doctors.unitypoint.org
Issued by Amazon
About this certificate
This digital certificate with serial number 0a:9e:96:e1:69:c0:c5:64:10:48:5a:5e:f5:93:37:69 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=doctors.unitypoint.org
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:9e:96:e1:69:c0:c5:64:10:48:5a:5e:f5:93:37:69Serial Number (int): 14115723082003746895037500433433311081
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c4:9e:e9:d2:e9:34:4e:a4:d8:b5:05:cb:d0:29:e0:ba:9a:c4:e7:f7
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 35:17:b8:d2:d7:cd:fe:69:7d:a9:8f:f4:6b:19:db:2c:07:8b:e2:7a
Fingerprint (sha256): 0d:3e:c5:ec:fb:84:c0:ff:cb:98:49:6c:a0:40:cd:95:86:3a:ce:ee:e1:2f:67:4b:80:2d:65:e0:a4:69:70:68
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate doctors.unitypoint.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for doctors.unitypoint.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
doctors.unitypoint.org
unitypoint.customer.kyruus.com
unitypoint.customer.kyruus.com
Other certificates including the domain name unitypoint.org
(limited to 100 certificates)
akamai-san63.exacttarget.com
slc-hc-altas-web-01-p.unitypoint.org
unitypoint-cedarrapids.customer.kyruus.com
carelink.unitypoint.org
iq4.ihs.org
unitypoint-waterloo.customer.kyruus.com
webouts.unitypoint.org
akamai-san63.exacttarget.com
intranet.unitypoint.org
guestwifi.unitypoint.org
peoriaprintshop.unitypoint.org
slc-hc-altas-wbs-01-d.unitypoint.org
inforfs.unitypoint.org
isystocfinley.unitypoint.org
unitypoint-fortdodge.customer.kyruus.com
carelink.unitypoint.org
iq4.ihs.org
greenway.unitypoint.org
bewell.unitypoint.org
carelink.unitypoint.org
webdirect.unitypoint.org
iq4.ihs.org
webouts.unitypoint.org
teamsites.unitypoint.org
blankchildrens.org
peervue.unitypoint.org
unitypoint-grinnell.customer.kyruus.com
conflictofinterest.unitypoint.org
doctors.unitypoint.org
unitypoint.customer.kyruus.com
onbaseweb.unitypoint.org
inforlmfintrain.unitypoint.org
click.hello.unitypoint.org
hhcweb.ihs.org
ps360.unitypoint.org
isystocallen.unitypoint.org
unitypoint.customer.kyruus.com
billpay.unitypoint.org
radtest.pacs.unitypoint.org
benefits.unitypoint.org
webmail.unitypoint.org
inforlmfintrain.unitypoint.org
marshalltown.unitypoint.org
pcard.unitypoint.org
benefits.unitypoint.org
unitypoint-grinnell.customer.kyruus.com
iq4.ihs.org
bewell.unitypoint.org
carelink.unitypoint.org
unitypoint-peoria.customer.kyruus.com
dcim.unitypoint.org
iq4.ihs.org
webpath.unitypoint.org
isystoccr.unitypoint.org
blankchildrens.org
msowportaldocs.unitypoint.org
unitypoint-quadcities.customer.kyruus.com
Iowa Health System
unitypoint.org
extranetsp.unitypoint.org
isystocfinley.unitypoint.org
isystoccr.unitypoint.org
devEvent-Feedback.UnityPoint.org
peoriaprintshop.unitypoint.org
ftp.unitypoint.org
stlukesphysiciansandclinics.net
amccr.unitypoint.org
www.unitypoint.org
peoriaprintshop.unitypoint.org
provcred.unitypoint.org
teamsites.unitypoint.org
unitypoint.customer.kyruus.com
billpay.unitypoint.org
pharmacy.unitypoint.org
lbi-dev.unitypoint.org
isystocallen.unitypoint.org
haikucantoaccess.unitypoint.org
blankchildrens.org
infor-dss.unitypoint.org
ittakesyou.org
benefits.unitypoint.org
fs.unitypoint.org
ise.unitypoint.org
facadminapi.unitypoint.org
unitypoint-anamosa.customer.kyruus.com
mobility.unitypoint.org
stlukesphysiciansandclinics.net
allentestguide.unitypoint.org
haikucantoaccess.unitypoint.org
infortrain.unitypoint.org
epicacr.unitypoint.org
blankchildrens.org
www.allenhospital.org
thehub.unitypoint.org
workflow.unitypoint.org
webpath.unitypoint.org
onbaseweb.unitypoint.org
cloud.hello.unitypoint.org
prim.unitypoint.org
webouts.unitypoint.org
slc-hc-altas-web-01-p.unitypoint.org
unitypoint-cedarrapids.customer.kyruus.com
carelink.unitypoint.org
iq4.ihs.org
unitypoint-waterloo.customer.kyruus.com
webouts.unitypoint.org
akamai-san63.exacttarget.com
intranet.unitypoint.org
guestwifi.unitypoint.org
peoriaprintshop.unitypoint.org
slc-hc-altas-wbs-01-d.unitypoint.org
inforfs.unitypoint.org
isystocfinley.unitypoint.org
unitypoint-fortdodge.customer.kyruus.com
carelink.unitypoint.org
iq4.ihs.org
greenway.unitypoint.org
bewell.unitypoint.org
carelink.unitypoint.org
webdirect.unitypoint.org
iq4.ihs.org
webouts.unitypoint.org
teamsites.unitypoint.org
blankchildrens.org
peervue.unitypoint.org
unitypoint-grinnell.customer.kyruus.com
conflictofinterest.unitypoint.org
doctors.unitypoint.org
unitypoint.customer.kyruus.com
onbaseweb.unitypoint.org
inforlmfintrain.unitypoint.org
click.hello.unitypoint.org
hhcweb.ihs.org
ps360.unitypoint.org
isystocallen.unitypoint.org
unitypoint.customer.kyruus.com
billpay.unitypoint.org
radtest.pacs.unitypoint.org
benefits.unitypoint.org
webmail.unitypoint.org
inforlmfintrain.unitypoint.org
marshalltown.unitypoint.org
pcard.unitypoint.org
benefits.unitypoint.org
unitypoint-grinnell.customer.kyruus.com
iq4.ihs.org
bewell.unitypoint.org
carelink.unitypoint.org
unitypoint-peoria.customer.kyruus.com
dcim.unitypoint.org
iq4.ihs.org
webpath.unitypoint.org
isystoccr.unitypoint.org
blankchildrens.org
msowportaldocs.unitypoint.org
unitypoint-quadcities.customer.kyruus.com
Iowa Health System
unitypoint.org
extranetsp.unitypoint.org
isystocfinley.unitypoint.org
isystoccr.unitypoint.org
devEvent-Feedback.UnityPoint.org
peoriaprintshop.unitypoint.org
ftp.unitypoint.org
stlukesphysiciansandclinics.net
amccr.unitypoint.org
www.unitypoint.org
peoriaprintshop.unitypoint.org
provcred.unitypoint.org
teamsites.unitypoint.org
unitypoint.customer.kyruus.com
billpay.unitypoint.org
pharmacy.unitypoint.org
lbi-dev.unitypoint.org
isystocallen.unitypoint.org
haikucantoaccess.unitypoint.org
blankchildrens.org
infor-dss.unitypoint.org
ittakesyou.org
benefits.unitypoint.org
fs.unitypoint.org
ise.unitypoint.org
facadminapi.unitypoint.org
unitypoint-anamosa.customer.kyruus.com
mobility.unitypoint.org
stlukesphysiciansandclinics.net
allentestguide.unitypoint.org
haikucantoaccess.unitypoint.org
infortrain.unitypoint.org
epicacr.unitypoint.org
blankchildrens.org
www.allenhospital.org
thehub.unitypoint.org
workflow.unitypoint.org
webpath.unitypoint.org
onbaseweb.unitypoint.org
cloud.hello.unitypoint.org
prim.unitypoint.org
webouts.unitypoint.org
Certificate
The complete raw certificate details for doctors.unitypoint.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBTCCBO2gAwIBAgIQCp6W4WnAxWQQSFpe9ZM3aTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMTEwMjYwMDAwMDBaFw0yMjExMjQy MzU5NTlaMCExHzAdBgNVBAMTFmRvY3RvcnMudW5pdHlwb2ludC5vcmcwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyFJ8gGH+AW2lw6Awi0IUBoex0WjCw fgQu+XiNyOO7Wt12gq+gHMOylM9TtiZUF0ORZMQeG3onih3IupY0yeO9SHoire7v /akamJGII07Uow+80i30Q9yygsrtBtBsv9tUWPbIcJ+rOK0Wl+V4ZNhm28VY/No4 AMEW7jmOZye/C/T/2QYXdzD3PJmm0WLAKBy1LtZsi4f2LJj79vxNdP0nHYduX6Ha 5lCx4FixdpELX9/CXt5A6ommoNVoD+1XuNQQBcN3PbuXlgPY72jv840YrgC9Gwti LVRV9cR6W3aPEr3B6qD7+S0cn5so8Ei7hLGGJJFQZPgGw+xLpkhJYpRdAgMBAAGj ggMSMIIDDjAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4E FgQUxJ7p0uk0TqTYtQXL0CnguprE5/cwQQYDVR0RBDowOIIWZG9jdG9ycy51bml0 eXBvaW50Lm9yZ4IedW5pdHlwb2ludC5jdXN0b21lci5reXJ1dXMuY29tMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPQYDVR0f BDYwNDAyoDCgLoYsaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2Nh MWItMS5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0G CCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYI KwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFi LmNydDAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwAp eb7wnjk5IfBWc59jpXflvld9nGAK+PlNXSZcJV3HhAAAAXy8S9P3AAAEAwBIMEYC IQDHA7C/AKJzG7REFgzB/+pBjBVnd6HNoqQxn8BDRjAcFwIhAMh8RR6i2pI3edpw DHLzVkdz5mp0A2ztJqevF3fnJPXpAHUAUaOw9f0BeZxWbbg3eI8MpHrMGyfL956I QpoN/tSLBeUAAAF8vEvUXwAABAMARjBEAiAoAh/lPqbhoo2Lt15jOBaWxcjnDRDV MHJWORAOKse/uwIgIC6T6wJOphHMBUbWp81DSI0lLeZLQvy1rfmp6yY4ZeYAdwBB yMqx3yJGShDGoToJQodeTjGLGwPr60vHaPCQYpYG9gAAAXy8S9QmAAAEAwBIMEYC IQDfJOggV+kUZo5CCgeeoQGeIv92/s37kfdpQk/Ucvcv8gIhAM6HSP5TwjA7w2Yp qy5jNMot50LB/7rjUQx/qLclj87xMA0GCSqGSIb3DQEBCwUAA4IBAQCCTaD+/rcq sgwbGslBuOiRD878pDjQjLknimgZ4KbYtjfjQj+kINMnUa5mjcd/dkywlj1+gpVM bXF9E96uJaGNiYa6Q3JjOxzDPTm2MEk0tgSB9riBqtUfvFQPcWU6BTJZf/4uOZjk 1PmKrtseMb8035lm6JSWQ4XTKl+DEQ0mbBrOWaW3yWJF6uBEq7hult3vJ5dkfKWi gtRZYptSORmoc/Cka5zyvt4fc6R2T+Ptf/5KQwpucMAXTcno8GHLz4cpr/ubgLH9 ivTnsWtjHz+llxs0k+uv+GUaPoGXhLsdmpfYkh1gRodYTYIb7cHHCq/iUyA5t3Z1 lPlC2bCNF8lj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshSfIBh/gFtpcOgMItCF AaHsdFowsH4ELvl4jcjju1rddoKvoBzDspTPU7YmVBdDkWTEHht6J4odyLqWNMnj vUh6Iq3u7/2pGpiRiCNO1KMPvNIt9EPcsoLK7QbQbL/bVFj2yHCfqzitFpfleGTY ZtvFWPzaOADBFu45jmcnvwv0/9kGF3cw9zyZptFiwCgctS7WbIuH9iyY+/b8TXT9 Jx2Hbl+h2uZQseBYsXaRC1/fwl7eQOqJpqDVaA/tV7jUEAXDdz27l5YD2O9o7/ON GK4AvRsLYi1UVfXEelt2jxK9weqg+/ktHJ+bKPBIu4SxhiSRUGT4BsPsS6ZISWKU XQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14115723082003746895037500433433311081 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-11-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'doctors.unitypoint.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22480587165777483261832396905919267213339115902566588894656341095673602755614254454092517818826918543937051242803295790921856351078844167202880431771009131908784111726219856524590648291190867557781399088536346951974173780055995395976191152842333603806840342865324999367474890323765011662837517804100222943513021098192803090270613096073380212023856733835114958468221414463140972617421772786412644166574279644442116345559419927549240101148501902618251312480688969568435398430804139383888841953024840102075469486257873623600240389236967571869884925470280834423931640542669459705396142810195137137203651067518603950724189 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c49ee9d2e9344ea4d8b505cbd029e0ba9ac4e7f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'doctors.unitypoint.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unitypoint.customer.kyruus.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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