www.chefconf.chef.io
Issued by Amazon
About this certificate
This digital certificate with serial number 06:e7:36:60:36:7d:2a:fb:27:9b:77:c0:e2:25:96:51 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.chefconf.chef.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:e7:36:60:36:7d:2a:fb:27:9b:77:c0:e2:25:96:51Serial Number (int): 9175891421916748209376200988874348113
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 16:ff:0a:f4:ae:4b:92:d0:d9:8c:2a:be:3e:84:92:3f:1a:48:34:40
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): d4:61:67:e4:17:37:71:f0:63:79:2a:1e:f3:b2:f2:0a:1d:aa:cb:18
Fingerprint (sha256): 0a:9c:49:40:cd:d3:82:d4:63:46:d6:33:cd:19:9f:28:7a:92:3a:0a:29:1a:8c:2a:fb:ed:79:aa:7f:0b:b8:20
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate www.chefconf.chef.io
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.chefconf.chef.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.chefconf.chef.io
Other certificates including the domain name chef.io
(limited to 100 certificates)
f4.shared.global.fastly.net
statuspage.io
5156937704407040-fe1.pantheonsite.io
dns-vetting1f.map.fastly.net
checkrstatus.com
g.ssl.fastly.net
f4.shared.global.fastly.net
dns-vetting1f.map.fastly.net
f4.shared.global.fastly.net
5156937704407040-fe1.pantheonsite.io
teststack.saas.chef.io
hello.chef.io
5156937704407040-fe1.pantheonsite.io
3down.mit.edu
3down.mit.edu
3down.mit.edu
statuspage.io
statuspage.io
g.ssl.fastly.net
statuspage.io
5156937704407040-fe1.pantheonsite.io
5156937704407040-fe1.pantheonsite.io
statuspage.io
5156937704407040-fe1.pantheonsite.io
3down.mit.edu
telemetry.es.chef.io
3down.mit.edu
f4.shared.global.fastly.net
f4.shared.global.fastly.net
f4.shared.global.fastly.net
5653164804014080-fe1.pantheonsite.io
statuspage.io
5653164804014080-fe1.pantheonsite.io
statuspage.io
dns-vetting1f.map.fastly.net
www.datadirect.com
dns-vetting1f.map.fastly.net
statuspage.io
5156937704407040-fe1.pantheonsite.io
statuspage.io
discourse.chef.io
5653164804014080-fe1.pantheonsite.io
3down.mit.edu
f4.shared.global.fastly.net
f4.shared.global.fastly.net
dns-vetting1f.map.fastly.net
5156937704407040-fe1.pantheonsite.io
statuspage.io
*.opscode.com
5156937704407040-fe1.pantheonsite.io
5156937704407040-fe1.pantheonsite.io
www.chefconf.chef.io
5156937704407040-fe1.pantheonsite.io
dns-vetting1f.map.fastly.net
kitchen.ci
5156937704407040-fe1.pantheonsite.io
id.learn.chef.io
f4.shared.global.fastly.net
statuspage.io
f4.shared.global.fastly.net
opscode.com
*.community.chef.io
5156937704407040-fe1.pantheonsite.io
3down.mit.edu
f4.shared.global.fastly.net
statuspage.io
statuspage.io
5653164804014080-fe1.pantheonsite.io
engage.empathways.org
statuspage.io
ebet.demo.chef.io
checkrstatus.com
dns-vetting1f.map.fastly.net
g.ssl.fastly.net
opscode.com
5156937704407040-fe1.pantheonsite.io
dns-vetting1f.map.fastly.net
f4.shared.global.fastly.net
dns-vetting1f.map.fastly.net
statuspage.io
checkrstatus.com
docs.chef.io
statuspage.io
statuspage.io
f4.shared.global.fastly.net
5653164804014080-fe1.pantheonsite.io
community-slack.chef.io
statuspage.io
3down.mit.edu
*.chef.io
3down.mit.edu
f4.shared.global.fastly.net
5653164804014080-fe1.pantheonsite.io
hello.chef.io
5156937704407040-fe1.pantheonsite.io
www.datadirect.com
statuspage.io
5653164804014080-fe1.pantheonsite.io
f4.shared.global.fastly.net
discourse.chef.io
statuspage.io
5156937704407040-fe1.pantheonsite.io
dns-vetting1f.map.fastly.net
checkrstatus.com
g.ssl.fastly.net
f4.shared.global.fastly.net
dns-vetting1f.map.fastly.net
f4.shared.global.fastly.net
5156937704407040-fe1.pantheonsite.io
teststack.saas.chef.io
hello.chef.io
5156937704407040-fe1.pantheonsite.io
3down.mit.edu
3down.mit.edu
3down.mit.edu
statuspage.io
statuspage.io
g.ssl.fastly.net
statuspage.io
5156937704407040-fe1.pantheonsite.io
5156937704407040-fe1.pantheonsite.io
statuspage.io
5156937704407040-fe1.pantheonsite.io
3down.mit.edu
telemetry.es.chef.io
3down.mit.edu
f4.shared.global.fastly.net
f4.shared.global.fastly.net
f4.shared.global.fastly.net
5653164804014080-fe1.pantheonsite.io
statuspage.io
5653164804014080-fe1.pantheonsite.io
statuspage.io
dns-vetting1f.map.fastly.net
www.datadirect.com
dns-vetting1f.map.fastly.net
statuspage.io
5156937704407040-fe1.pantheonsite.io
statuspage.io
discourse.chef.io
5653164804014080-fe1.pantheonsite.io
3down.mit.edu
f4.shared.global.fastly.net
f4.shared.global.fastly.net
dns-vetting1f.map.fastly.net
5156937704407040-fe1.pantheonsite.io
statuspage.io
*.opscode.com
5156937704407040-fe1.pantheonsite.io
5156937704407040-fe1.pantheonsite.io
www.chefconf.chef.io
5156937704407040-fe1.pantheonsite.io
dns-vetting1f.map.fastly.net
kitchen.ci
5156937704407040-fe1.pantheonsite.io
id.learn.chef.io
f4.shared.global.fastly.net
statuspage.io
f4.shared.global.fastly.net
opscode.com
*.community.chef.io
5156937704407040-fe1.pantheonsite.io
3down.mit.edu
f4.shared.global.fastly.net
statuspage.io
statuspage.io
5653164804014080-fe1.pantheonsite.io
engage.empathways.org
statuspage.io
ebet.demo.chef.io
checkrstatus.com
dns-vetting1f.map.fastly.net
g.ssl.fastly.net
opscode.com
5156937704407040-fe1.pantheonsite.io
dns-vetting1f.map.fastly.net
f4.shared.global.fastly.net
dns-vetting1f.map.fastly.net
statuspage.io
checkrstatus.com
docs.chef.io
statuspage.io
statuspage.io
f4.shared.global.fastly.net
5653164804014080-fe1.pantheonsite.io
community-slack.chef.io
statuspage.io
3down.mit.edu
*.chef.io
3down.mit.edu
f4.shared.global.fastly.net
5653164804014080-fe1.pantheonsite.io
hello.chef.io
5156937704407040-fe1.pantheonsite.io
www.datadirect.com
statuspage.io
5653164804014080-fe1.pantheonsite.io
f4.shared.global.fastly.net
discourse.chef.io
Certificate
The complete raw certificate details for www.chefconf.chef.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIQBuc2YDZ9Kvsnm3fA4iWWUTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTAxMDIwMDAwMDBaFw0yMDAyMDIx MjAwMDBaMB8xHTAbBgNVBAMTFHd3dy5jaGVmY29uZi5jaGVmLmlvMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLhiN5QLP5EdnpA/fa9sispLVJu7BFn7 OvDCt1P44VlnOhzhLot41c2J+wONSaJNlqjfsw6kvT85Isp1Ca6MUVV/ZqO3SqPP +42ANBMTZJZyBGH8xDMS6CjcX4q/abEcjJ86xMv3DZ8ROExVCpnE1Ks+54RlQUfQ knpHLxIjI7wWPonYOsYQ3Vx55D/Y1bp5npx3PayQle3x9A5SkmyAgh3xceZRuM5I kyJT9LzzAaNqikLNqb0naocUDYQqTonYvNHKEWc5220adD1jccSX3Steur6sFRCE c9+29FgTR4BQTfwoNeAV/IutKsSZmdWCh7oYORws6feEnTYegAXeLwIDAQABo4IC fzCCAnswHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYE FBb/CvSuS5LQ2Ywqvj6Ekj8aSDRAMB8GA1UdEQQYMBaCFHd3dy5jaGVmY29uZi5j aGVmLmlvMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250 cnVzdC5jb20vc2NhMWIuY3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeB DAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNj YTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2Ex Yi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwggEDBgor BgEEAdZ5AgQCBIH0BIHxAO8AdQCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt 74uQXgAAAWgMIpdDAAAEAwBGMEQCIHjHJpxrUuTgRQ+4Yj0okMRIFSsFXb5ERlBZ zYRel0GwAiBE6IjAnsQCfJdkOEVFyuh4GEQtf0UorJZRPCyXc9pebAB2AId1v+dZ fPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMPAAABaAwimAMAAAQDAEcwRQIgXaBP DPHxZ0a8ArZtWuJ7f4d+HSYw+5s4UhRm8AJHSdYCIQCU9gGA3Ci1y1DiT737wcSF k4EGtuu5is5qRAKPPnmMizANBgkqhkiG9w0BAQsFAAOCAQEAAqv/o5LpXo0uMVGa nDT8bbNhnYmbQgI7fU0YFt67oI2+TlB5hjl1R4nbDzdFeSnJaFZpvpYNbfAQ2UD4 wKW/u4oAT9nl5xW9t+YLioTjkfftCqdmJ2ImxER6DIiqDgSPiEhsMCRZQQ0d/n1q UwL+Ky/r+P4ogSM4q3JtPrk5k98Djl7Y6nd0BpLj0nGkbWRhrHe1xWkCoBkEChRe x45AVWRk57j3nQ2nH65PSVOCrUBWusFrjuWNtygMJun6FIZQm/Y1WYIhMxS88ekr bViw5WQ7YcgUhR6ldVrw9lvxz2uOqzmKkjpZS2KOtF8MlyFO9HXW4L7uhIO3zZ/2 vwTRHw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLhiN5QLP5EdnpA/fa9s ispLVJu7BFn7OvDCt1P44VlnOhzhLot41c2J+wONSaJNlqjfsw6kvT85Isp1Ca6M UVV/ZqO3SqPP+42ANBMTZJZyBGH8xDMS6CjcX4q/abEcjJ86xMv3DZ8ROExVCpnE 1Ks+54RlQUfQknpHLxIjI7wWPonYOsYQ3Vx55D/Y1bp5npx3PayQle3x9A5SkmyA gh3xceZRuM5IkyJT9LzzAaNqikLNqb0naocUDYQqTonYvNHKEWc5220adD1jccSX 3Steur6sFRCEc9+29FgTR4BQTfwoNeAV/IutKsSZmdWCh7oYORws6feEnTYegAXe LwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9175891421916748209376200988874348113 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-02 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.chefconf.chef.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22813817865657022818517652112135513982354862444669301616349876280116345726825187954047390129375760030361171513504980376878302222939085090046679573600645095985506506246596977939986463282811412068684698638359283135096942701570815443850134656620630761179449278923743406261141379070696138211636311716733187588115823902436664125341281893667012939377904485417544887107244528083968484594905236371160054754459681682329356029192586577662501702171579786281287138667175904659701117302237729791600889020156617911032989634315018290232848915374175690369758878001563446833692203101669429139350306643919919918002268713628751725190703 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 16ff0af4ae4b92d0d98c2abe3e84923f1a483440 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.chefconf.chef.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001680c2297430000040300463044022078c7269c6b52e4e0450fb8623d2890c448152b055dbe44465059cd845e9741b0022044e888c09ec4027c9764384545cae87818442d7f4528ac96513c2c9773da5e6c0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001680c229803000004030047304502205da04f0cf1f16746bc02b66d5ae27b7f877e1d2630fb9b38521466f0024749d602210094f60180dc28b5cb50e24fbdfbc1c485938106b6ebb98ace6a44028f3e798c8b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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