vault.test-secret-mgt.prod.cdsf.io
Issued by Amazon
About this certificate
This digital certificate with serial number 0d:4a:15:f2:d3:e0:be:2f:c5:19:bf:8a:07:71:bd:a1 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=vault.test-secret-mgt.prod.cdsf.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:4a:15:f2:d3:e0:be:2f:c5:19:bf:8a:07:71:bd:a1Serial Number (int): 17664639082125523316038145674363125153
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 48:65:dd:2e:be:6c:11:41:d2:dd:81:88:d1:59:d5:bb:2e:ca:11:98
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): f8:3d:3d:b3:c5:05:1f:41:27:23:e9:8f:01:fa:5d:8a:e7:a7:9d:df
Fingerprint (sha256): 09:59:9f:bd:9b:88:b1:53:53:d5:e9:06:d0:c3:cc:37:22:e2:6a:f4:bd:6c:3a:28:47:85:74:86:5f:ba:77:53
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate vault.test-secret-mgt.prod.cdsf.io
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vault.test-secret-mgt.prod.cdsf.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vault.test-secret-mgt.prod.cdsf.io
Other certificates including the domain name cdsf.io
(limited to 100 certificates)
test-simple-tool.tooling.prod.cdsf.io
we-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
dev-simple-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
vault.test-val-secret-mgt.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-val-eu-central-1-test.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
syzygy-access.tisweb.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-vault.test.cdsf.io
registry-test.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
smashing.tooling.prod.cdsf.io
vault-int.int-secret-mgt.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
repo.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.eu-central-1-test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
vault.vault-k8s-val-eu-central-1.prod.cdsf.io
smashing.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
code.tooling.prod.cdsf.io
repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-direct-tool.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
eks.tooling.prod.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
paste.tool.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
we-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
dev-simple-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
vault.test-val-secret-mgt.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-val-eu-central-1-test.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-vault.test.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
syzygy-access.tisweb.cdsf.io
vault.vault-k8s-int-eu-central-1-test.prod.cdsf.io
test-vault.test.cdsf.io
registry-test.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-tool.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
smashing.tooling.prod.cdsf.io
vault-int.int-secret-mgt.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
repo.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.eu-central-1-test-int-secret-mgt.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
vault.vault-k8s-val-eu-central-1.prod.cdsf.io
smashing.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
code.tooling.prod.cdsf.io
repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-direct-tool.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-vault.test.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-vault.test.cdsf.io
test-repo.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
eks.tooling.prod.cdsf.io
dev-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
paste.tool.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-repo.tooling.prod.cdsf.io
test-code.tooling.prod.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
test-tool.tooling.prod.cdsf.io
eks.tooling.prod.cdsf.io
vault.test-int-secret-mgt.prod.cdsf.io
test-direct-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
vault.test-secret-mgt.prod.cdsf.io
test-simple-tool.test.cdsf.io
test-simple-tool.tooling.prod.cdsf.io
test-jenkins.tooling.prod.cdsf.io
jenkins.tooling.prod.cdsf.io
test-endpoint-tool.tooling.prod.cdsf.io
Certificate
The complete raw certificate details for vault.test-secret-mgt.prod.cdsf.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEmjCCA4KgAwIBAgIQDUoV8tPgvi/FGb+KB3G9oTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA4MjIwMDAwMDBaFw0yMDA5MjIx MjAwMDBaMC0xKzApBgNVBAMTInZhdWx0LnRlc3Qtc2VjcmV0LW1ndC5wcm9kLmNk c2YuaW8wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSnmUkJlvaDAOe U8LDsrt3SInq5ttR6rqXH2hDTOvXML3XNqjHN/xnUV0ODxI8OUTsU8E8mR1LM1wF ukNnujtrPbrpAwkIqnd+puIMy2UTS9gnIUmCwzbLDyTrM0GZIILtXU04oVxnvciH QRvhNTyvLpsbgsbCPxcH9W3y0pEg5DdI798zKDk+aJl535lzaQVrlsADAID2A6Y8 SI6WpjZbfpRmP7u94hXDu1xdvY/N98HO5vdhOzpAIGfnanQ+NKNB+lezULXVAJ+8 YTURtgwA6vf22mthmSGAStDNO0JQSTMVT1eteeLct2h1AMeaM+CyIXjLrnh48EmV Y/o6XsgHAgMBAAGjggGbMIIBlzAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0 W/k90DAdBgNVHQ4EFgQUSGXdLr5sEUHS3YGI0VnVuy7KEZgwLQYDVR0RBCYwJIIi dmF1bHQudGVzdC1zZWNyZXQtbWd0LnByb2QuY2RzZi5pbzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAu oCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDAg BgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBn MC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20w NgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3Nj YTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqG SIb3DQEBCwUAA4IBAQCfltzspOkK8jatBo2kSa93rPlapZHIZ+8rWFAPHmM6FavB 4oCt9lMyZX2KRtUfPnzOr+Pq2HI73+gEKQj4RlR0ghNfGXs6/6AN0xQulQga8nNl fXsFIKBObFlXSvsmjHCEUU/9//xjEj8O8FVj8gqTDIlk7DsMn0uSoG2eUguYPQaX N3Y/8nqvNNM/fcpN1oESGur/h/iDVoye2wU45e/FH6/zRYcp5ZcTWaDW4/xTDStJ 91uzX9L8CAP44IzY3EhAEls1Yvd9GhlD2ofEWeHsaKmCVmpMghxyoFopSegK/y8E /3A+RcpDRVkkqtVA7LOWiI6egDTN93ttcrJXq1bw -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkp5lJCZb2gwDnlPCw7K7 d0iJ6ubbUeq6lx9oQ0zr1zC91zaoxzf8Z1FdDg8SPDlE7FPBPJkdSzNcBbpDZ7o7 az266QMJCKp3fqbiDMtlE0vYJyFJgsM2yw8k6zNBmSCC7V1NOKFcZ73Ih0Eb4TU8 ry6bG4LGwj8XB/Vt8tKRIOQ3SO/fMyg5PmiZed+Zc2kFa5bAAwCA9gOmPEiOlqY2 W36UZj+7veIVw7tcXb2PzffBzub3YTs6QCBn52p0PjSjQfpXs1C11QCfvGE1EbYM AOr39tprYZkhgErQzTtCUEkzFU9XrXni3LdodQDHmjPgsiF4y654ePBJlWP6Ol7I BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17664639082125523316038145674363125153 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-22 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vault.test-secret-mgt.prod.cdsf.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18508900051506636710247635206964035806826533784037641632319945245236815604682027750232388692418892679752313848843859760539264342053236896765807810040066052350409637058564488851041015037573641270035952688655598877453870630329792849403020013548959277223229547647686982687144152410204729360926308576355233059748275213115063841689389125724078800866519373878056568524990221166647523261509727193682966640758897377330354214411417711976607428747467327889701377842186246031201822719293402879796460475915508299369083104446427764663528929662673142815535543580709656563921949262775474789915749841947510445896292231769802560948231 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4865dd2ebe6c1141d2dd8188d159d5bb2eca1198 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vault.test-secret-mgt.prod.cdsf.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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