick.production.k1.m1.brightspot.cloud
cms.6amcity.com
static.timothy-shriver-prod.production.k1.m1.brightspot.cloud
origin.chalkbeat.production.chorus.brightspot.cloud
origin.berlin-2023.berlin-2023.production.k2.m1.brightspot.cloud
static.prod-wires.production.ap.brightspot.cloud
origin.music2-qa.lower.k1.amazon.brightspot.cloud
kpbs-qa.kpbs.lower.k3.m1.brightspot.cloud
acertus-qa.lower.k1.m1.brightspot.cloud
cms.6amcity.com
cms.6amcity.com
origin.marriott-news.production.k1.m1.brightspot.cloud
origin.ei.energy-intelligence.production.k1.m1.brightspot.cloud
origin.thecity.production.chorus.brightspot.cloud
origin.lehigh-v.lehigh-valley.production.k1.m1.brightspot.cloud
static.uat.lower.dispatch-health.brightspot.cloud
erepublic-qa2.erepublic.lower.k3.m1.brightspot.cloud
lexipol.production.k1.m1.brightspot.cloud
qa2.lower.forum-communications.brightspot.cloud
*.dispatchhealth.com
origin.chopra.chopra.production.k2.m1.brightspot.cloud
origin.web.production.hca.brightspot.cloud
origin.qa.lower.grove2.brightspot.cloud
static.uat.lower.amazon-sell.brightspot.cloud
origin.kpbs-uat.kpbs.lower.k3.m1.brightspot.cloud
static.notmusa.production.k3.m1.brightspot.cloud
static.aarp-states-uat.aarp.lower.k1.m1.brightspot.cloud
science-qa2.topics.lower.k1.amazon.brightspot.cloud
origin.im-qa.lower.jnj.brightspot.cloud
aarp-content.aarp.production.k1.m1.brightspot.cloud
origin.uat.lower.dispatch-health.brightspot.cloud
sixam-city-uat.lower.k1.m1.brightspot.cloud
origin.csx-qa.lower.k2.m1.brightspot.cloud
origin.rfdtv.k1.go.brightspot.cloud
static.web.production.forum-communications.brightspot.cloud
static.gbh.production.k1.m1.brightspot.cloud
origin.aji.production.k2.m1.brightspot.cloud
origin.notmusa.production.k3.m1.brightspot.cloud
origin.usnews-uat.lower.usnews.brightspot.cloud
verify.origin.prod-news.production.ap.brightspot.cloud
mattress-uat.mattress-firm.lower.k2.m1.brightspot.cloud
origin.qa-migration.lower.el-pais.brightspot.cloud
castle-qa.castle-connolly.lower.k2.m1.brightspot.cloud
origin.qa.lower.google-marketing.brightspot.cloud
sustainability.production.k1.amazon.brightspot.cloud
static.uat.lower.google-marketing.brightspot.cloud
origin.in-investor-qa2.lower.k2.m1.brightspot.cloud
campaigns2.jnj-migrated.production.jnj.brightspot.cloud
static.acertus.production.k1.m1.brightspot.cloud
origin.lexis.production.ln-production.brightspot.cloud
static.nautilus.lower.k1.m1.brightspot.cloud
Certificate
The complete raw certificate details for origin.web.production.hca.brightspot.cloud in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH/zCCBuegAwIBAgIQCLTo9kXqKiySqzmh9HwnxzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDEyNDAwMDAwMFoXDTI1MDIyMjIzNTk1OVowNTEz MDEGA1UEAxMqb3JpZ2luLndlYi5wcm9kdWN0aW9uLmhjYS5icmlnaHRzcG90LmNs b3VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroF6/BOFCN56D9DU z7Uzap7V81azvboXR8tRcwpIaLmWol2bSmzlbRddrkq1my6AZ3E1X6hRPr3fuGBJ nIy5rdd8osx6oS51LBb/9jy8YPKabbNjLzme22Ka2XyTiEU4JeuEjkoTWF/t0qvM YyislSFQZ6SKpW2qZelEbpRdwZAxL8/2tkJ7/5j5L9p4PdbR0StJmPzdr7iPay68 s5hzsxjjQwtZkdgPuPnG+3eFoDpty5CMGIo1f4FItn6M9sZexx/y5nQQC1d6qDM7 tohp85ZC0DQ6iQmOSBx/OCRohMPnfaD8+/rXjjlYxZTZFWLBSpe8xEVax2frA3TR IIFqHQIDAQABo4IFAjCCBP4wHwYDVR0jBBgwFoAUVdkYX9IczAHhWLS+q9lVQgHX LgIwHQYDVR0OBBYEFNRLh1j4bp9YelIkMPhTAAW+upUPMIICMQYDVR0RBIICKDCC AiSCKm9yaWdpbi53ZWIucHJvZHVjdGlvbi5oY2EuYnJpZ2h0c3BvdC5jbG91ZIIj d2ViLnByb2R1Y3Rpb24uaGNhLmJyaWdodHNwb3QuY2xvdWSCLCoub3JpZ2luLndl Yi5wcm9kdWN0aW9uLmhjYS5icmlnaHRzcG90LmNsb3VkgjF2ZXJpZnkub3JpZ2lu LndlYi5wcm9kdWN0aW9uLmhjYS5icmlnaHRzcG90LmNsb3VkgiUqLndlYi5wcm9k dWN0aW9uLmhjYS5icmlnaHRzcG90LmNsb3VkgiJ3d3cuaG9tZWNhcmVhc3Npc3Rh bmNlc2VydmljZXMuY29tgg13d3cudGhla2V5LmNhgidjbXMud2ViLnByb2R1Y3Rp b24uaGNhLmJyaWdodHNwb3QuY2xvdWSCCXRoZWtleS5jYYIudmVyaWZ5LmNtcy53 ZWIucHJvZHVjdGlvbi5oY2EuYnJpZ2h0c3BvdC5jbG91ZIIOd3d3LnRoZWtleS5j b22CHmhvbWVjYXJlYXNzaXN0YW5jZXNlcnZpY2VzLmNvbYIZYXRob21lLmhlYWx0 aGNhcmUubXN1LmVkdYIqc3RhdGljLndlYi5wcm9kdWN0aW9uLmhjYS5icmlnaHRz cG90LmNsb3Vkghh0aGVrZXkuYnJpZ2h0c3BvdGNkbi5jb22CCnRoZWtleS5jb22C FWJyaWdodHNwb3QudGhla2V5LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1Ud HwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMuYW1hem9udHJ1c3QuY29tL3Iy bTAzLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3Nw LnIybTAzLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5y Mm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY2VyMAwGA1UdEwEB/wQCMAAwggF/ BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB3AM8RVu7VLnyv84db2Wkum+kacWdKsBfs rAHSW3fOzDsIAAABjTofu9EAAAQDAEgwRgIhAMWre94GSn2iapJKDJe32hbZBnH1 sTvMJW55RdgvjLMpAiEAqddXxT0FkjTaIY4k8y9EikxV/XkXowxM7ZOI76BrpRAA dgBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAY06H7vxAAAEAwBH MEUCIEParcrUZd7veywKyDLubjtkifDC5cz3+Ez0i8A4Leo1AiEA0E9LkkT0p9SL yZV62ECkOrbY4yUaqwvQrAG/Q+UPcjcAdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6V nrkDL9kOjC55uAAAAY06H7t+AAAEAwBHMEUCIQCeErDCViO5AeEYm7ItAgc7Na9I aeSCLCvEH2TJ9ElxogIgRl6BrO9oim4Y4xcBYSHVsZ7ALUERq8be7Qhj1AMwfCQw DQYJKoZIhvcNAQELBQADggEBADEs8eFzl7JZDbf+sEvufs2X6Zg7ZLZTPlv0WOep 9emYD6dLsDRcYdV5B5RjuJXLEM8oufpVCO456unNCoIfyqBv/H8KoFq8KWeiJRot LcB7lTTOoee8Fb3EW73Oae9KR22xlyKpSU+QGWZhkIhCLz+J6uY7tABauqDgsbKf Yq2cH8No9DIl45kAGqeIa/3giuLZDH9sF0aCAel09TSQ3Y2tO34HffEwMQCdJuhP vpu0uEdPmr2ALhaaNpyvZ0iscLY7iUyglZAewn50kiQPNNhtKd27AiNn/yBTLeki fb7qvkxvDAUsv+qUTzh+W47mmQ/t8SeGvdjAZmYyLOtFOvE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroF6/BOFCN56D9DUz7Uz ap7V81azvboXR8tRcwpIaLmWol2bSmzlbRddrkq1my6AZ3E1X6hRPr3fuGBJnIy5 rdd8osx6oS51LBb/9jy8YPKabbNjLzme22Ka2XyTiEU4JeuEjkoTWF/t0qvMYyis lSFQZ6SKpW2qZelEbpRdwZAxL8/2tkJ7/5j5L9p4PdbR0StJmPzdr7iPay68s5hz sxjjQwtZkdgPuPnG+3eFoDpty5CMGIo1f4FItn6M9sZexx/y5nQQC1d6qDM7tohp 85ZC0DQ6iQmOSBx/OCRohMPnfaD8+/rXjjlYxZTZFWLBSpe8xEVax2frA3TRIIFq HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11573162431609175134011606651132192711 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'origin.web.production.hca.brightspot.cloud' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22029314233403222250303542958825529551820322681157042498125255752952635017009351537688531387285147448224344973208014713404155093972179190760646639803629942751619035649510703704919992588802720932476501513383375343236845200744825253866834455877932402265592305023536067650563094624203107625797517665978647514787460861258573238563870291023051758639488230106814105492471557239306888526700050432392416307086307161424430737575832542969759841339269025499000937289623557646851457520615345817619724543406845786978227762664779371337836572044139265969435159647773150654110749348703228751498879244866189838513536627077245663537693 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d44b8758f86e9f587a522430f8530005beba950f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (552 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.origin.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'verify.origin.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.homecareassistanceservices.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thekey.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thekey.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'verify.cms.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thekey.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homecareassistanceservices.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'athome.healthcare.msu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.web.production.hca.brightspot.cloud' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thekey.brightspotcdn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thekey.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brightspot.thekey.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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