metadata.azure.us
Issued by Microsoft RSA TLS CA 01
About this certificate
This digital certificate with serial number 6b:00:0a:a4:40:c6:0b:d0:01:f4:f8:17:fd:00:00:00:0a:a4:40 was issued on by Microsoft Corporation.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=metadata.azure.us
Microsoft Corporation
Organization:
Microsoft Corporation
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 6b:00:0a:a4:40:c6:0b:d0:01:f4:f8:17:fd:00:00:00:0a:a4:40Serial Number (int): 2386183357396161046187947103623690963917644864
Serial Number lenght: 151 bits, 19 octets
SubjectKeyId: 4e:79:91:c1:62:2d:a0:00:7a:52:2d:c2:7f:dd:01:9e:3c:b0:6b:af
AuthorityKeyId: b5:76:0c:30:11:ce:c7:92:42:4d:4c:c7:5c:2c:c8:a9:0c:e8:0b:64
Fingerprint (sha1): 79:a1:12:97:39:10:e4:c6:96:32:a8:6a:21:09:dd:05:37:98:82:d6
Fingerprint (sha256): 08:06:4c:70:dd:fd:79:87:99:5b:43:11:80:b1:1e:89:da:26:b0:89:d7:b3:76:e8:de:01:b1:70:5e:0c:42:43
Issuing Certificate URL: http://www.microsoft.com/pki/mscorp/Microsoft%20RSA%20TLS%20CA%2001.crt
Revocation information
OCSP Server: http://ocsp.msocsp.comCRL Distribution Point: http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20RSA%20TLS%20CA%2001.crl
CRL Distribution Point: http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20RSA%20TLS%20CA%2001.crl
Check the revocation status for certificate metadata.azure.us
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for metadata.azure.us
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
usgoviowa.metadata.azure.us
metadata.azure.us
metadata.azure.us
Other certificates including the domain name azure.us
(limited to 100 certificates)
commands.runtime.fairfaxdevops.speech.azure.us
acis.iam.ad.ext.azure.us
prod.hot.ingest.monitor.core.usgovcloudapi.net
*.botframework.azure.us
wdvmninfravaff4.rdp.secondary.azure.us
az2hxcqr1y9g.asadataplane.azure.us
pushagentv2management.eventgrid.azure.us
foo.internal-test.gtos.azure.us
ssl.roles.ppe.botframework.azure.us
ssl.roles.ppe.botframework.azure.us
*.eventgrid.azure.us
subscriptionmanagement.eventgrid.azure.us
stage.alertmanagement.detection.rome.azure.us
luis.azure.us
ssl.roles.ppe.botframework.azure.us
clientauthentication.iaasdeployments.iaas.ext.azure.us
botframework.azure.us
main.iam.ad.ext.azure.us
hosting.ev2.billing.ext.azure.us
*.botframework.azure.us
dmsprod.azure.us
prod0-asc-sf-usgovvirginia.hpccache.azure.us
*.aires.ml.azure.us
DCaaSPROD.aadc.activedirectory.azure.us
azuremgmt.main.iam.ad.ext.azure.us
rc.shell.azure.us
fabric.documents.azure.us
acis.iam.ad.ext.azure.us
*.projectoxford.ext.azure.us
ux-mpac.console.azure.us
*.nam.daas.azure.us
*.botframework.azure.us
*.rp.alerts.security.dev.azure.us
prod.ai.ingestion.msftcloudes.us
*.appsvcux.ext.azure.us
tx.ext.core.security.azure.us
logicappMgmt.PMGovcentralus.svc.datafactory-test.azure.us
cstclient.fairfax.azure.us
docsecrets.documents.azure.us
az26hv48h9k6.asadataplane.azure.us
rp.ugv.gov.sentinel.azure.us
encrypt-botnet.eh.idml.azure.us
*.table.cosmosdb.azure.us
www.silicon.help
metadata.azure.us
*.accessreviews.identitygovernance.azure.us
*.tun.usgovarizona.cx.aks.containerservice.azure.us
ACEClient.marketplacecommerce.azure.us
metadata.azure.us
cpim.usgovcloudapi.net
metadata.azure.us
de60r62wexuz.asadataplane.azure.us
ms-adftest.azure.us
s2.datafactory.ext.azure.us
elm.iga.azure.us
api.informationprotection.azure.us
encryption.signup.azure.us
prod.hot.ingest.monitor.core.usgovcloudapi.net
logicapp.PMUsgovtexas.svc.datafactory-test.azure.us
proxy.client.marketplacepolicyservice.azure.us
credentials.windowsazure.us
irisffusgvdr.fabric.usgovtexas.cloudapp.azure.us
usdodeast.logic.azure.us
rp.uga.gov.sentinel.azure.us
ade.v2.aaddc.activedirectory.azure.us
notify.iga.azure.us
az1769042s2p.asadataplane.azure.us
luis.azure.us
aadauthcert.identity.ml.azure.us
hostaadapp.platform.cognitive.azure.us
*.botframework.azure.us
s2.datafactory.ext.azure.us
serviceprincipal.console.azure.us
MONSVCUsgovtexas.svc.datafactory-test.azure.us
notebookapis.azure.us
notify.iga.azure.us
ux.console-test.azure.us
*.eventgrid.azure.us
agent.serviceprofiler-test.azure.us
luismdsfairfaxtestingunused.azure.us
portal.azure.us
*.mserm.ext.azure.us
*.daas.azure.us
cpim.usgovcloudapi.net
*.security.stage.azure.us
*.botframework.azure.us
mysignins.azure.us
metadata.azure.us
prod.ai.ingestion.msftcloudes.us
va166hcya5in.asadataplane.azure.us
main.iam.ad.ext.azure.us
msihostidentity.metadata.azure.us
va1ykwvqpyq5.asadataplane.azure.us
usgovarizona01.afs.azure.us
*.ugv.databox.azure.us
portal.azure.us
logicapp.PMUsgovtexas.svc.datafactory-test.azure.us
secretsmanagement.pks.aadcdi.azure.us
az2f4lq5wwdz.asadataplane.azure.us
servicefabricmanagement.eventgrid.azure.us
acis.iam.ad.ext.azure.us
prod.hot.ingest.monitor.core.usgovcloudapi.net
*.botframework.azure.us
wdvmninfravaff4.rdp.secondary.azure.us
az2hxcqr1y9g.asadataplane.azure.us
pushagentv2management.eventgrid.azure.us
foo.internal-test.gtos.azure.us
ssl.roles.ppe.botframework.azure.us
ssl.roles.ppe.botframework.azure.us
*.eventgrid.azure.us
subscriptionmanagement.eventgrid.azure.us
stage.alertmanagement.detection.rome.azure.us
luis.azure.us
ssl.roles.ppe.botframework.azure.us
clientauthentication.iaasdeployments.iaas.ext.azure.us
botframework.azure.us
main.iam.ad.ext.azure.us
hosting.ev2.billing.ext.azure.us
*.botframework.azure.us
dmsprod.azure.us
prod0-asc-sf-usgovvirginia.hpccache.azure.us
*.aires.ml.azure.us
DCaaSPROD.aadc.activedirectory.azure.us
azuremgmt.main.iam.ad.ext.azure.us
rc.shell.azure.us
fabric.documents.azure.us
acis.iam.ad.ext.azure.us
*.projectoxford.ext.azure.us
ux-mpac.console.azure.us
*.nam.daas.azure.us
*.botframework.azure.us
*.rp.alerts.security.dev.azure.us
prod.ai.ingestion.msftcloudes.us
*.appsvcux.ext.azure.us
tx.ext.core.security.azure.us
logicappMgmt.PMGovcentralus.svc.datafactory-test.azure.us
cstclient.fairfax.azure.us
docsecrets.documents.azure.us
az26hv48h9k6.asadataplane.azure.us
rp.ugv.gov.sentinel.azure.us
encrypt-botnet.eh.idml.azure.us
*.table.cosmosdb.azure.us
www.silicon.help
metadata.azure.us
*.accessreviews.identitygovernance.azure.us
*.tun.usgovarizona.cx.aks.containerservice.azure.us
ACEClient.marketplacecommerce.azure.us
metadata.azure.us
cpim.usgovcloudapi.net
metadata.azure.us
de60r62wexuz.asadataplane.azure.us
ms-adftest.azure.us
s2.datafactory.ext.azure.us
elm.iga.azure.us
api.informationprotection.azure.us
encryption.signup.azure.us
prod.hot.ingest.monitor.core.usgovcloudapi.net
logicapp.PMUsgovtexas.svc.datafactory-test.azure.us
proxy.client.marketplacepolicyservice.azure.us
credentials.windowsazure.us
irisffusgvdr.fabric.usgovtexas.cloudapp.azure.us
usdodeast.logic.azure.us
rp.uga.gov.sentinel.azure.us
ade.v2.aaddc.activedirectory.azure.us
notify.iga.azure.us
az1769042s2p.asadataplane.azure.us
luis.azure.us
aadauthcert.identity.ml.azure.us
hostaadapp.platform.cognitive.azure.us
*.botframework.azure.us
s2.datafactory.ext.azure.us
serviceprincipal.console.azure.us
MONSVCUsgovtexas.svc.datafactory-test.azure.us
notebookapis.azure.us
notify.iga.azure.us
ux.console-test.azure.us
*.eventgrid.azure.us
agent.serviceprofiler-test.azure.us
luismdsfairfaxtestingunused.azure.us
portal.azure.us
*.mserm.ext.azure.us
*.daas.azure.us
cpim.usgovcloudapi.net
*.security.stage.azure.us
*.botframework.azure.us
mysignins.azure.us
metadata.azure.us
prod.ai.ingestion.msftcloudes.us
va166hcya5in.asadataplane.azure.us
main.iam.ad.ext.azure.us
msihostidentity.metadata.azure.us
va1ykwvqpyq5.asadataplane.azure.us
usgovarizona01.afs.azure.us
*.ugv.databox.azure.us
portal.azure.us
logicapp.PMUsgovtexas.svc.datafactory-test.azure.us
secretsmanagement.pks.aadcdi.azure.us
az2f4lq5wwdz.asadataplane.azure.us
servicefabricmanagement.eventgrid.azure.us
Certificate
The complete raw certificate details for metadata.azure.us in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGuTCCBKGgAwIBAgITawAKpEDGC9AB9PgX/QAAAAqkQDANBgkqhkiG9w0BAQsF ADBPMQswCQYDVQQGEwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9u MSAwHgYDVQQDExdNaWNyb3NvZnQgUlNBIFRMUyBDQSAwMTAeFw0yMTAzMTEwMzI1 MDVaFw0yMjAzMTEwMzI1MDVaMBwxGjAYBgNVBAMTEW1ldGFkYXRhLmF6dXJlLnVz MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAeHCLAlrsiVH4EK3GSC ZtuF1jrHxjx5/+S9LUQDeCUEN4psGb5v9FetEj8v7pX9i3gmlPK2aTFePYKyCEKl JKCwwNeNB/p6w5cnlDsoij+ta8Z2rixCptvvPVMgWUHB/kilRf5U1jjo+uMVyJ2C mTgW7Md3YU8e+XdPG7VgjUNBHYnwvnfQlFP1NJ1sYRrvc9zMDNykqP9gVFt6Y4tW qUCij65DsoyBbd7Xc65iXD9tL5Fhgw5fgK9wbKSQTNVmWZH4DNy5DBIXWBrT7cSw SIyfrghkSnY4bK3i24Ivstr/rHfTBgMD92iTv8o/ZuvrhdGBwuvTTBzr4liItJDO JQIDAQABo4ICvzCCArswEwYKKwYBBAHWeQIEAwEB/wQCBQAwJwYJKwYBBAGCNxUK BBowGDAKBggrBgEFBQcDATAKBggrBgEFBQcDAjA+BgkrBgEEAYI3FQcEMTAvBicr BgEEAYI3FQiH2oZ1g+7ZAYLJhRuBtZ5hhfTrYIFdhYaOQYfCmFACAWQCASUwgYcG CCsGAQUFBwEBBHsweTBTBggrBgEFBQcwAoZHaHR0cDovL3d3dy5taWNyb3NvZnQu Y29tL3BraS9tc2NvcnAvTWljcm9zb2Z0JTIwUlNBJTIwVExTJTIwQ0ElMjAwMS5j cnQwIgYIKwYBBQUHMAGGFmh0dHA6Ly9vY3NwLm1zb2NzcC5jb20wHQYDVR0OBBYE FE55kcFiLaAAelItwn/dAZ48sGuvMAsGA1UdDwQEAwIEsDA5BgNVHREEMjAwght1 c2dvdmlvd2EubWV0YWRhdGEuYXp1cmUudXOCEW1ldGFkYXRhLmF6dXJlLnVzMIGw BgNVHR8EgagwgaUwgaKggZ+ggZyGTWh0dHA6Ly9tc2NybC5taWNyb3NvZnQuY29t L3BraS9tc2NvcnAvY3JsL01pY3Jvc29mdCUyMFJTQSUyMFRMUyUyMENBJTIwMDEu Y3JshktodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20vcGtpL21zY29ycC9jcmwvTWlj cm9zb2Z0JTIwUlNBJTIwVExTJTIwQ0ElMjAwMS5jcmwwVwYDVR0gBFAwTjBCBgkr BgEEAYI3KgEwNTAzBggrBgEFBQcCARYnaHR0cDovL3d3dy5taWNyb3NvZnQuY29t L3BraS9tc2NvcnAvY3BzMAgGBmeBDAECATAfBgNVHSMEGDAWgBS1dgwwEc7HkkJN TMdcLMipDOgLZDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDQYJKoZI hvcNAQELBQADggIBADmDWqn0Scz/EZ0u94nySEcd46cEarH02Y2Vzy3NL8/N2Tsw zav2g07YCJu+S38q3aUc+7gRkmVHUDmWKu6/S5bM9Lb78COomeSFviRj1iGQFFeI F7WtC+1shdx3bctbTEYoZ93tXvwFtJDdxhCAeYWQSIY63lp4uPkS+N/rp6m4VU9v cqVCahG8WY7LLhxjzd2DKQVGQMclHbAaf9qSKtCYHeVR0FrRYCC2YYxjRh2LzUzK NTqOeA2Ma2CfJHn+v8GneZugx8unNz9WS+yKW4/Bd9/GGM+UCFusNGIdbkJPhka0 Kl1CM2uU97ST7zcwtGYtLdFIfqOWIInIr9zKH9MGrsn63r99aM3caT96JnITfzWc zYmFUoeqWCNwOFJeDv+63glghyG9cRvHrIX4HHJcEFI91xR+y62o1FvOX9Q1O8Ty j5kUafzX9DqkGga8+8+GOyIzIvxidyDLMkhIUt6Kw/uc6X0K562ultRcpBQT7rO+ xjbXstVwQaTHRuoR6oG74VYjK16D/nSZG9fB9M1qQZKmwXSNqUshbTUDa68g6OJb pYvQXDTWVWDtKy/foSxfJkjKV7nz1iBDQLeC72uk6zNvtmbeMqM/rFtrYv1RZLAI pH7QSObufZ6WACTYoXsw+xRkVJv8bjA4+fdIobnsFjFiU2Fqkwea3g4ph4nQ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAeHCLAlrsiVH4EK3GSC ZtuF1jrHxjx5/+S9LUQDeCUEN4psGb5v9FetEj8v7pX9i3gmlPK2aTFePYKyCEKl JKCwwNeNB/p6w5cnlDsoij+ta8Z2rixCptvvPVMgWUHB/kilRf5U1jjo+uMVyJ2C mTgW7Md3YU8e+XdPG7VgjUNBHYnwvnfQlFP1NJ1sYRrvc9zMDNykqP9gVFt6Y4tW qUCij65DsoyBbd7Xc65iXD9tL5Fhgw5fgK9wbKSQTNVmWZH4DNy5DBIXWBrT7cSw SIyfrghkSnY4bK3i24Ivstr/rHfTBgMD92iTv8o/ZuvrhdGBwuvTTBzr4liItJDO JQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2386183357396161046187947103623690963917644864 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft RSA TLS CA 01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-11 03:25:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-11 03:25:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'metadata.azure.us' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25251372930130655273831357342626662855371981862326332479691489851687068982479236907505023054622918512279628346438931276053465166186029469434320775772298464105766539734958702373717610846892943835042564202964580456575121752157083270704550778883200352832943820576566508740317814195948489606651470315044668387180507800080566969745261042584866575345763944199146309678074574555170091186256239556578284284405423562787750410043157333114368237245629891487077409137584360417589645380373521848860356381032758101238560409573893239799315829704238507568013414881438239710465574824202199338084384694145887304091219773398132928335397 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.16155509.8105089.5391003.2969441.12400096.221.10585921.15764560 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 37 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pki/mscorp/Microsoft%20RSA%20TLS%20CA%2001.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.msocsp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4e7991c1622da0007a522dc27fdd019e3cb06baf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usgoviowa.metadata.azure.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'metadata.azure.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (168 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20RSA%20TLS%20CA%2001.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20RSA%20TLS%20CA%2001.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.42.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pki/mscorp/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b5760c3011cec792424d4cc75c2cc8a90ce80b64 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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