toucan.accounts-apac-stg.fsapi.com
Issued by Amazon
About this certificate
This digital certificate with serial number 03:29:b0:93:0b:35:b1:af:11:4b:11:58:b0:5d:46:1c was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=toucan.accounts-apac-stg.fsapi.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:29:b0:93:0b:35:b1:af:11:4b:11:58:b0:5d:46:1cSerial Number (int): 4204149512654055107101573220644242972
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 60:50:65:24:a3:dd:a4:83:1f:bb:f7:c3:b6:1e:21:b9:a8:e2:de:5e
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 83:4d:b7:33:12:a4:fd:7a:7e:58:70:2a:57:5a:66:62:7e:96:44:42
Fingerprint (sha256): 0d:7b:d5:4d:b8:82:f6:cb:26:21:61:d7:ba:9d:c0:b5:60:71:62:0a:29:b8:7b:85:aa:ae:67:b7:6d:6b:24:a4
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate toucan.accounts-apac-stg.fsapi.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for toucan.accounts-apac-stg.fsapi.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
toucan.accounts-apac-stg.fsapi.com
Other certificates including the domain name fsapi.com
(limited to 100 certificates)
relay.stg.withsecure.com
us2.spi.psb.fsapi.com
lorsp.sc2.fsapi.com
*.sensesdk-ci.fsapi.com
lykaal-layer3.mind.pc-ci.fsapi.com
emea.psb-regional-gateway.psb.fsapi.com
psblive.reporting-service.internal.psb-stg.fsapi.com
bigdata-labs.ds.fsapi.com
stable.epp.elements-ci.fsapi.com
toucan.accounts-apac.fsapi.com
helrdomaster02.fi.f-secure.com
portal.radar.elements-stg.withsecure.com
gustvimaster.infra-dev-services.fsapi.com
ew1.doorman.ci.gw.fsapi.com
gustvi.infra-dev-services.fsapi.com
stable.psb-ci.fsapi.com
ew1-psb-ci-latest-ecs-internal.psb-ci.fsapi.com
public.prod.ane1.cosmos-prd.fsapi.com
eu1.psb.fsapi.com
update-karma.pc.fsapi.com
mobile-dl.sp.f-secure.com
*.accounts-emea-ci.fsapi.com
ddr-dev.sensesdk-ci.fsapi.com
accounts-stg.fsapi.com
latest.psb-regional-gateway.psb-ci.fsapi.com
jenkins-staging.fi.f-secure.com
eu1.reporting-service.internal.psb.fsapi.com
helcccpmaster01.fi.f-secure.com
guts2.sp.f-secure.com
jp3.psb.fsapi.com
influxdb-mindcontrol.pc-ci.fsapi.com
ulmaster01.internalsecure.com
famp-ci.fsapi.com
savaja-layer3.mind.pc-ci.fsapi.com
doorman.sp.f-secure.com
restmc.mind.sc2.fsapi.com
client-alb.musttu.guts2-ci.fsapi.com
alb.j4a.infra-dev-services.fsapi.com
api.prd.ew1.doorman.fsapi.com
ddr-dev2.sensesdk-ci.fsapi.com
token.accounts-apac-ci-integration.fsapi.com
obus.sc.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
client.sarkar.guts2-ci.fsapi.com
ntstr.pc.fsapi.com
psbtp.micro-cosmos.internal.psb-stg.fsapi.com
obus.eu-west-1.mind.pc-ci.fsapi.com
hydra.eu-west-1.mind.pc-ci.fsapi.com
ups.ups-prd.fsapi.com
lykaal-layer3.mind.pc-ci.fsapi.com
lorsp-karma.sc2.fsapi.com
eu1.spi.psb.fsapi.com
mind-bin-feature-ex.ap-southeast-1.mind.pc.fsapi.com
public.stable.ew1.cosmos-ci.fsapi.com
dds-dev3.sensesdk-ci.fsapi.com
alb.j4a.services-ci-infra-services.fsapi.com
bump.borgs-ci.fsapi.com
relay.withsecure.com
ddr-dev2.sensesdk-ci.fsapi.com
eu-smi-eu.spi.psb.fsapi.com
sandbox.dev-lehtjo.ci.gw.fsapi.com
dp-antial.ds-ci.fsapi.com
accounts-ci-integration.fsxt.net
sebe-lb-int.eu-west-1.ele.fsapi.com
famp.fsapi.com
staging.pete.ds.fsapi.com
psblive.psb-stg.fsapi.com
redirects.ele.fsapi.com
scanner.cloudprotection.fsapi.com
monitoring.savaja.sc.fsapi.com
ew1a-splunk-indexer.infra-dev-services.fsapi.com
alb.j4a.infra-dev-services.fsapi.com
ws-ci.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
sarkar.guts2-ci.fsapi.com
cpa.ci.ew1.entitlements-ci.fsapi.com
doorman.sp.f-secure.com
ntstr.eu-west-1.mind.pc-stg.fsapi.com
doorman-beta.sp.f-secure.com
salmi-s3-api.eu-west-1.sc-ci.fsapi.com
staging.pete.ds.fsapi.com
toucan.accounts-emea-ci-integration.fsapi.com
infra-auth-proxy.ds-ci.fsapi.com
token.accounts-emea.fsapi.com
ew1b-splunk-indexer.ci-infra-services.fsapi.com
influxdb-mindcontrol-lykaal.pc-ci.fsapi.com
toucan.accounts-apac-stg.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
push-na.fsapi.com
api.int.ci.ew1.entitlements-ci.fsapi.com
accounts-ci-integration.fsxt.net
atlas.ci.fsapi.com
admin.guts2-prd.fsapi.com
psb3.batch-password-protection.internal.psb.fsapi.com
jenkins-elements02.internalsecure.com
emea4.psb.fsapi.com
rexex.kaleeri.fsapi.com
sebe-tp.fsapi.com
stable.psb-ci.fsapi.com
admin.int.ci.ew1.guts2-ci.fsapi.com
us2.spi.psb.fsapi.com
lorsp.sc2.fsapi.com
*.sensesdk-ci.fsapi.com
lykaal-layer3.mind.pc-ci.fsapi.com
emea.psb-regional-gateway.psb.fsapi.com
psblive.reporting-service.internal.psb-stg.fsapi.com
bigdata-labs.ds.fsapi.com
stable.epp.elements-ci.fsapi.com
toucan.accounts-apac.fsapi.com
helrdomaster02.fi.f-secure.com
portal.radar.elements-stg.withsecure.com
gustvimaster.infra-dev-services.fsapi.com
ew1.doorman.ci.gw.fsapi.com
gustvi.infra-dev-services.fsapi.com
stable.psb-ci.fsapi.com
ew1-psb-ci-latest-ecs-internal.psb-ci.fsapi.com
public.prod.ane1.cosmos-prd.fsapi.com
eu1.psb.fsapi.com
update-karma.pc.fsapi.com
mobile-dl.sp.f-secure.com
*.accounts-emea-ci.fsapi.com
ddr-dev.sensesdk-ci.fsapi.com
accounts-stg.fsapi.com
latest.psb-regional-gateway.psb-ci.fsapi.com
jenkins-staging.fi.f-secure.com
eu1.reporting-service.internal.psb.fsapi.com
helcccpmaster01.fi.f-secure.com
guts2.sp.f-secure.com
jp3.psb.fsapi.com
influxdb-mindcontrol.pc-ci.fsapi.com
ulmaster01.internalsecure.com
famp-ci.fsapi.com
savaja-layer3.mind.pc-ci.fsapi.com
doorman.sp.f-secure.com
restmc.mind.sc2.fsapi.com
client-alb.musttu.guts2-ci.fsapi.com
alb.j4a.infra-dev-services.fsapi.com
api.prd.ew1.doorman.fsapi.com
ddr-dev2.sensesdk-ci.fsapi.com
token.accounts-apac-ci-integration.fsapi.com
obus.sc.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
client.sarkar.guts2-ci.fsapi.com
ntstr.pc.fsapi.com
psbtp.micro-cosmos.internal.psb-stg.fsapi.com
obus.eu-west-1.mind.pc-ci.fsapi.com
hydra.eu-west-1.mind.pc-ci.fsapi.com
ups.ups-prd.fsapi.com
lykaal-layer3.mind.pc-ci.fsapi.com
lorsp-karma.sc2.fsapi.com
eu1.spi.psb.fsapi.com
mind-bin-feature-ex.ap-southeast-1.mind.pc.fsapi.com
public.stable.ew1.cosmos-ci.fsapi.com
dds-dev3.sensesdk-ci.fsapi.com
alb.j4a.services-ci-infra-services.fsapi.com
bump.borgs-ci.fsapi.com
relay.withsecure.com
ddr-dev2.sensesdk-ci.fsapi.com
eu-smi-eu.spi.psb.fsapi.com
sandbox.dev-lehtjo.ci.gw.fsapi.com
dp-antial.ds-ci.fsapi.com
accounts-ci-integration.fsxt.net
sebe-lb-int.eu-west-1.ele.fsapi.com
famp.fsapi.com
staging.pete.ds.fsapi.com
psblive.psb-stg.fsapi.com
redirects.ele.fsapi.com
scanner.cloudprotection.fsapi.com
monitoring.savaja.sc.fsapi.com
ew1a-splunk-indexer.infra-dev-services.fsapi.com
alb.j4a.infra-dev-services.fsapi.com
ws-ci.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
sarkar.guts2-ci.fsapi.com
cpa.ci.ew1.entitlements-ci.fsapi.com
doorman.sp.f-secure.com
ntstr.eu-west-1.mind.pc-stg.fsapi.com
doorman-beta.sp.f-secure.com
salmi-s3-api.eu-west-1.sc-ci.fsapi.com
staging.pete.ds.fsapi.com
toucan.accounts-emea-ci-integration.fsapi.com
infra-auth-proxy.ds-ci.fsapi.com
token.accounts-emea.fsapi.com
ew1b-splunk-indexer.ci-infra-services.fsapi.com
influxdb-mindcontrol-lykaal.pc-ci.fsapi.com
toucan.accounts-apac-stg.fsapi.com
api.unstable.ew1.mes-ci.fsapi.com
push-na.fsapi.com
api.int.ci.ew1.entitlements-ci.fsapi.com
accounts-ci-integration.fsxt.net
atlas.ci.fsapi.com
admin.guts2-prd.fsapi.com
psb3.batch-password-protection.internal.psb.fsapi.com
jenkins-elements02.internalsecure.com
emea4.psb.fsapi.com
rexex.kaleeri.fsapi.com
sebe-tp.fsapi.com
stable.psb-ci.fsapi.com
admin.int.ci.ew1.guts2-ci.fsapi.com
Certificate
The complete raw certificate details for toucan.accounts-apac-stg.fsapi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEmjCCA4KgAwIBAgIQAymwkws1sa8RSxFYsF1GHDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xODA5MjQwMDAwMDBaFw0xOTEwMjQx MjAwMDBaMC0xKzApBgNVBAMTInRvdWNhbi5hY2NvdW50cy1hcGFjLXN0Zy5mc2Fw aS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs6rlK7j5wQXBZ b8DmC8LJkuoAUztpZU9ou6blsX++haJsYZQ7AdEHfrO6zfb8uAFUfmK9cvZXqV3H bGIDIs/4t9OP2E7Ll8t/DB1SRfHRCklNXqhMf4esr2MErnr77L06heNw/WR8jArE vao8P20ZZxF4PfYp6JoAAzg9G1w30DrUxe3Hx72LrVmL8SszuOtm7A/fTrTKD4RE 1H95dHJJRnPtFkJWEFQJEMNPopGgu49JeygC6e+qpdslEyRQT+csiR1VXuK8SjiO 1JaZgUPalBxJjhRNeLWyZ5q3n/v7Zn2YyyFh5cYd6cmjMQ0ETxc5BX1FsvhPb0a9 Is/WSmhFAgMBAAGjggGbMIIBlzAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0 W/k90DAdBgNVHQ4EFgQUYFBlJKPdpIMfu/fDth4huaji3l4wLQYDVR0RBCYwJIIi dG91Y2FuLmFjY291bnRzLWFwYWMtc3RnLmZzYXBpLmNvbTAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAu oCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDAg BgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBn MC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20w NgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3Nj YTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqG SIb3DQEBCwUAA4IBAQBux/xmzANy2urqmA+WaJ0NkUOATFB+SM9/6N8n8YCllrzx S1Ln/2RRpAORwxUK2FmRr1apeZ/vTTYl4eriHr/rmRdC/0TtZ4yQuztWTpRImmCj Vc6ObTbmLf8ODm6UjItTbnO8uOaqHW2OanyoEbgF2P2afGTWoQkt8yD1qUwm8G5W gI94xVgLkM2UiI8k1VXM59hc6y7w1mXQQmuMCB/1jcAtBqdk8jXqNchJc5ev5TAM tKduluNybMkndofVSfl7vigrBFIBLJBKgz+aFE58L+88MZIV8SCulPQsZwnhWkuX KDK5wUmTtGqmSOAuoxQK3F3GhYb6vsc4nBTM1nfW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOq5Su4+cEFwWW/A5gvC yZLqAFM7aWVPaLum5bF/voWibGGUOwHRB36zus32/LgBVH5ivXL2V6ldx2xiAyLP +LfTj9hOy5fLfwwdUkXx0QpJTV6oTH+HrK9jBK56++y9OoXjcP1kfIwKxL2qPD9t GWcReD32KeiaAAM4PRtcN9A61MXtx8e9i61Zi/ErM7jrZuwP3060yg+ERNR/eXRy SUZz7RZCVhBUCRDDT6KRoLuPSXsoAunvqqXbJRMkUE/nLIkdVV7ivEo4jtSWmYFD 2pQcSY4UTXi1smeat5/7+2Z9mMshYeXGHenJozENBE8XOQV9RbL4T29GvSLP1kpo RQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4204149512654055107101573220644242972 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-24 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'toucan.accounts-apac-stg.fsapi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21828735073680841119502508976310387897546073009034565481133893962888184704177517622882061344815018040115750851261322113635027564565913530076175006770816902578748924967288235575487154461188609029679622614655213701391467031412864159754425377306840419089178748054508756431378220655058007105332262479648491232912093609775859041010453056829227096405308414360417674338256654571735931719831324226126202973472339514268316000618935986617777569470703273637337143043750303775043004235908245223382152744041111405352349596001163748303860596045498938861335193198838552577256012825181826589130240457352223167889848686676412629411909 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 60506524a3dda4831fbbf7c3b61e21b9a8e2de5e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'toucan.accounts-apac-stg.fsapi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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