www.amazon.com.au
Issued by DigiCert Global CA G2
About this certificate
This digital certificate with serial number 06:73:49:dd:44:e7:f3:65:39:02:69:29:01:f4:0d:e2 was issued on by DigiCert Inc.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.amazon.com.au
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:73:49:dd:44:e7:f3:65:39:02:69:29:01:f4:0d:e2Serial Number (int): 8573980260091374573530299978155822562
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 1a:97:41:1e:84:fa:15:4e:63:3b:b4:22:6f:84:48:56:60:34:49:ec
AuthorityKeyId: 24:6e:2b:2d:d0:6a:92:51:51:25:69:01:aa:9a:47:a6:89:e7:40:20
Fingerprint (sha1): 3d:fd:58:1d:6f:1b:0f:c0:4c:e3:d9:8e:dd:eb:18:a2:bb:84:24:70
Fingerprint (sha256): 0d:5a:d7:6d:45:aa:27:fc:ce:59:74:bf:d1:ea:59:33:9c:8d:68:e7:7a:21:a8:ea:12:c0:a3:92:57:1e:3e:57
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalCAG2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalCAG2.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalCAG2.crl
Check the revocation status for certificate www.amazon.com.au
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.amazon.com.au
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
amazon.com.au
www.amazon.com.au
origin-www.amazon.com.au
www.amazon.com
amazon.com
p-nt-www-amazon-com-au-kalias.amazon.com.au
p-yo-www-amazon-com-au-kalias.amazon.com.au
p-y3-www-amazon-com-au-kalias.amazon.com.au
www.amazon.com.au
origin-www.amazon.com.au
www.amazon.com
amazon.com
p-nt-www-amazon-com-au-kalias.amazon.com.au
p-yo-www-amazon-com-au-kalias.amazon.com.au
p-y3-www-amazon-com-au-kalias.amazon.com.au
Other certificates including the domain name amazon.com.au
(limited to 100 certificates)
alexa-skills.amazon.com.au
completion.amazon.co.jp
cde-ta-g7g.amazon.com
identity.browserapps.amazon.co.jp
dcp.amazon.co.jp
skills-store-eu.amazon.com
dp-gw-na.amazon.com
dl.amazon.co.jp
aax-fe-retail-direct.amazon-adsystem.com
logistics.amazon.com
argileto.amazon.com
pitangui.amazon.com
*.peg.a2z.com
fls-fe-opf.amazon.com
sellercentral.amazon.com.au
www.amazon.com.au
kindlestore-sha-proxy.amazon.com
brandservices.amazon.com
alexa-skills-beta.amazon.com.au
kep.amazon.com
dp-gw-na.amazon.com
fls-fe.amazon.com
identity.browserapps.amazon.co.jp
pitangui.amazon.com
thumbnails-photos.amazon.co.jp
advertising-api-fe.amazon.com
kep-eu.amazon.com
api.amazon.com.au
ramp.amazon.com
affiliate-program.amazon.com.au
www.amazon.com.au
cde-ta-g7g.amazon.com
kindle.amazon.com
account-p2k.amazon.com
lwa.amazon.com.au
webservices.amazon.co.jp
kindle-store-proxy-endpoint-na.amazon.com
affiliate-program.amazon.com.au
skills-store-eu.amazon.com
skills-store-eu.amazon.com
akamai-renew-cert-digicert-arcus-www.amazon.com
dcp.amazon.co.jp
brandservices.amazon.com
cde-ta-g7g-preprod.amazon.com
www.amazon.com.au
rental-account.partnercentral-na.amazon.com
ddee-preprod.amazon.com
aax.online-panel.advertising.amazon.dev
twitch.amazon.co.jp
cde-ta-g7g.amazon.com
sellercentral.amazon.com.au
*.peg.a2z.com
brandservices.amazon.com
arcus-www.amazon.com.au
completion.amazon.co.jp
dpreview.in
sellercentral.amazon.com.au
sellercentral.amazon.com
*.peg.a2z.com
brandservices.amazon.com
completion.amazon.co.jp
cde-ta-g7g-preprod.amazon.com
*.peg.a2z.com
sellercentral.amazon.com
vendorcentral.amazon.com.au
argileto.amazon.com
*.peg.a2z.com
bob-dispatch-prod-na.amazon.com
argileto.amazon.com
ramp.amazon.com
logistics.amazon.com
ara-fe.amazon.com
puptrack-fe.amazon.com
kindle-store-proxy-endpoint-na.amazon.com
kindle.amazon.com
msh-tablet.amazon.com.au
www22.amazon.com.au
skills-store-eu.amazon.com
ramp.amazon.com
completion.amazon.co.jp
*.peg.a2z.com
ramp.amazon.com
www.amazon.com.au
advertising-fe.amazon.com
brandservices.amazon.com
alexa-skills.amazon.com
aax-fe.amazon.com
read.amazon.com.au
documents.amazon.com.au
aax-fe-retail-direct.amazon-adsystem.com
rental-account.partnercentral-na.amazon.com
bob-dispatch-prod-na.amazon.com
kindle.amazon.com
alexa-comms-mobile-service.amazon.com
dropship.amazon.com
kindle-store-proxy-endpoint-na.amazon.com
cde-ta-g7g.amazon.com
vendorcentral-prod.amazon.com
www.amazon.com.au
dropship.amazon.com
completion.amazon.co.jp
cde-ta-g7g.amazon.com
identity.browserapps.amazon.co.jp
dcp.amazon.co.jp
skills-store-eu.amazon.com
dp-gw-na.amazon.com
dl.amazon.co.jp
aax-fe-retail-direct.amazon-adsystem.com
logistics.amazon.com
argileto.amazon.com
pitangui.amazon.com
*.peg.a2z.com
fls-fe-opf.amazon.com
sellercentral.amazon.com.au
www.amazon.com.au
kindlestore-sha-proxy.amazon.com
brandservices.amazon.com
alexa-skills-beta.amazon.com.au
kep.amazon.com
dp-gw-na.amazon.com
fls-fe.amazon.com
identity.browserapps.amazon.co.jp
pitangui.amazon.com
thumbnails-photos.amazon.co.jp
advertising-api-fe.amazon.com
kep-eu.amazon.com
api.amazon.com.au
ramp.amazon.com
affiliate-program.amazon.com.au
www.amazon.com.au
cde-ta-g7g.amazon.com
kindle.amazon.com
account-p2k.amazon.com
lwa.amazon.com.au
webservices.amazon.co.jp
kindle-store-proxy-endpoint-na.amazon.com
affiliate-program.amazon.com.au
skills-store-eu.amazon.com
skills-store-eu.amazon.com
akamai-renew-cert-digicert-arcus-www.amazon.com
dcp.amazon.co.jp
brandservices.amazon.com
cde-ta-g7g-preprod.amazon.com
www.amazon.com.au
rental-account.partnercentral-na.amazon.com
ddee-preprod.amazon.com
aax.online-panel.advertising.amazon.dev
twitch.amazon.co.jp
cde-ta-g7g.amazon.com
sellercentral.amazon.com.au
*.peg.a2z.com
brandservices.amazon.com
arcus-www.amazon.com.au
completion.amazon.co.jp
dpreview.in
sellercentral.amazon.com.au
sellercentral.amazon.com
*.peg.a2z.com
brandservices.amazon.com
completion.amazon.co.jp
cde-ta-g7g-preprod.amazon.com
*.peg.a2z.com
sellercentral.amazon.com
vendorcentral.amazon.com.au
argileto.amazon.com
*.peg.a2z.com
bob-dispatch-prod-na.amazon.com
argileto.amazon.com
ramp.amazon.com
logistics.amazon.com
ara-fe.amazon.com
puptrack-fe.amazon.com
kindle-store-proxy-endpoint-na.amazon.com
kindle.amazon.com
msh-tablet.amazon.com.au
www22.amazon.com.au
skills-store-eu.amazon.com
ramp.amazon.com
completion.amazon.co.jp
*.peg.a2z.com
ramp.amazon.com
www.amazon.com.au
advertising-fe.amazon.com
brandservices.amazon.com
alexa-skills.amazon.com
aax-fe.amazon.com
read.amazon.com.au
documents.amazon.com.au
aax-fe-retail-direct.amazon-adsystem.com
rental-account.partnercentral-na.amazon.com
bob-dispatch-prod-na.amazon.com
kindle.amazon.com
alexa-comms-mobile-service.amazon.com
dropship.amazon.com
kindle-store-proxy-endpoint-na.amazon.com
cde-ta-g7g.amazon.com
vendorcentral-prod.amazon.com
www.amazon.com.au
dropship.amazon.com
Certificate
The complete raw certificate details for www.amazon.com.au in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHCzCCBfOgAwIBAgIQBnNJ3UTn82U5AmkpAfQN4jANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMR4wHAYDVQQDExVE aWdpQ2VydCBHbG9iYWwgQ0EgRzIwHhcNMjIwMTA2MDAwMDAwWhcNMjIxMjE0MjM1 OTU5WjAcMRowGAYDVQQDExF3d3cuYW1hem9uLmNvbS5hdTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAIi5NjGVple/LXKZrQFmBrEGnqbKDIWBP8kD89ME axIO9v6a2VCfaG2WVLGc3M94OScyNp+l/2O+HLCePe0m8reihdq0syh6bY43Eu08 vXhAT/WKN5lfROyq2yjrxq7xXVXRlfaBJE3oQZIoyNHQZgiItKYqTYV5bM7+iCHN puOW2vMyIpfhQX7rnoUWfb1rccV3R7GcKqX1kJQGQ7nSAnEpqYrXzb+PV+wkUyWC 0Xx6gaJeVmUTbaUxTU00rAtJOaAcmW6VvRGUb/HP3cyU6dSy4FiOTmR+0Ra8i6zC qd3CtM748EGOcKJDCzeQ/riRWVIcxhJJHZevwhVdr79C4JMCAwEAAaOCBB8wggQb MB8GA1UdIwQYMBaAFCRuKy3QapJRUSVpAaqaR6aJ50AgMB0GA1UdDgQWBBQal0Ee hPoVTmM7tCJvhEhWYDRJ7DCB6gYDVR0RBIHiMIHfgg1hbWF6b24uY29tLmF1ghF3 d3cuYW1hem9uLmNvbS5hdYIYb3JpZ2luLXd3dy5hbWF6b24uY29tLmF1gg53d3cu YW1hem9uLmNvbYIKYW1hem9uLmNvbYIrcC1udC13d3ctYW1hem9uLWNvbS1hdS1r YWxpYXMuYW1hem9uLmNvbS5hdYIrcC15by13d3ctYW1hem9uLWNvbS1hdS1rYWxp YXMuYW1hem9uLmNvbS5hdYIrcC15My13d3ctYW1hem9uLWNvbS1hdS1rYWxpYXMu YW1hem9uLmNvbS5hdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMHcGA1UdHwRwMG4wNaAzoDGGL2h0dHA6Ly9jcmwzLmRpZ2lj ZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbENBRzIuY3JsMDWgM6Axhi9odHRwOi8vY3Js NC5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxDQUcyLmNybDA+BgNVHSAENzA1 MDMGBmeBDAECATApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNv bS9DUFMwdAYIKwYBBQUHAQEEaDBmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5k aWdpY2VydC5jb20wPgYIKwYBBQUHMAKGMmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0 LmNvbS9EaWdpQ2VydEdsb2JhbENBRzIuY3J0MAwGA1UdEwEB/wQCMAAwggF+Bgor BgEEAdZ5AgQCBIIBbgSCAWoBaAB3ACl5vvCeOTkh8FZzn2Old+W+V32cYAr4+U1d JlwlXceEAAABfi/9+QcAAAQDAEgwRgIhALpn+uQad7XNLIHHjHoRFEd4I13Axub8 6xniB5vjJXaxAiEA1mMHI52sU88oqco3mVhXNipx+0CuYp6vx7/leBjwXVcAdgBR o7D1/QF5nFZtuDd4jwykeswbJ8v3nohCmg3+1IsF5QAAAX4v/fl9AAAEAwBHMEUC IFO1OgDHHOFFJDTf5Pbs9fOIg5KOTklyzsba4ukHBBFpAiEAkUp2eBMuenEDUQ5Z voyHjl2O9NTCuK/Eo/5b5BYr7TwAdQBByMqx3yJGShDGoToJQodeTjGLGwPr60vH aPCQYpYG9gAAAX4v/flMAAAEAwBGMEQCIFt3U9pvGzwEqclVg9vPxx7wW+WhKdRO 2KIs53T7Azg6AiBCIuw42adkVj0q5a+K8cR8UfyQMqtoNaXx+mEeBbaRqzANBgkq hkiG9w0BAQsFAAOCAQEAW6zVke1bM7yGlN9cHWjMSPEyVdgqHFyp49twDz2Cm+gT FMABpnc2ieOic5hxyXxYZsCfPMQXowj+8SSBTFs0nZd5yaMos2VO9ApbS1mvvbu3 WC/v1z0wD4Wb+ygIFTRRpxGrm0k0mRU9XSWG4dPy0hiE9UIjZbm48VbzpD7c+ety DDFN9dDx7Mt74W2WSlrJEL4aZr6gDnGcIMPJsCEFVlmB0ezTvhQyn7mkDbxZYAld 4V0cpXeg6mQM4CrEx0bHa0vEUKamV7dGW0+UhkvSZtMiCXgqsiBsyoU1blFcpjqw T/Ay9CsgdjmntE0p3zDLdhkQN9Gx6z3/ow+5faJkTg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiLk2MZWmV78tcpmtAWYG sQaepsoMhYE/yQPz0wRrEg72/prZUJ9obZZUsZzcz3g5JzI2n6X/Y74csJ497Sby t6KF2rSzKHptjjcS7Ty9eEBP9Yo3mV9E7KrbKOvGrvFdVdGV9oEkTehBkijI0dBm CIi0pipNhXlszv6IIc2m45ba8zIil+FBfuuehRZ9vWtxxXdHsZwqpfWQlAZDudIC cSmpitfNv49X7CRTJYLRfHqBol5WZRNtpTFNTTSsC0k5oByZbpW9EZRv8c/dzJTp 1LLgWI5OZH7RFryLrMKp3cK0zvjwQY5wokMLN5D+uJFZUhzGEkkdl6/CFV2vv0Lg kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8573980260091374573530299978155822562 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global CA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.amazon.com.au' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17259740765708728449973012996322319571164117954443855657838206944632651878641530183339664246678394768005553281518867489999879835711221809065413463163683698767858677300509938863528269947451981277784243612250456399542629054931360910786893002882171793214444104765875414515251938871418980833526291752964667695992238291513144199376489597947434437981891715823507268217821004947450572966801555119559867625912736728953681846727181274706829828754571745159325476124785316864252275179523375879139706606197625876247854401716242919293092643654115510746049097287843032210461464971900104916722579946137061463539929877366675844817043 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 246e2b2dd06a925151256901aa9a47a689e74020 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1a97411e84fa154e633bb4226f844856603449ec . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (226 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amazon.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.amazon.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-www.amazon.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.amazon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amazon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'p-nt-www-amazon-com-au-kalias.amazon.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'p-yo-www-amazon-com-au-kalias.amazon.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'p-y3-www-amazon-com-au-kalias.amazon.com.au' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalCAG2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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