*.citi.us-east-2.aws.app.snowflake.com
- Snowflake Inc. -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 01:ec:49:75:87:49:43:3f:b5:9e:e2:30:98:59:ce:5f was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Snowflake Inc.
Organization:
Snowflake Inc.
State / Province:
California
Locality: San Mateo
Country: US
Locality: San Mateo
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:ec:49:75:87:49:43:3f:b5:9e:e2:30:98:59:ce:5fSerial Number (int): 2556099981864261418605278171019988575
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: e6:29:fb:a6:8a:08:cf:fe:ee:b6:0f:c8:9d:03:f8:d9:74:16:18:87
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 78:31:19:96:50:ef:54:fd:7d:0a:cb:0e:6c:8e:cd:3a:d6:a5:62:2a
Fingerprint (sha256): 0b:89:8a:ff:cb:7b:32:65:df:55:f4:6f:d2:8f:5c:ea:72:b0:df:41:0d:92:6b:3c:7a:38:04:76:3d:45:69:15
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate *.citi.us-east-2.aws.app.snowflake.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.citi.us-east-2.aws.app.snowflake.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.citi.us-east-2.aws.app.snowflake.com
citi.us-east-2.aws.app.snowflake.com
citi.us-east-2.aws.app.snowflake.com
Other certificates including the domain name snowflake.com
(limited to 100 certificates)
1e291ab3status.snowflake.com
1e291ab3status.snowflake.com
developer.status.atlassian.com
*.autotestcore2.eastus2.azure-dev.app.snowflake.com
attstatus.snowflake.com
glmatching.snowflake.com
finserv.snowflake.com
attstatus.snowflake.com
*.ordevautotest.us-west-2.aws-dev.app.snowflake.com
*.c1.eu-west-1.aws.app.snowflake.com
*.devtemptest2core1.us-west-2.aws-dev.app.snowflake.com
pricingautomation.snowflake.com
*.autotestc1.eastus2.azure-dev.app.snowflake.com
app1e-status.outreach.io
event.snowflake.com
*.m1.us-gov-west-1.aws-gov.app.snowflake.com
attstatus.snowflake.com
*.c1.us-east-1.aws.app.snowflake.com
lift.snowflake.com
*.oltp1.us-west-2.aws-dev.app.snowflake.com
community.snowflake.com
partner-payment-api.snowflake.com
snowamp.snowflake.com
abemcertified.abem.org
ciscokineticbeta.iotspdev.io
events.snowflake.com
attstatus.snowflake.com
developer.status.atlassian.com
utc-converter.snowflake.com
*.gfts.us-east-2.aws.app.snowflake.com
app-cdn-staging.app.snowflake.com
attstatus.snowflake.com
app-cdntest1.snowflake.com
usergroups.snowflake.com
attstatus.snowflake.com
snowamp-uat.snowflake.com
seone.snowflake.com
app1e-status.outreach.io
1e291ab3status.snowflake.com
events.snowflake.com
app1e-status.outreach.io
go.snowflake.com
developer.status.atlassian.com
seone-qa.snowflake.com
events.snowflake.com
attstatus.snowflake.com
ipe-em-ssm-activation-code-us-east-1.snowflake.com
demo.streamlit.snowflake.com
app1e-status.outreach.io
*.qa3.us-west-2.aws-dev.app.snowflake.com
sni204121.cloudflaressl.com
*.autotestc1.eastus2.azure-dev.app.snowflake.com
liftdev.snowflake.com
1e291ab3status.snowflake.com
*.capitalone.us-east-1.aws.app.snowflake.com
attstatus.snowflake.com
cleanroom-sso.snowflake.com
accredible.armanl.eu
1e291ab3status.snowflake.com
*.snowvmtest.us-west-2.aws-dev.app.snowflake.com
*.core2.us-west-2.aws-dev.app.snowflake.com
attstatus.snowflake.com
it-ds-chromadb.snowflake.com
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
app1e-status.outreach.io
*.qa6.us-west-2.aws-dev.app.snowflake.com
app1e-status.outreach.io
app1e-status.outreach.io
corp-vpn.snowflake.com
argocd-it-dev.snowflake.com
app1e-status.outreach.io
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
partner-payment-oauth.snowflake.com
events.snowflake.com
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
events.snowflake.com
app.my-guitar-tabs.com
*.autotestcore2.eastus2.azure-dev.app.snowflake.com
*.t1.usgovvirginia.azure-gov.app.snowflake.com
abemcertified.abem.org
*.citi.us-east-2.aws.app.snowflake.com
*.devtemptest3core1.us-west-2.aws-dev.app.snowflake.com
api.developers.snowflake.com
lift.snowflake.com
leapfrog-ssl-33.gcs-web.com
*.c2.eastus2.azure-dev.app.snowflake.com
sni204121.cloudflaressl.com
events.snowflake.com
1e291ab3status.snowflake.com
app1e-status.outreach.io
app1e-status.outreach.io
*.c1.eu-west-1.aws.app.snowflake.com
sni204121.cloudflaressl.com
ciscokineticbeta.iotspdev.io
api.developers.snowflake.com
app-cdn-staging.app.snowflake.com
app1e-status.outreach.io
investment-data-cloud-uat.snowflake.com
snowamp.snowflake.com
winternet.snowflake.com
1e291ab3status.snowflake.com
developer.status.atlassian.com
*.autotestcore2.eastus2.azure-dev.app.snowflake.com
attstatus.snowflake.com
glmatching.snowflake.com
finserv.snowflake.com
attstatus.snowflake.com
*.ordevautotest.us-west-2.aws-dev.app.snowflake.com
*.c1.eu-west-1.aws.app.snowflake.com
*.devtemptest2core1.us-west-2.aws-dev.app.snowflake.com
pricingautomation.snowflake.com
*.autotestc1.eastus2.azure-dev.app.snowflake.com
app1e-status.outreach.io
event.snowflake.com
*.m1.us-gov-west-1.aws-gov.app.snowflake.com
attstatus.snowflake.com
*.c1.us-east-1.aws.app.snowflake.com
lift.snowflake.com
*.oltp1.us-west-2.aws-dev.app.snowflake.com
community.snowflake.com
partner-payment-api.snowflake.com
snowamp.snowflake.com
abemcertified.abem.org
ciscokineticbeta.iotspdev.io
events.snowflake.com
attstatus.snowflake.com
developer.status.atlassian.com
utc-converter.snowflake.com
*.gfts.us-east-2.aws.app.snowflake.com
app-cdn-staging.app.snowflake.com
attstatus.snowflake.com
app-cdntest1.snowflake.com
usergroups.snowflake.com
attstatus.snowflake.com
snowamp-uat.snowflake.com
seone.snowflake.com
app1e-status.outreach.io
1e291ab3status.snowflake.com
events.snowflake.com
app1e-status.outreach.io
go.snowflake.com
developer.status.atlassian.com
seone-qa.snowflake.com
events.snowflake.com
attstatus.snowflake.com
ipe-em-ssm-activation-code-us-east-1.snowflake.com
demo.streamlit.snowflake.com
app1e-status.outreach.io
*.qa3.us-west-2.aws-dev.app.snowflake.com
sni204121.cloudflaressl.com
*.autotestc1.eastus2.azure-dev.app.snowflake.com
liftdev.snowflake.com
1e291ab3status.snowflake.com
*.capitalone.us-east-1.aws.app.snowflake.com
attstatus.snowflake.com
cleanroom-sso.snowflake.com
accredible.armanl.eu
1e291ab3status.snowflake.com
*.snowvmtest.us-west-2.aws-dev.app.snowflake.com
*.core2.us-west-2.aws-dev.app.snowflake.com
attstatus.snowflake.com
it-ds-chromadb.snowflake.com
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
app1e-status.outreach.io
*.qa6.us-west-2.aws-dev.app.snowflake.com
app1e-status.outreach.io
app1e-status.outreach.io
corp-vpn.snowflake.com
argocd-it-dev.snowflake.com
app1e-status.outreach.io
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
partner-payment-oauth.snowflake.com
events.snowflake.com
*.ordevautotest1.us-west-2.aws-dev.app.snowflake.com
events.snowflake.com
app.my-guitar-tabs.com
*.autotestcore2.eastus2.azure-dev.app.snowflake.com
*.t1.usgovvirginia.azure-gov.app.snowflake.com
abemcertified.abem.org
*.citi.us-east-2.aws.app.snowflake.com
*.devtemptest3core1.us-west-2.aws-dev.app.snowflake.com
api.developers.snowflake.com
lift.snowflake.com
leapfrog-ssl-33.gcs-web.com
*.c2.eastus2.azure-dev.app.snowflake.com
sni204121.cloudflaressl.com
events.snowflake.com
1e291ab3status.snowflake.com
app1e-status.outreach.io
app1e-status.outreach.io
*.c1.eu-west-1.aws.app.snowflake.com
sni204121.cloudflaressl.com
ciscokineticbeta.iotspdev.io
api.developers.snowflake.com
app-cdn-staging.app.snowflake.com
app1e-status.outreach.io
investment-data-cloud-uat.snowflake.com
snowamp.snowflake.com
winternet.snowflake.com
Certificate
The complete raw certificate details for *.citi.us-east-2.aws.app.snowflake.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGmzCCBYOgAwIBAgIQAexJdYdJQz+1nuIwmFnOXzANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMjA3MDgwMDAwMDBa Fw0yMzA3MTEyMzU5NTlaMIGAMQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZv cm5pYTESMBAGA1UEBxMJU2FuIE1hdGVvMRcwFQYDVQQKEw5Tbm93Zmxha2UgSW5j LjEvMC0GA1UEAwwmKi5jaXRpLnVzLWVhc3QtMi5hd3MuYXBwLnNub3dmbGFrZS5j b20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDGRHD6lfh5XJU1Ksb0 yYoOK/MZJVzSUjPOODdW8dKaU0YcwTtR1ZzZ7Evunp/fWxTnNuqBUlLXV9NPWXBe Gnb9u1WkA/uMuWKZXmagBkULUUX+hK/xhinGeePbqTpGpA75KL9m8dKnBlfT08kZ xsu+yKvZFTvnwHqWbR5LBHunzlnHrY2+qPyvaqLFpgEO8AE9QNprNvQ9mpf2JQkW s1qAzPXyLrr0YkPzObh9gI8SN62bfQErnWN0MBzsoSlT98BYkvGHstBwJRLXqSSW CjPsecv56ko2Emo3Ojjhz4YlyNmDc6gshgD0IxqvErlgY0yKXGt2F13K/tBg9rgs O63BZiownAQIALD9EtLf2TnAdgkOp4beO7ryZPj/NZ/S+uHYNuanIt49+zYcNZ3C cfRcCDgTdem2UVP7jFsPH8YoI65HmdNMAZAvoUyaFNWJhzKmnDGGGjwPto69EIXc 7/0DuhGB1vB3mIe0w2wm5TMyUBT0UzhaMB4XasSGkyNTQILYJRtmowecTSZM5Rxj ra3lXCxaPcAUUHpCSkgrr9JEUHWUXTJEyvyP+Jk1tfqnFBifCpzoGto4k9LO+6bR NFjR1WrYe7PnppgDxj/thr1ugaLmktZ5o6jBvjtRS2DhA7q8j0/MIf2BD0qh4QYx v3EXh4pEgW1Xv98cOyb9BwF/3wIDAQABo4ICPzCCAjswHwYDVR0jBBgwFoAUt2ui 6qiqhIx56rTaD5iyxZV2ufQwHQYDVR0OBBYEFOYp+6aKCM/+7rYPyJ0D+Nl0FhiH MFcGA1UdEQRQME6CJiouY2l0aS51cy1lYXN0LTIuYXdzLmFwcC5zbm93Zmxha2Uu Y29tgiRjaXRpLnVzLWVhc3QtMi5hd3MuYXBwLnNub3dmbGFrZS5jb20wDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBjwYDVR0f BIGHMIGEMECgPqA8hjpodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGlnaUNlcnRU TFNSU0FTSEEyNTYyMDIwQ0ExLTQuY3JsMECgPqA8hjpodHRwOi8vY3JsNC5kaWdp Y2VydC5jb20vRGlnaUNlcnRUTFNSU0FTSEEyNTYyMDIwQ0ExLTQuY3JsMD4GA1Ud IAQ3MDUwMwYGZ4EMAQICMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNl cnQuY29tL0NQUzB/BggrBgEFBQcBAQRzMHEwJAYIKwYBBQUHMAGGGGh0dHA6Ly9v Y3NwLmRpZ2ljZXJ0LmNvbTBJBggrBgEFBQcwAoY9aHR0cDovL2NhY2VydHMuZGln aWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS0xLmNydDAJBgNV HRMEAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBi 9s+ExTEm8n6XLz43n9drXg72ULHsTsq2irAPWKG4Ocp5CWyihgijF3YGfraGAkLe 8tuVnkw6fhfC8LflHmuYqsjf1lVoZxQuZs7ZyqK2p9Fi6ylA+3nT0ihs3wkJ0kL7 /WUN7+/BeVoWR5be5CGDZ7uXDU0USSZKZT+W6aTDIxbhtLgnuSiRVVf/zAiBazBT c5FxV6ORitmOXMCMs0JOluY0Pwgng3wFrRhFvXCVgloNRXoRAK6NUe4dRp2x8GrH ZLy2SssT8xtowq8Qmt0Pja1WqRIF7pHx4z1WTKQovbSdnKP60dFOzKBZpqqG6kus T/XYFInkW5yiKBPIDT7D -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxkRw+pX4eVyVNSrG9MmK DivzGSVc0lIzzjg3VvHSmlNGHME7UdWc2exL7p6f31sU5zbqgVJS11fTT1lwXhp2 /btVpAP7jLlimV5moAZFC1FF/oSv8YYpxnnj26k6RqQO+Si/ZvHSpwZX09PJGcbL vsir2RU758B6lm0eSwR7p85Zx62Nvqj8r2qixaYBDvABPUDaazb0PZqX9iUJFrNa gMz18i669GJD8zm4fYCPEjetm30BK51jdDAc7KEpU/fAWJLxh7LQcCUS16kklgoz 7HnL+epKNhJqNzo44c+GJcjZg3OoLIYA9CMarxK5YGNMilxrdhddyv7QYPa4LDut wWYqMJwECACw/RLS39k5wHYJDqeG3ju68mT4/zWf0vrh2DbmpyLePfs2HDWdwnH0 XAg4E3XptlFT+4xbDx/GKCOuR5nTTAGQL6FMmhTViYcyppwxhho8D7aOvRCF3O/9 A7oRgdbwd5iHtMNsJuUzMlAU9FM4WjAeF2rEhpMjU0CC2CUbZqMHnE0mTOUcY62t 5VwsWj3AFFB6QkpIK6/SRFB1lF0yRMr8j/iZNbX6pxQYnwqc6BraOJPSzvum0TRY 0dVq2Huz56aYA8Y/7Ya9boGi5pLWeaOowb47UUtg4QO6vI9PzCH9gQ9KoeEGMb9x F4eKRIFtV7/fHDsm/QcBf98CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2556099981864261418605278171019988575 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'San Mateo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Snowflake Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.citi.us-east-2.aws.app.snowflake.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 808860213905406665860211693236158813614514601862113710004111901973712005710427890533646650902449508428751315366708559544104694890023126114815003156971893451415215207235468806496965111309974653149450635737975311186407425479055828092708054816221359255904478074733741303867967799803462588875052934225429582213607496633409233798783869395205293192342127501432235584228151244818630114097554787739518142475166348758528131006337215470349510106420194299334659303930189101103287543390353515748386351437081394249741307858182439425758920116688278146727131679936965129045522445858213297281458755484654205613350256390744223456455209222010887807348738613394666354203914968434628628152696914539756720596411075219095317395112213880465974163749739320893040239217021728771448814772335236237780233370809239584702121104139811391806367987710055386136107949601436848803260382884656516973696422207115672962068572828122186158365443233896811387572166815272172516185768765250978341446661399776864875131719255753377611386312540014912801349688801537212603850443731456439010986514892018485688931222802141552957625470288851116953893899143166579514795239501146656220170740265628998959671618229914281997863232320245959371162428475031496057737572423016206354083839967 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e629fba68a08cffeeeb60fc89d03f8d974161887 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.citi.us-east-2.aws.app.snowflake.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'citi.us-east-2.aws.app.snowflake.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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