libby.hbogo.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0d:d6:8c:dc:81:b6:52:54:39:40:20:77:ee:ea:72:25 was issued on by Amazon.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=libby.hbogo.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:d6:8c:dc:81:b6:52:54:39:40:20:77:ee:ea:72:25Serial Number (int): 18393972480614603386095448028902748709
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 71:c4:36:69:f7:f0:62:c7:55:84:ed:14:54:df:59:d2:e9:e6:6f:40
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 30:f7:48:56:ac:ee:86:54:de:dd:55:23:24:a6:f0:34:19:a4:ef:f2
Fingerprint (sha256): 0b:26:38:0f:f6:29:6e:d5:23:ac:e4:01:58:71:4d:c4:09:de:ba:3b:d8:ac:f7:d8:17:a6:fc:0b:83:68:16:5d
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate libby.hbogo.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for libby.hbogo.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
libby.hbogo.com
*.libby.hbogo.com
*.api.hbo.com
*.hurley.hbo.com
*.development.hurley.hbo.com
*.libby.hbogo.com
*.api.hbo.com
*.hurley.hbo.com
*.development.hurley.hbo.com
Other certificates including the domain name hbogo.com
(limited to 100 certificates)
dash.pro42.akm.cdn.hbogo.com
*.hotels.hbogo.com
link.hbogo.com
dns-vetting1j.map.fastly.net
concierge.api.hbo.com
hbomax.com
ui-libby.hbogo.com
dns-vetting1k.map.fastly.net
*.hbogo.com
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
activate.hbogo.com
dns-vetting1k.map.fastly.net
cdn.hbogo.com
hbo.map.fastly.net
help.hbogo.com
tivo.hbogo.com
uqa.catalog.hbogo.com
dns-vetting1j.map.fastly.net
dash.pro42.akm.cdn.hbogo.com
preprd.register.hbogo.com
api.hbo.com
*.hbogo.com
*.cdn.hbogo.com
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
concierge.api.hbo.com
hbo.map.fastly.net
tizen.hbogo.com
dns-vetting1k.map.fastly.net
dns-vetting1k.map.fastly.net
dns-vetting1k.map.fastly.net
qala.hbogo.com
att.cdn.hbogo.com
dns-vetting1k.map.fastly.net
dns-vetting1j.map.fastly.net
splunk.hbo.com
concierge.api.hbo.com
*.play.hbogo.com
dns-vetting1j.map.fastly.net
smetrics.hbogo.com
dns-vetting1j.map.fastly.net
gcptestmax-dev.cdn.hbogo.com
hbogo.com
dns-vetting1j.map.fastly.net
libby.hbogo.com
cdn.hbo.com
cdn.hbo.com
tve.hbo.com
search.hbogo.com
hbo.map.fastly.net
hbonow.com
cdn.hbogo.com
*.hotels.hbogo.com
auth.hbogo.com
dns-vetting1j.map.fastly.net
*.mail.hbogo.com
hotels.hbogo.com
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
cdn.hbogo.com
smetrics.hbogo.com
activate.hbogo.com
dns-vetting1k.map.fastly.net
atv.hbogo.com
hbo.map.fastly.net
dns-vetting1j.map.fastly.net
*.hbogo.com
dns-vetting1k.map.fastly.net
chromecast.cdn.hbogo.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
activate.hbogo.com
dns-vetting1k.map.fastly.net
pdl.roku.lln.hbogo.com
dns-vetting1j.map.fastly.net
hbogo.com
hbo.map.fastly.net
hbo.map.fastly.net
dns-vetting1j.map.fastly.net
hbo.map.fastly.net
hbo.map.fastly.net
tivo.hbogo.com
college.hbo.com
dns-vetting1j.map.fastly.net
link.hbogo.com
help.hbo.com
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
college.hbo.com
hbo.map.fastly.net
dns-vetting1k.map.fastly.net
activate.hbogo.com
search.hbogo.com
splunk.hbo.com
cdn.hbogo.com
link.hbogo.com
auth.hbogo.com
dns-vetting1k.map.fastly.net
concierge.api.hbo.com
*.hotels.hbogo.com
link.hbogo.com
dns-vetting1j.map.fastly.net
concierge.api.hbo.com
hbomax.com
ui-libby.hbogo.com
dns-vetting1k.map.fastly.net
*.hbogo.com
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
activate.hbogo.com
dns-vetting1k.map.fastly.net
cdn.hbogo.com
hbo.map.fastly.net
help.hbogo.com
tivo.hbogo.com
uqa.catalog.hbogo.com
dns-vetting1j.map.fastly.net
dash.pro42.akm.cdn.hbogo.com
preprd.register.hbogo.com
api.hbo.com
*.hbogo.com
*.cdn.hbogo.com
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
concierge.api.hbo.com
hbo.map.fastly.net
tizen.hbogo.com
dns-vetting1k.map.fastly.net
dns-vetting1k.map.fastly.net
dns-vetting1k.map.fastly.net
qala.hbogo.com
att.cdn.hbogo.com
dns-vetting1k.map.fastly.net
dns-vetting1j.map.fastly.net
splunk.hbo.com
concierge.api.hbo.com
*.play.hbogo.com
dns-vetting1j.map.fastly.net
smetrics.hbogo.com
dns-vetting1j.map.fastly.net
gcptestmax-dev.cdn.hbogo.com
hbogo.com
dns-vetting1j.map.fastly.net
libby.hbogo.com
cdn.hbo.com
cdn.hbo.com
tve.hbo.com
search.hbogo.com
hbo.map.fastly.net
hbonow.com
cdn.hbogo.com
*.hotels.hbogo.com
auth.hbogo.com
dns-vetting1j.map.fastly.net
*.mail.hbogo.com
hotels.hbogo.com
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
cdn.hbogo.com
smetrics.hbogo.com
activate.hbogo.com
dns-vetting1k.map.fastly.net
atv.hbogo.com
hbo.map.fastly.net
dns-vetting1j.map.fastly.net
*.hbogo.com
dns-vetting1k.map.fastly.net
chromecast.cdn.hbogo.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
activate.hbogo.com
dns-vetting1k.map.fastly.net
pdl.roku.lln.hbogo.com
dns-vetting1j.map.fastly.net
hbogo.com
hbo.map.fastly.net
hbo.map.fastly.net
dns-vetting1j.map.fastly.net
hbo.map.fastly.net
hbo.map.fastly.net
tivo.hbogo.com
college.hbo.com
dns-vetting1j.map.fastly.net
link.hbogo.com
help.hbo.com
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
college.hbo.com
hbo.map.fastly.net
dns-vetting1k.map.fastly.net
activate.hbogo.com
search.hbogo.com
splunk.hbo.com
cdn.hbogo.com
link.hbogo.com
auth.hbogo.com
dns-vetting1k.map.fastly.net
concierge.api.hbo.com
Certificate
The complete raw certificate details for libby.hbogo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGKDCCBRCgAwIBAgIQDdaM3IG2UlQ5QCB37upyJTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMTA4MjYwMDAwMDBaFw0yMjA5MjQy MzU5NTlaMBoxGDAWBgNVBAMTD2xpYmJ5Lmhib2dvLmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAKnt+HafxbCZ4QvTlexzCm1T1o9hPDHzOfSyBPFE qUoy++EtakKXo/gWz5Nzcs3psg8/n5EMD2LtFwAo4uoDeiQyWyCKaG6PDdJR0zNi mHWwCW/BH3ukMVD9LQ3zLcEUBYK96jZsS78ncgXiakTacqN0eagGXD0vuCv7SYKd Dvtle9vhIvjl8DsRZxV/dbn5FzEQhHup1yclUvbvbXottqY9/jZ/Rsp9FI3yGQfK 5L3m9/kGQKM7Oxx08atVvNL2h7T2yLyy1nqTS3nU6LIPvfIw+nwQTfdh8AHSTVtM PRDjAC+Tevlj24w2tJyPKGIXYSDk4rgtBjXOiKJHSbZCA/cCAwEAAaOCAzwwggM4 MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBRxxDZp 9/Bix1WE7RRU31nS6eZvQDBsBgNVHREEZTBjgg9saWJieS5oYm9nby5jb22CESou bGliYnkuaGJvZ28uY29tgg0qLmFwaS5oYm8uY29tghAqLmh1cmxleS5oYm8uY29t ghwqLmRldmVsb3BtZW50Lmh1cmxleS5oYm8uY29tMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYq aHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3JsMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0 cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRw Oi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/ BAIwADCCAYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHcAKXm+8J45OSHwVnOfY6V3 5b5XfZxgCvj5TV0mXCVdx4QAAAF7f9k/rQAABAMASDBGAiEAkgAlYBGux6NCNnT7 +AtxHRaQyndxj5S9YWsV08Zl/osCIQC3J5aYvUSiVBw2YvfGOF0Q4+DS+QtOpAqY GzBSBlgU2wB3AFGjsPX9AXmcVm24N3iPDKR6zBsny/eeiEKaDf7UiwXlAAABe3/Z P9EAAAQDAEgwRgIhAPMcoOz/DppiuD6Q8QasdRrtLpFRV4O4r9JTr9GU0abMAiEA mWsjQ/pycT2bWKcVSycw8qQzlaVg370dgaltnSdzIqcAdgBByMqx3yJGShDGoToJ QodeTjGLGwPr60vHaPCQYpYG9gAAAXt/2T93AAAEAwBHMEUCICTdUbvnzjxU2420 uBo00UiueVzZj/VJ4Jj5DLAbGIY9AiEA+nukHw6jrEkCto+wpFl99jwt07/QxhhW wmEdfVgJTuQwDQYJKoZIhvcNAQELBQADggEBAIjzHOKoSBxbISjH4F7eQLXckMyx 2WS2PqUaNCDZOvMMsWlqiVmcTN6VAYRYtvgPycfXggiHc28y+2P5lrwldIG9ioOZ m1CsETa8uyKqLNRjwJNOnWRSvBDWeGeavkt3JkWdpgBPqZpkg9hF7CwQa/uTTF8C VXnJ+oQs7HBEiOiWfE5TBKZUabgpLyIm8DfYTO8rEfshRTUNsj3QxUCdnhkMBXpU H6nAx8cUqykfiX6/EzytFW+CGCfXhmAUoRGRayiLJggfBSDVAr4eLYX3PzKgx2GE fRMFTvh+9HyhmEC5cCrgMrTsWfx4MOQp6yiuZa0/xM2IyDuUz2D9M0qqH/I= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqe34dp/FsJnhC9OV7HMK bVPWj2E8MfM59LIE8USpSjL74S1qQpej+BbPk3NyzemyDz+fkQwPYu0XACji6gN6 JDJbIIpobo8N0lHTM2KYdbAJb8Efe6QxUP0tDfMtwRQFgr3qNmxLvydyBeJqRNpy o3R5qAZcPS+4K/tJgp0O+2V72+Ei+OXwOxFnFX91ufkXMRCEe6nXJyVS9u9tei22 pj3+Nn9Gyn0UjfIZB8rkveb3+QZAozs7HHTxq1W80vaHtPbIvLLWepNLedTosg+9 8jD6fBBN92HwAdJNW0w9EOMAL5N6+WPbjDa0nI8oYhdhIOTiuC0GNc6IokdJtkID 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18393972480614603386095448028902748709 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'libby.hbogo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21451621196036691968807230763273657376136801643548796627378932312215193641953465894174434845737624357315468951742052162824739036663714258036302571436679508686788453445632636204258385096995379082590540722620990747143357388955478486250886038696001516962086594396949595030118643199897729376029382446653821581606452309057615068317070149726457821783818157408969404835943886841886143167431858263671850239778646227003073360414350727941273291346954562204395795475723914234640805606301198521005606767547333663562750949110239129277726973698911305717264275172366758087177143793646418299751297806526486529732142551923314940576759 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 71c43669f7f062c75584ed1454df59d2e9e66f40 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (101 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'libby.hbogo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.libby.hbogo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.api.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hurley.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.development.hurley.hbo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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