provider.console.azure.us
Issued by Microsoft IT TLS CA 4
About this certificate
This digital certificate with serial number 16:00:05:21:f8:36:b9:43:9b:0d:ad:08:a3:00:00:00:05:21:f8 was issued on by Microsoft Corporation.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=provider.console.azure.us
Microsoft Corporation
Organization:
Microsoft Corporation
Organization unit: Microsoft IT
Organization unit: Microsoft IT
State / Province:
Washington
Locality: Redmond
Country: US
Locality: Redmond
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 16:00:05:21:f8:36:b9:43:9b:0d:ad:08:a3:00:00:00:05:21:f8Serial Number (int): 490618140932831723876570248421575505358430712
Serial Number lenght: 149 bits, 19 octets
SubjectKeyId: 5a:d3:b7:42:66:0e:71:00:57:96:cc:8a:25:6e:71:63:3e:a8:38:20
AuthorityKeyId: 7a:7b:8c:c1:cf:e7:a0:ca:1c:d4:6b:fa:fb:e1:33:c3:0f:1a:a2:9d
Fingerprint (sha1): 0a:b0:a4:07:bb:2c:05:dc:95:a8:8a:c9:de:bf:cd:f3:33:20:40:bf
Fingerprint (sha256): 0a:f0:45:e1:76:70:d7:83:60:cc:36:25:8f:dd:f2:71:08:3a:3c:b6:d4:11:c2:fb:ba:61:aa:fc:d1:d8:5c:38
Issuing Certificate URL: http://www.microsoft.com/pki/mscorp/Microsoft%20IT%20TLS%20CA%204.crt
Revocation information
OCSP Server: http://ocsp.msocsp.comCRL Distribution Point: http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%204.crl
CRL Distribution Point: http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%204.crl
Check the revocation status for certificate provider.console.azure.us
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for provider.console.azure.us
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
provider.console.azure.us
provider-usgovvirginia.console.azure.us
shell.console.azure.us
shell-usgovvirginia.console.azure.us
action-shell-usgovvirginia.console.azure.us
provider-usgovvirginia.console.azure.us
shell.console.azure.us
shell-usgovvirginia.console.azure.us
action-shell-usgovvirginia.console.azure.us
Other certificates including the domain name azure.us
(limited to 100 certificates)
commands.runtime.fairfaxdevops.speech.azure.us
acis.iam.ad.ext.azure.us
prod.hot.ingest.monitor.core.usgovcloudapi.net
*.botframework.azure.us
wdvmninfravaff4.rdp.secondary.azure.us
az2hxcqr1y9g.asadataplane.azure.us
pushagentv2management.eventgrid.azure.us
foo.internal-test.gtos.azure.us
ssl.roles.ppe.botframework.azure.us
ssl.roles.ppe.botframework.azure.us
*.eventgrid.azure.us
subscriptionmanagement.eventgrid.azure.us
stage.alertmanagement.detection.rome.azure.us
luis.azure.us
ssl.roles.ppe.botframework.azure.us
clientauthentication.iaasdeployments.iaas.ext.azure.us
botframework.azure.us
main.iam.ad.ext.azure.us
hosting.ev2.billing.ext.azure.us
*.botframework.azure.us
dmsprod.azure.us
prod0-asc-sf-usgovvirginia.hpccache.azure.us
*.aires.ml.azure.us
DCaaSPROD.aadc.activedirectory.azure.us
azuremgmt.main.iam.ad.ext.azure.us
rc.shell.azure.us
fabric.documents.azure.us
acis.iam.ad.ext.azure.us
*.projectoxford.ext.azure.us
ux-mpac.console.azure.us
*.nam.daas.azure.us
*.botframework.azure.us
*.rp.alerts.security.dev.azure.us
prod.ai.ingestion.msftcloudes.us
*.appsvcux.ext.azure.us
tx.ext.core.security.azure.us
logicappMgmt.PMGovcentralus.svc.datafactory-test.azure.us
cstclient.fairfax.azure.us
docsecrets.documents.azure.us
az26hv48h9k6.asadataplane.azure.us
rp.ugv.gov.sentinel.azure.us
encrypt-botnet.eh.idml.azure.us
*.table.cosmosdb.azure.us
www.silicon.help
metadata.azure.us
*.accessreviews.identitygovernance.azure.us
*.tun.usgovarizona.cx.aks.containerservice.azure.us
ACEClient.marketplacecommerce.azure.us
metadata.azure.us
cpim.usgovcloudapi.net
metadata.azure.us
de60r62wexuz.asadataplane.azure.us
ms-adftest.azure.us
s2.datafactory.ext.azure.us
elm.iga.azure.us
api.informationprotection.azure.us
encryption.signup.azure.us
prod.hot.ingest.monitor.core.usgovcloudapi.net
logicapp.PMUsgovtexas.svc.datafactory-test.azure.us
proxy.client.marketplacepolicyservice.azure.us
credentials.windowsazure.us
irisffusgvdr.fabric.usgovtexas.cloudapp.azure.us
usdodeast.logic.azure.us
rp.uga.gov.sentinel.azure.us
ade.v2.aaddc.activedirectory.azure.us
notify.iga.azure.us
az1769042s2p.asadataplane.azure.us
luis.azure.us
aadauthcert.identity.ml.azure.us
hostaadapp.platform.cognitive.azure.us
*.botframework.azure.us
s2.datafactory.ext.azure.us
serviceprincipal.console.azure.us
MONSVCUsgovtexas.svc.datafactory-test.azure.us
notebookapis.azure.us
notify.iga.azure.us
ux.console-test.azure.us
*.eventgrid.azure.us
agent.serviceprofiler-test.azure.us
luismdsfairfaxtestingunused.azure.us
portal.azure.us
*.mserm.ext.azure.us
*.daas.azure.us
cpim.usgovcloudapi.net
*.security.stage.azure.us
*.botframework.azure.us
mysignins.azure.us
metadata.azure.us
prod.ai.ingestion.msftcloudes.us
va166hcya5in.asadataplane.azure.us
main.iam.ad.ext.azure.us
msihostidentity.metadata.azure.us
va1ykwvqpyq5.asadataplane.azure.us
usgovarizona01.afs.azure.us
*.ugv.databox.azure.us
portal.azure.us
logicapp.PMUsgovtexas.svc.datafactory-test.azure.us
secretsmanagement.pks.aadcdi.azure.us
az2f4lq5wwdz.asadataplane.azure.us
servicefabricmanagement.eventgrid.azure.us
acis.iam.ad.ext.azure.us
prod.hot.ingest.monitor.core.usgovcloudapi.net
*.botframework.azure.us
wdvmninfravaff4.rdp.secondary.azure.us
az2hxcqr1y9g.asadataplane.azure.us
pushagentv2management.eventgrid.azure.us
foo.internal-test.gtos.azure.us
ssl.roles.ppe.botframework.azure.us
ssl.roles.ppe.botframework.azure.us
*.eventgrid.azure.us
subscriptionmanagement.eventgrid.azure.us
stage.alertmanagement.detection.rome.azure.us
luis.azure.us
ssl.roles.ppe.botframework.azure.us
clientauthentication.iaasdeployments.iaas.ext.azure.us
botframework.azure.us
main.iam.ad.ext.azure.us
hosting.ev2.billing.ext.azure.us
*.botframework.azure.us
dmsprod.azure.us
prod0-asc-sf-usgovvirginia.hpccache.azure.us
*.aires.ml.azure.us
DCaaSPROD.aadc.activedirectory.azure.us
azuremgmt.main.iam.ad.ext.azure.us
rc.shell.azure.us
fabric.documents.azure.us
acis.iam.ad.ext.azure.us
*.projectoxford.ext.azure.us
ux-mpac.console.azure.us
*.nam.daas.azure.us
*.botframework.azure.us
*.rp.alerts.security.dev.azure.us
prod.ai.ingestion.msftcloudes.us
*.appsvcux.ext.azure.us
tx.ext.core.security.azure.us
logicappMgmt.PMGovcentralus.svc.datafactory-test.azure.us
cstclient.fairfax.azure.us
docsecrets.documents.azure.us
az26hv48h9k6.asadataplane.azure.us
rp.ugv.gov.sentinel.azure.us
encrypt-botnet.eh.idml.azure.us
*.table.cosmosdb.azure.us
www.silicon.help
metadata.azure.us
*.accessreviews.identitygovernance.azure.us
*.tun.usgovarizona.cx.aks.containerservice.azure.us
ACEClient.marketplacecommerce.azure.us
metadata.azure.us
cpim.usgovcloudapi.net
metadata.azure.us
de60r62wexuz.asadataplane.azure.us
ms-adftest.azure.us
s2.datafactory.ext.azure.us
elm.iga.azure.us
api.informationprotection.azure.us
encryption.signup.azure.us
prod.hot.ingest.monitor.core.usgovcloudapi.net
logicapp.PMUsgovtexas.svc.datafactory-test.azure.us
proxy.client.marketplacepolicyservice.azure.us
credentials.windowsazure.us
irisffusgvdr.fabric.usgovtexas.cloudapp.azure.us
usdodeast.logic.azure.us
rp.uga.gov.sentinel.azure.us
ade.v2.aaddc.activedirectory.azure.us
notify.iga.azure.us
az1769042s2p.asadataplane.azure.us
luis.azure.us
aadauthcert.identity.ml.azure.us
hostaadapp.platform.cognitive.azure.us
*.botframework.azure.us
s2.datafactory.ext.azure.us
serviceprincipal.console.azure.us
MONSVCUsgovtexas.svc.datafactory-test.azure.us
notebookapis.azure.us
notify.iga.azure.us
ux.console-test.azure.us
*.eventgrid.azure.us
agent.serviceprofiler-test.azure.us
luismdsfairfaxtestingunused.azure.us
portal.azure.us
*.mserm.ext.azure.us
*.daas.azure.us
cpim.usgovcloudapi.net
*.security.stage.azure.us
*.botframework.azure.us
mysignins.azure.us
metadata.azure.us
prod.ai.ingestion.msftcloudes.us
va166hcya5in.asadataplane.azure.us
main.iam.ad.ext.azure.us
msihostidentity.metadata.azure.us
va1ykwvqpyq5.asadataplane.azure.us
usgovarizona01.afs.azure.us
*.ugv.databox.azure.us
portal.azure.us
logicapp.PMUsgovtexas.svc.datafactory-test.azure.us
secretsmanagement.pks.aadcdi.azure.us
az2f4lq5wwdz.asadataplane.azure.us
servicefabricmanagement.eventgrid.azure.us
Certificate
The complete raw certificate details for provider.console.azure.us in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJVTCCBz2gAwIBAgITFgAFIfg2uUObDa0IowAAAAUh+DANBgkqhkiG9w0BAQsF ADCBizELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcT B1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEVMBMGA1UE CxMMTWljcm9zb2Z0IElUMR4wHAYDVQQDExVNaWNyb3NvZnQgSVQgVExTIENBIDQw HhcNMTkwNTIzMjE0MjEwWhcNMjEwNTIzMjE0MjEwWjAkMSIwIAYDVQQDExlwcm92 aWRlci5jb25zb2xlLmF6dXJlLnVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAshJNccTsWfaIScj6Z2BfKQv8G1ECD0bh71QbvmqVz+gnDim5zFfCHqzz 3uBCUGR7HAP3WuDMEkrKO3yCq+cZ64Ht7NppeP7evtBM7JCeENMz+f3Gre4LJek0 6YFzaQVAKkj27WrWecWqqTFaVVoOAl37sCtHHa32Qz0fhB2MUe0iWnXwCgSsWmuM ncTyBwbTFFVAenxZ1AhiFogv1xJLq51Mx/V3TK7faLz3NMeaOPWfIZ3MDBkfemTO OpWco36WJNSf5tFp6em/GMra/p8h5TkTkVlp0sXKyjH5yHeKMw9I/gM6Q0eMHdr7 YY/ofv5RxD5qwDcfAG3t+Jv54jfFSQIDAQABo4IFFjCCBRIwggH2BgorBgEEAdZ5 AgQCBIIB5gSCAeIB4AB2ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGF AAABauauJC8AAAQDAEcwRQIhANPhh0fjE14ac6zQXr07YsLGc1LuN1EcSK4uAa0S bgzFAiBHbCO3CYvdKZQBbKzhlOJVYnsadvwA8wUlGqdblHnD3QB3AFzcQ5L+5qtF RLFemtRW5hA3+9X6R9yhc5SyXub2xw7KAAABauauIx4AAAQDAEgwRgIhAOFAErY9 iLoVffOxinr7c7AhOp8Pf0rJ/TETZyV6cLrOAiEAtd4p9YtuRHHxQv2QNlDDS3Qx /EYuWiaypw6h3AgtKjMAdgBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPT DAAAAWrmriP/AAAEAwBHMEUCIEXPBr3YmkajHcLVJG1kbVgLOpdRqsRZR8xvT10h 2m03AiEA0Ji4G/h9CMIUWuSfFOb2vMgh1Iacv6wA5K7XOLj6Nz4AdQBElGUusO7O r8RAB9io/ijA2uaCvtjLMbU/0zOWtbaBqAAAAWrmriLjAAAEAwBGMEQCIF6DD0/k v/WvjAdaltrBlkMKWXRVrSmdF2r/DiQJKxLiAiBTmlz41PW4MW+b2dQkThSjTI9W OsndwELFF3uo7WJl4DAnBgkrBgEEAYI3FQoEGjAYMAoGCCsGAQUFBwMCMAoGCCsG AQUFBwMBMD4GCSsGAQQBgjcVBwQxMC8GJysGAQQBgjcVCIfahnWD7tkBgsmFG4G1 nmGF9OtggV2E0t9CgueTegIBZAIBHTCBhQYIKwYBBQUHAQEEeTB3MFEGCCsGAQUF BzAChkVodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20vcGtpL21zY29ycC9NaWNyb3Nv ZnQlMjBJVCUyMFRMUyUyMENBJTIwNC5jcnQwIgYIKwYBBQUHMAGGFmh0dHA6Ly9v Y3NwLm1zb2NzcC5jb20wHQYDVR0OBBYEFFrTt0JmDnEAV5bMiiVucWM+qDggMAsG A1UdDwQEAwIEsDCBugYDVR0RBIGyMIGvghlwcm92aWRlci5jb25zb2xlLmF6dXJl LnVzgidwcm92aWRlci11c2dvdnZpcmdpbmlhLmNvbnNvbGUuYXp1cmUudXOCFnNo ZWxsLmNvbnNvbGUuYXp1cmUudXOCJHNoZWxsLXVzZ292dmlyZ2luaWEuY29uc29s ZS5henVyZS51c4IrYWN0aW9uLXNoZWxsLXVzZ292dmlyZ2luaWEuY29uc29sZS5h enVyZS51czCBrAYDVR0fBIGkMIGhMIGeoIGboIGYhktodHRwOi8vbXNjcmwubWlj cm9zb2Z0LmNvbS9wa2kvbXNjb3JwL2NybC9NaWNyb3NvZnQlMjBJVCUyMFRMUyUy MENBJTIwNC5jcmyGSWh0dHA6Ly9jcmwubWljcm9zb2Z0LmNvbS9wa2kvbXNjb3Jw L2NybC9NaWNyb3NvZnQlMjBJVCUyMFRMUyUyMENBJTIwNC5jcmwwTQYDVR0gBEYw RDBCBgkrBgEEAYI3KgEwNTAzBggrBgEFBQcCARYnaHR0cDovL3d3dy5taWNyb3Nv ZnQuY29tL3BraS9tc2NvcnAvY3BzMB8GA1UdIwQYMBaAFHp7jMHP56DKHNRr+vvh M8MPGqKdMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATANBgkqhkiG9w0B AQsFAAOCAgEAS401GBY3VR0bncBt6zZAP2yloKeX1QBTqYE45zSBb0XRgiVycGfC dcYNRTLBKu/KgCLWCDp+L+xK6NYdteI9+/acC48X/Xb1eRJX0ANxGahotkrWK8rg lR/Pto8ALMQwjKBbfpcA8spcYxP/QLYmoteD5En+sFT9S6RTfiGEpLd6b9iibSYF P+bvWbD5tV8cXgrPfczkEZO3X1ziAOJOiRy5nOT+nB/Yo+VcgQ1R6pyc7A8iWiky OZiEsGpJQ4Xa41pmh4JtlfIzTvcXihJl0tPp35/RuOJPP/OD6E8yFmtIgliF8zip 81StMT/QUOp581zv1q89SVuUyWlDTa5aEGBE7OO6qN7vmCYORP7PEQWJGsUUDqib hyJHm7r6a+XIBXny2wF8mAADfO9hNdT1zravdsm/44t9Fu+2tR10B+E1LGy4JCW3 MyHqxd4RmYHskITTar5xIxavY7zutrW5mwB8HxTyEa5NEQeNqIYGOOQFO9RKwqkC GtySftouRwGVNDKOFNwh53mWL6ShmCPT099Vub5vEWb5P86czUqsyb8dr2btlc/Q 77+mS5qRBgZbXBntDn3I/b0Fc5Zr3hPFVVpfpTWt39OEijV9mUgiYrEhlHFlwP1R C4fHMILK/PqsQqCS8oGXejX+ZUFuI9cITMtvDTF5xgHgwaCT2R3R0/0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshJNccTsWfaIScj6Z2Bf KQv8G1ECD0bh71QbvmqVz+gnDim5zFfCHqzz3uBCUGR7HAP3WuDMEkrKO3yCq+cZ 64Ht7NppeP7evtBM7JCeENMz+f3Gre4LJek06YFzaQVAKkj27WrWecWqqTFaVVoO Al37sCtHHa32Qz0fhB2MUe0iWnXwCgSsWmuMncTyBwbTFFVAenxZ1AhiFogv1xJL q51Mx/V3TK7faLz3NMeaOPWfIZ3MDBkfemTOOpWco36WJNSf5tFp6em/GMra/p8h 5TkTkVlp0sXKyjH5yHeKMw9I/gM6Q0eMHdr7YY/ofv5RxD5qwDcfAG3t+Jv54jfF SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 490618140932831723876570248421575505358430712 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft IT TLS CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-23 21:42:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-23 21:42:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'provider.console.azure.us' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22479443591582716760008449608759138751001094413392438446496204040976147987590568124266702594397886683265370980201268805452411450516769643337918668090307376348189251110370623165436086220962379838654559627262136934638818514283033865107158652676357507824454102864342165156239376284937835978812405919746262812687761799638770511215507540230895228116209229395016543337310819325399395631127340980365378288882907406461829862288392108663420052380316977316148293494969005477802742775149505331160957554276663568648605215654040155546942292139628801732757322665689830848467568617197233055695987508631710237419015282410946561557833 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.16155509.8105089.5391003.2969441.12400096.221.9744322.5884410 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pki/mscorp/Microsoft%20IT%20TLS%20CA%204.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.msocsp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5ad3b742660e71005796cc8a256e71633ea83820 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (178 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provider.console.azure.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'provider-usgovvirginia.console.azure.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shell.console.azure.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shell-usgovvirginia.console.azure.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'action-shell-usgovvirginia.console.azure.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (164 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://mscrl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%204.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.microsoft.com/pki/mscorp/crl/Microsoft%20IT%20TLS%20CA%204.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.42.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pki/mscorp/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7a7b8cc1cfe7a0ca1cd46bfafbe133c30f1aa29d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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