tvpapi-vfp1.ott.kaltura.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0a:4a:05:6a:9a:d4:0f:1c:8c:b8:bf:b2:0c:87:cf:7e was issued on by Amazon.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tvpapi-vfp1.ott.kaltura.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:4a:05:6a:9a:d4:0f:1c:8c:b8:bf:b2:0c:87:cf:7eSerial Number (int): 13676619783531035892312816392740523902
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 18:be:a0:5e:02:53:74:de:60:e2:4e:29:f4:4c:8a:9d:99:35:af:e7
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 16:d3:39:3f:c4:54:b3:09:64:3b:55:51:89:91:90:7b:e4:41:1f:f2
Fingerprint (sha256): 0a:26:8c:45:e8:18:06:a2:0f:1a:97:f2:a0:8d:37:81:d5:1a:60:60:6f:74:b3:16:bb:93:41:8d:b5:1f:7e:78
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate tvpapi-vfp1.ott.kaltura.com
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tvpapi-vfp1.ott.kaltura.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tvpapi-vfp1.ott.kaltura.com
3041.tvpapi-vfp1.ott.kaltura.com
430.tvpapi-vfp1.ott.kaltura.com
3035.tvpapi-vfp1.ott.kaltura.com
3047.tvpapi-vfp1.ott.kaltura.com
222.tvpapi-vfp1.ott.kaltura.com
3044.tvpapi-vfp1.ott.kaltura.com
3038.tvpapi-vfp1.ott.kaltura.com
3062.tvpapi-vfp1.ott.kaltura.com
3041.tvpapi-vfp1.ott.kaltura.com
430.tvpapi-vfp1.ott.kaltura.com
3035.tvpapi-vfp1.ott.kaltura.com
3047.tvpapi-vfp1.ott.kaltura.com
222.tvpapi-vfp1.ott.kaltura.com
3044.tvpapi-vfp1.ott.kaltura.com
3038.tvpapi-vfp1.ott.kaltura.com
3062.tvpapi-vfp1.ott.kaltura.com
Other certificates including the domain name kaltura.com
(limited to 100 certificates)
clarity.status.broadcom.com
nagra-drm-proxy-vpn-orp1.ott.kaltura.com
u2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
ez.fukuoka.status.ricoh.com
rest-vfs1.ott.kaltura.com
*.ott.kaltura.com
u2.shared.global.fastly.net
incapsula.com
cms-corp.kaltura.com
canada.status.coconutsoftware.com
newrelic.kstars.org
ez.fukuoka.status.ricoh.com
prospective.shared.global.fastly.net
prospective.shared.global.fastly.net
gij.gitkrakenstatus.com
images-nl.ott.kaltura.com
status.activtrak.com
u2.shared.global.fastly.net
u2.shared.global.fastly.net
rest-vfs1.ott.kaltura.com
u2.shared.global.fastly.net
us-east-1-san4.blackboard.com
u2.shared.global.fastly.net
impactstatus.validic.com
impactstatus.validic.com
canada.status.coconutsoftware.com
covid-19-status.anexia.com
u2.shared.global.fastly.net
newrelic.kstars.org
prospective.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
apicdn.sg.kaltura.com
canada.status.coconutsoftware.com
university.kaltura.com
pingdom-check.acmeapi.co
incapsula.com
rest-vfp1.ott.kaltura.com
estado.medios.com.ar
u2.shared.global.fastly.net
vpaas.kaltura.com
*.ott.kaltura.com
estado.medios.com.ar
newrelic.kstars.org
u2.shared.global.fastly.net
u2.shared.global.fastly.net
canada.status.coconutsoftware.com
canada.status.coconutsoftware.com
*.eu.kaltura.com
impactstatus.validic.com
leapfrog-ssl-42.gcs-web.com
dns-vetting1-jeffg-noah.map.fastly.net
us-east-1-san4.blackboard.com
mediaspace.kaltura.com
chat.nvp1.ovp.kaltura.com
u2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
impactstatus.validic.com
u2.shared.global.fastly.net
canvas.kaltura.com
u2.shared.global.fastly.net
dev.mw.smart-integration.status.ricoh.com
*.here.tv
dns-vetting1-jeffg-noah.map.fastly.net
corp.kaltura.com
6bd21a3c.status.cleafy.cloud
drm-vfp1.ott.kaltura.com
u2.shared.global.fastly.net
prospective.shared.global.fastly.net
prospective.shared.global.fastly.net
u2.shared.global.fastly.net
ez.fukuoka.status.ricoh.com
prospective.shared.global.fastly.net
u2.shared.global.fastly.net
drm-vfp1.ott.kaltura.com
clarity.status.broadcom.com
*.ott.kaltura.com
canada.status.coconutsoftware.com
prospective.shared.global.fastly.net
connect.kaltura.com
impactstatus.validic.com
u2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
leapfrog-ssl-42.gcs-web.com
ez.fukuoka.status.ricoh.com
u2.shared.global.fastly.net
canada.status.coconutsoftware.com
static-vfp1.ott.kaltura.com
newrelic.kstars.org
drm-vfp1.ott.kaltura.com
prospective.shared.global.fastly.net
u2.shared.global.fastly.net
compass.status.atlassian.com
canada.status.coconutsoftware.com
estado.medios.com.ar
estado.medios.com.ar
statuspage.io
cms-corp.kaltura.com
tvpapi-vfp1.ott.kaltura.com
tvpapi-vfp1.ott.kaltura.com
nagra-drm-proxy-vpn-orp1.ott.kaltura.com
u2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
ez.fukuoka.status.ricoh.com
rest-vfs1.ott.kaltura.com
*.ott.kaltura.com
u2.shared.global.fastly.net
incapsula.com
cms-corp.kaltura.com
canada.status.coconutsoftware.com
newrelic.kstars.org
ez.fukuoka.status.ricoh.com
prospective.shared.global.fastly.net
prospective.shared.global.fastly.net
gij.gitkrakenstatus.com
images-nl.ott.kaltura.com
status.activtrak.com
u2.shared.global.fastly.net
u2.shared.global.fastly.net
rest-vfs1.ott.kaltura.com
u2.shared.global.fastly.net
us-east-1-san4.blackboard.com
u2.shared.global.fastly.net
impactstatus.validic.com
impactstatus.validic.com
canada.status.coconutsoftware.com
covid-19-status.anexia.com
u2.shared.global.fastly.net
newrelic.kstars.org
prospective.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
apicdn.sg.kaltura.com
canada.status.coconutsoftware.com
university.kaltura.com
pingdom-check.acmeapi.co
incapsula.com
rest-vfp1.ott.kaltura.com
estado.medios.com.ar
u2.shared.global.fastly.net
vpaas.kaltura.com
*.ott.kaltura.com
estado.medios.com.ar
newrelic.kstars.org
u2.shared.global.fastly.net
u2.shared.global.fastly.net
canada.status.coconutsoftware.com
canada.status.coconutsoftware.com
*.eu.kaltura.com
impactstatus.validic.com
leapfrog-ssl-42.gcs-web.com
dns-vetting1-jeffg-noah.map.fastly.net
us-east-1-san4.blackboard.com
mediaspace.kaltura.com
chat.nvp1.ovp.kaltura.com
u2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
impactstatus.validic.com
u2.shared.global.fastly.net
canvas.kaltura.com
u2.shared.global.fastly.net
dev.mw.smart-integration.status.ricoh.com
*.here.tv
dns-vetting1-jeffg-noah.map.fastly.net
corp.kaltura.com
6bd21a3c.status.cleafy.cloud
drm-vfp1.ott.kaltura.com
u2.shared.global.fastly.net
prospective.shared.global.fastly.net
prospective.shared.global.fastly.net
u2.shared.global.fastly.net
ez.fukuoka.status.ricoh.com
prospective.shared.global.fastly.net
u2.shared.global.fastly.net
drm-vfp1.ott.kaltura.com
clarity.status.broadcom.com
*.ott.kaltura.com
canada.status.coconutsoftware.com
prospective.shared.global.fastly.net
connect.kaltura.com
impactstatus.validic.com
u2.shared.global.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
leapfrog-ssl-42.gcs-web.com
ez.fukuoka.status.ricoh.com
u2.shared.global.fastly.net
canada.status.coconutsoftware.com
static-vfp1.ott.kaltura.com
newrelic.kstars.org
drm-vfp1.ott.kaltura.com
prospective.shared.global.fastly.net
u2.shared.global.fastly.net
compass.status.atlassian.com
canada.status.coconutsoftware.com
estado.medios.com.ar
estado.medios.com.ar
statuspage.io
cms-corp.kaltura.com
tvpapi-vfp1.ott.kaltura.com
tvpapi-vfp1.ott.kaltura.com
Certificate
The complete raw certificate details for tvpapi-vfp1.ott.kaltura.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgIQCkoFaprUDxyMuL+yDIfPfjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA2MTIwMDAwMDBaFw0yMDA3MTIx MjAwMDBaMCYxJDAiBgNVBAMTG3R2cGFwaS12ZnAxLm90dC5rYWx0dXJhLmNvbTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK8N5Twrr55ZRBCXy8fCZpe+ FKHAcH0l5R4Q9yDFMwEQZaTwWyW2Y7FhAmQStAsOsKF533ZhQxbWqqW8qwyty/Kg GQ3K7yA9i+h7n5cxCvPZPmeY/ajtU/p6vwjCACKhK3b4q10ft0CS5h70KcBvU/Qj T56BtoVSEQTSfo8kZY37W08Nzvh9sr1q/Za/jpiyHeBLbb9eyJjfNRbxmGvpJHoM Gc9BZNwaXeRXKSebxS3oPMZTRUqSmgC/j/7C5ZeNd3YVurheEMmIv6ovBMdg0I3d wqrsGvAHtLLZpN1tx+lLlA/rwSfj+0Orho03ZrS7UcGLs1inlcRgxoWYWTG6QIUC AwEAAaOCAqgwggKkMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0G A1UdDgQWBBQYvqBeAlN03mDiTin0TIqdmTWv5zCCATgGA1UdEQSCAS8wggErght0 dnBhcGktdmZwMS5vdHQua2FsdHVyYS5jb22CIDMwNDEudHZwYXBpLXZmcDEub3R0 LmthbHR1cmEuY29tgh80MzAudHZwYXBpLXZmcDEub3R0LmthbHR1cmEuY29tgiAz MDM1LnR2cGFwaS12ZnAxLm90dC5rYWx0dXJhLmNvbYIgMzA0Ny50dnBhcGktdmZw MS5vdHQua2FsdHVyYS5jb22CHzIyMi50dnBhcGktdmZwMS5vdHQua2FsdHVyYS5j b22CIDMwNDQudHZwYXBpLXZmcDEub3R0LmthbHR1cmEuY29tgiAzMDM4LnR2cGFw aS12ZnAxLm90dC5rYWx0dXJhLmNvbYIgMzA2Mi50dnBhcGktdmZwMS5vdHQua2Fs dHVyYS5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpv bnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYG Z4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Au c2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNj YTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADATBgor BgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQlOQQvyaRd3vgVi0 3E16LcJCW1GUxdlgY2Ra/9LcqMukRmf4zHXmlc0WoCMP7o9dnc0pGY4leDLjo3ZM eru1lFjlwxoxixtGZLGUUdO+qyc9cAuekPNR4GhqBJy5CwW7+0/xlwl4o7SC6Qsb caCta+hvF/g5U2Tr4I2b6RLAo6COgq50J4UpJ/V890PcudMuhHxMfQtNWjRjyPJJ AcR8rCbY846bza2yeC9TheSHHo/viXx1GdJf8XjVcUYlcRDr+AlMvAeOqr/mUqNT nvBipETbKzoFYxyiAR79z5XeQ3H/nyqrQXYJNZKVY15uHqDsEm6N3ZwoPhuKHSC1 zE6iQg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArw3lPCuvnllEEJfLx8Jm l74UocBwfSXlHhD3IMUzARBlpPBbJbZjsWECZBK0Cw6woXnfdmFDFtaqpbyrDK3L 8qAZDcrvID2L6HuflzEK89k+Z5j9qO1T+nq/CMIAIqErdvirXR+3QJLmHvQpwG9T 9CNPnoG2hVIRBNJ+jyRljftbTw3O+H2yvWr9lr+OmLId4Ettv17ImN81FvGYa+kk egwZz0Fk3Bpd5FcpJ5vFLeg8xlNFSpKaAL+P/sLll413dhW6uF4QyYi/qi8Ex2DQ jd3Cquwa8Ae0stmk3W3H6UuUD+vBJ+P7Q6uGjTdmtLtRwYuzWKeVxGDGhZhZMbpA hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13676619783531035892312816392740523902 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-12 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tvpapi-vfp1.ott.kaltura.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22098555470531463989803863308742702186424466124830574737076359124947462550085392197324120894423044464689054860505169366076946536156051895502508787819043728794019857604480502573538686093084600992878069046589863825028399150461865191275204797791258588081369331220816959833764386899206769026272607233228047989801918526451268029815339387010006126866078244212827816456324773938168622966188658485494047958944690521608609216643479644650408305811155593035267381284021126270357828489358925319375504355544858513184646236965304422650782119549010241571229473168827089987558014619852412415369220574742881148748829879954345589096581 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 18bea05e025374de60e24e29f44c8a9d9935afe7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (303 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tvpapi-vfp1.ott.kaltura.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '3041.tvpapi-vfp1.ott.kaltura.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '430.tvpapi-vfp1.ott.kaltura.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '3035.tvpapi-vfp1.ott.kaltura.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '3047.tvpapi-vfp1.ott.kaltura.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '222.tvpapi-vfp1.ott.kaltura.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '3044.tvpapi-vfp1.ott.kaltura.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '3038.tvpapi-vfp1.ott.kaltura.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '3062.tvpapi-vfp1.ott.kaltura.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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