gdpr.ew.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0a:f5:3b:ca:f3:70:1d:1e:62:1e:aa:d8:a8:a9:92:8c was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=gdpr.ew.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:f5:3b:ca:f3:70:1d:1e:62:1e:aa:d8:a8:a9:92:8cSerial Number (int): 14565605429786029415463540898390446732
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: cf:48:ec:f7:fe:e6:7f:1d:74:db:23:6e:4d:af:5e:38:46:d8:13:32
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): b2:72:97:35:16:0f:fa:2b:41:cc:47:e2:82:7e:ca:bb:8d:70:5a:5a
Fingerprint (sha256): 0d:05:1e:77:6c:89:88:43:38:ff:7b:4a:57:59:48:b0:3c:4f:c3:54:71:c3:6a:ac:05:ec:d5:13:4d:4d:a2:88
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate gdpr.ew.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gdpr.ew.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gdpr.ew.com
gdpr.people.com
gdpr.peopleenespanol.com
gdpr.hellogiggles.com
gdpr.people.com
gdpr.peopleenespanol.com
gdpr.hellogiggles.com
Other certificates including the domain name ew.com
(limited to 100 certificates)
*.allyou.com
office.timeinc.com
subscription.timeinc.com
www.oxmoorhouse.com
qa4.ugc.marthastewart.com
subscription.timeinc.com
qa-subscription.ecommerce.timeinc.com
accounts.bhg.com
webreader.ew.com
*.secure.meredith.com
secure.meredith.com
www.timeinclistrental.com
qa-subscription.ecommerce.timeinc.com
qa-subscription.ecommerce.timeinc.com
cgi.pathfinder.com
ew.com
sli.dailypaws.com
office.timeinc.com
a-ue1.mydomaine.com
ew.com
qa-subscription.ecommerce.timeinc.com
ew.com
subscription.timeinc.com
app.dreader.timeinc.net
www.meredith.com
*.ew.com
smetrics.ew.com
xid.people.com
qa4.ugc.marthastewart.com
firstlookclub.ew.com
webreader.ew.com
*.meredithperformancemarketing.com
qa-www.oxmoorhouse.com
gdpr.ew.com
www.reference.dcms-sa.timeinc.net
accounts.ew.com
www.reference.dcms-sa.timeinc.net
tmpcaa.enterprise.corpad.timeinc.com
ew.com
sli.dailypaws.com
qa-www.oxmoorhouse.com
cmbuild-aws-www.oxmoorhouse.com
*.ew.com
rails.timeinc.net
sli.dailypaws.com
xid.coastalliving.com
*.meredithperformancemarketing.com
xid.coastalliving.com
xid.coastalliving.com
xid.people.com
www.reference.dcms-sa.timeinc.net
secure.meredith.com
pages.email.coastalliving.com
accounts.bhg.com
office.timeinc.com
xid.coastalliving.com
subscription.timeinc.com
accounts.bhg.com
subscription.timeinc.com
ew.com
www.timeinclistrental.com
qa-www.oxmoorhouse.com
subscription.timeinc.com
www.meredith.com
a-uw2.mydomaine.com
subscription.timeinc.com
qa-profiles.timeinc.net
*.ew.com
secure.meredith.com
accounts.bhg.com
www.timeinclistrental.com
www.oxmoorhouse.com
ew.com
a-ue1.mydomaine.com
qa4.ugc.marthastewart.com
www.oxmoorhouse.com
secure.meredith.com
*.a-ue1.ew.com
*.allyou.com
ew.com
accounts.ew.com
*.ew.com
subscription-assets.timeinc.com
subscription.timeinc.com
qa-www.oxmoorhouse.com
subscription.timeinc.com
qa-www.oxmoorhouse.com
www.reference.dcms-sa.timeinc.net
www.oxmoorhouse.com
movieclub.ew.com
*.ew.com
sli.dailypaws.com
lucie.realsimple.com
a-ue1.mydomaine.com
dev-app.dreader.timeinc.net
rails.timeinc.net
rails.timeinc.net
qa3.ugc.marthastewart.com
subscription.timeinc.com
ew.com
office.timeinc.com
subscription.timeinc.com
www.oxmoorhouse.com
qa4.ugc.marthastewart.com
subscription.timeinc.com
qa-subscription.ecommerce.timeinc.com
accounts.bhg.com
webreader.ew.com
*.secure.meredith.com
secure.meredith.com
www.timeinclistrental.com
qa-subscription.ecommerce.timeinc.com
qa-subscription.ecommerce.timeinc.com
cgi.pathfinder.com
ew.com
sli.dailypaws.com
office.timeinc.com
a-ue1.mydomaine.com
ew.com
qa-subscription.ecommerce.timeinc.com
ew.com
subscription.timeinc.com
app.dreader.timeinc.net
www.meredith.com
*.ew.com
smetrics.ew.com
xid.people.com
qa4.ugc.marthastewart.com
firstlookclub.ew.com
webreader.ew.com
*.meredithperformancemarketing.com
qa-www.oxmoorhouse.com
gdpr.ew.com
www.reference.dcms-sa.timeinc.net
accounts.ew.com
www.reference.dcms-sa.timeinc.net
tmpcaa.enterprise.corpad.timeinc.com
ew.com
sli.dailypaws.com
qa-www.oxmoorhouse.com
cmbuild-aws-www.oxmoorhouse.com
*.ew.com
rails.timeinc.net
sli.dailypaws.com
xid.coastalliving.com
*.meredithperformancemarketing.com
xid.coastalliving.com
xid.coastalliving.com
xid.people.com
www.reference.dcms-sa.timeinc.net
secure.meredith.com
pages.email.coastalliving.com
accounts.bhg.com
office.timeinc.com
xid.coastalliving.com
subscription.timeinc.com
accounts.bhg.com
subscription.timeinc.com
ew.com
www.timeinclistrental.com
qa-www.oxmoorhouse.com
subscription.timeinc.com
www.meredith.com
a-uw2.mydomaine.com
subscription.timeinc.com
qa-profiles.timeinc.net
*.ew.com
secure.meredith.com
accounts.bhg.com
www.timeinclistrental.com
www.oxmoorhouse.com
ew.com
a-ue1.mydomaine.com
qa4.ugc.marthastewart.com
www.oxmoorhouse.com
secure.meredith.com
*.a-ue1.ew.com
*.allyou.com
ew.com
accounts.ew.com
*.ew.com
subscription-assets.timeinc.com
subscription.timeinc.com
qa-www.oxmoorhouse.com
subscription.timeinc.com
qa-www.oxmoorhouse.com
www.reference.dcms-sa.timeinc.net
www.oxmoorhouse.com
movieclub.ew.com
*.ew.com
sli.dailypaws.com
lucie.realsimple.com
a-ue1.mydomaine.com
dev-app.dreader.timeinc.net
rails.timeinc.net
rails.timeinc.net
qa3.ugc.marthastewart.com
subscription.timeinc.com
ew.com
Certificate
The complete raw certificate details for gdpr.ew.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgIQCvU7yvNwHR5iHqrYqKmSjDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDA0MjQwMDAwMDBaFw0yMTA1MjQx MjAwMDBaMBYxFDASBgNVBAMTC2dkcHIuZXcuY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAu9EU7t2vXXqgSXnQwHXN8vMfSgTGFVW7j+zbu1LOTDJB DQvcENpOCz8gN1qqOxiiamDgIL8ozql6YB+nDBb5I5DCGVYXUzRStKL6uJvWvlc2 7t9cwMDWLK+3nvlCLjRvM1f2od0iccBr2BpVBKRyfNp5Y81b3tZ6uyS2aHta4W0n Gj04GOsgQLVXhHmfeqyhglBZy+Vh22xWOVxWQHX9bil6EPpcH7T1OxNyRJXYKahJ rGtFpHk41YqpwXWAg/y7Gqtniq5wGeAmrA39t5GOERPvGfypKVxox52oYokBhDO6 ep8J/50Tw3wRdCL/UE1cXkGXPTuXpvG0sITF28T6kwIDAQABo4ICuDCCArQwHwYD VR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFM9I7Pf+5n8d dNsjbk2vXjhG2BMyMFgGA1UdEQRRME+CC2dkcHIuZXcuY29tgg9nZHByLnBlb3Bs ZS5jb22CGGdkcHIucGVvcGxlZW5lc3Bhbm9sLmNvbYIVZ2Rwci5oZWxsb2dpZ2ds ZXMuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250 cnVzdC5jb20vc2NhMWIuY3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeB DAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNj YTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2Ex Yi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwggEDBgor BgEEAdZ5AgQCBIH0BIHxAO8AdQD2XJQv0XcwIhRUGAgwlFaO400TGTO/3wwvIAvM TvFk4wAAAXGqUQP/AAAEAwBGMEQCIGnTmFADpF5l/i7GA+rYy9G0U73XpMeK9TYx f5M2yn5jAiAxbFkpjr0Kr1SOL5dtMP2eojsg8Irr1Is2dpqqwQ4nZwB2AFzcQ5L+ 5qtFRLFemtRW5hA3+9X6R9yhc5SyXub2xw7KAAABcapRBDkAAAQDAEcwRQIhAKGV tCIOHbaE6AFPwjzebBtDyHTpnVNW9vHZdon26u78AiAgeg0+ut/lk9VxOmIJEimX D+cCs69D9JUwyG43aeJZnTANBgkqhkiG9w0BAQsFAAOCAQEAPslcWRiwfJPYbxCS RiNSdoAg+WeStVhfFk3WS5Kz7VRuvPPE007B8X5mPRfmcB47YH1LVlD5JUebZF8j /T5aOTObKteF4fixV69cvFGRCuUUSNG/wdZ5V+xVM32BcmQEhrdJh+rxG7MO3iYA HHgNDwwSCwdHAHtc6UW+NC/ucZ2FuwKRsJkR+HlVnGvScdwPeJ4Iwrq0yj94u43X hXvDSk6mPJaZCC8xhZISX1JO9B6E/e97W+hs4Rzpw8S1i5FmW+nVJ7sJqqh5vYzt UbGLn078RTwUdjJ7C1kUAf/lThvwYtETiKFA/s16E/B4qbjbeUL9HnZMivI+QOct S+CEyw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9EU7t2vXXqgSXnQwHXN 8vMfSgTGFVW7j+zbu1LOTDJBDQvcENpOCz8gN1qqOxiiamDgIL8ozql6YB+nDBb5 I5DCGVYXUzRStKL6uJvWvlc27t9cwMDWLK+3nvlCLjRvM1f2od0iccBr2BpVBKRy fNp5Y81b3tZ6uyS2aHta4W0nGj04GOsgQLVXhHmfeqyhglBZy+Vh22xWOVxWQHX9 bil6EPpcH7T1OxNyRJXYKahJrGtFpHk41YqpwXWAg/y7Gqtniq5wGeAmrA39t5GO ERPvGfypKVxox52oYokBhDO6ep8J/50Tw3wRdCL/UE1cXkGXPTuXpvG0sITF28T6 kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14565605429786029415463540898390446732 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-24 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gdpr.ew.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23709665092010458029737607447359277315004945416264008688629274968385839114551629868609761528884888282523826123383516972591910614792359477447899646878425458057525347297393343013206450484776598880931033004067739366123457656718760033485110568847166899182053697437350284188612997099100837495440718991590048295317742399326041084829411926052724430919660593943514720201276735575646361617584732686088059384534865083312097545604206687150006509190313083380867877411042329618018001407068889275955738120108565853698235824854288834244830368530854191044749112833843182934486517354704931187323539636721300972847589158794066586303123 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cf48ecf7fee67f1d74db236e4daf5e3846d81332 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (81 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gdpr.ew.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gdpr.people.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gdpr.peopleenespanol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gdpr.hellogiggles.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e300000171aa5103ff0000040300463044022069d3985003a45e65fe2ec603ead8cbd1b453bdd7a4c78af536317f9336ca7e630220316c59298ebd0aaf548e2f976d30fd9ea23b20f08aebd48b36769aaac10e27670076005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca00000171aa5104390000040300473045022100a195b4220e1db684e8014fc23cde6c1b43c874e99d5356f6f1d97689f6eaeefc0220207a0d3ebadfe593d5713a62091229970fe702b3af43f49530c86e3769e2599d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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