dallasnews.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:74:69:e9:71:2c:9f:d9:9f:25:51:63:b3:12:3b:b7 was issued on by Amazon.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=dallasnews.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:74:69:e9:71:2c:9f:d9:9f:25:51:63:b3:12:3b:b7Serial Number (int): 19213646524774865191104948408205589431
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 6d:9d:65:60:ed:3a:5e:9b:03:20:9d:45:84:1c:20:5c:04:c9:b2:f7
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): eb:3d:3f:97:a9:2b:56:22:56:fe:a9:c5:b7:b3:67:9b:4b:c6:77:68
Fingerprint (sha256): 0e:6d:71:31:5c:3c:b2:6e:06:6c:93:c3:65:51:8b:e5:c8:43:e6:a0:f8:2f:55:8b:bc:ce:fd:87:9c:5a:9d:44
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate dallasnews.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dallasnews.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dallasnews.com
*.dallasnews.com
guidelive.com
*.guidelive.com
sportsdaydfw.com
www.sportsdaydfw.com
*.dallasnews.com
guidelive.com
*.guidelive.com
sportsdaydfw.com
www.sportsdaydfw.com
Other certificates including the domain name dallasnews.com
(limited to 100 certificates)
serif.dallasnews.com
realestate.dallasnews.com
hiring.wandtv.com
www.pagesuite.com
kalamazooshopping.mlive.com
*.rpxnow.com
twp.denverpost.com
www.pagesuite.com
*.int.dallasnews.com
dallasnews.com
www.dallasnews.com
www.pagesuite.com
interactives.dallasnews.com
dmn.cdn.arcpublishing.com
customer.localedge.com
local.yourdailyjournal.com
local.thefirsthundredmiles.com
reg.dallasnews.com
local.dallasnews.com
socialize.dallasnews.com
regstage.dallasnews.com
twp.denverpost.com
obits.dallasnews.com
placeads.dallasnews.com
twp.denverpost.com
hiring.wandtv.com
epaperbeta.dallasnews.com
dmn.cdn.arcpublishing.com
twp.denverpost.com
creditapplication.dallasnews.com
dallasnews.com
customer.localedge.com
cdn.arkadiumhosted.com
twp.denverpost.com
twp.denverpost.com
mylocal.palmbeachpost.com
twp.denverpost.com
hilsninger.innocode.no
local.dallasnews.com
hiring.wandtv.com
www.pagesuite.com
www.pagesuite.com
twp.denverpost.com
twp.denverpost.com
local.wahpetondailynews.com
cdn.arkadiumhosted.com
twp.denverpost.com
twp.denverpost.com
hiring.wandtv.com
www.pagesuite.com
cdn.arkadiumhosted.com
interactives.dallasnews.com
twp.denverpost.com
payjoin.dallasnews.com
twp.denverpost.com
voterguide.dallasnews.com
twp.denverpost.com
www.dallasnews.com
customer.localedge.com
link.dallasnews.com
placeads.dallasnews.com
twp.denverpost.com
realestate.dallasnews.com
*.rpxnow.com
www.pagesuite.com
hiring.wandtv.com
dev.dallasnews.com
creditapplication.dallasnews.com
markham.yorkregion.com
*.dallasnews.com
cdn.arkadiumhosted.com
dmn.cdn.arcpublishing.com
arlingtonmoments.dallasnews.com
customer.localedge.com
www.pagesuite.com
twp.denverpost.com
projects.dallasnews.com
twp.denverpost.com
hiring.wandtv.com
arlingtonmoments.dallasnews.com
hiring.wandtv.com
www.dallasnews.com
interactives.dallasnews.com
sresstage.dallasnews.com
planocommunity.dallasnews.com
www.pagesuite.com
hiring.wandtv.com
twp.denverpost.com
apps.dallasnews.com
hiring.wandtv.com
regstage.dallasnews.com
twp.denverpost.com
sapi.dallasnews.com
www.pagesuite.com
twp.denverpost.com
realestate.dallasnews.com
local.northjersey.com
hiring.wandtv.com
cdn.arkadiumhosted.com
*.dallasnews.com
realestate.dallasnews.com
hiring.wandtv.com
www.pagesuite.com
kalamazooshopping.mlive.com
*.rpxnow.com
twp.denverpost.com
www.pagesuite.com
*.int.dallasnews.com
dallasnews.com
www.dallasnews.com
www.pagesuite.com
interactives.dallasnews.com
dmn.cdn.arcpublishing.com
customer.localedge.com
local.yourdailyjournal.com
local.thefirsthundredmiles.com
reg.dallasnews.com
local.dallasnews.com
socialize.dallasnews.com
regstage.dallasnews.com
twp.denverpost.com
obits.dallasnews.com
placeads.dallasnews.com
twp.denverpost.com
hiring.wandtv.com
epaperbeta.dallasnews.com
dmn.cdn.arcpublishing.com
twp.denverpost.com
creditapplication.dallasnews.com
dallasnews.com
customer.localedge.com
cdn.arkadiumhosted.com
twp.denverpost.com
twp.denverpost.com
mylocal.palmbeachpost.com
twp.denverpost.com
hilsninger.innocode.no
local.dallasnews.com
hiring.wandtv.com
www.pagesuite.com
www.pagesuite.com
twp.denverpost.com
twp.denverpost.com
local.wahpetondailynews.com
cdn.arkadiumhosted.com
twp.denverpost.com
twp.denverpost.com
hiring.wandtv.com
www.pagesuite.com
cdn.arkadiumhosted.com
interactives.dallasnews.com
twp.denverpost.com
payjoin.dallasnews.com
twp.denverpost.com
voterguide.dallasnews.com
twp.denverpost.com
www.dallasnews.com
customer.localedge.com
link.dallasnews.com
placeads.dallasnews.com
twp.denverpost.com
realestate.dallasnews.com
*.rpxnow.com
www.pagesuite.com
hiring.wandtv.com
dev.dallasnews.com
creditapplication.dallasnews.com
markham.yorkregion.com
*.dallasnews.com
cdn.arkadiumhosted.com
dmn.cdn.arcpublishing.com
arlingtonmoments.dallasnews.com
customer.localedge.com
www.pagesuite.com
twp.denverpost.com
projects.dallasnews.com
twp.denverpost.com
hiring.wandtv.com
arlingtonmoments.dallasnews.com
hiring.wandtv.com
www.dallasnews.com
interactives.dallasnews.com
sresstage.dallasnews.com
planocommunity.dallasnews.com
www.pagesuite.com
hiring.wandtv.com
twp.denverpost.com
apps.dallasnews.com
hiring.wandtv.com
regstage.dallasnews.com
twp.denverpost.com
sapi.dallasnews.com
www.pagesuite.com
twp.denverpost.com
realestate.dallasnews.com
local.northjersey.com
hiring.wandtv.com
cdn.arkadiumhosted.com
*.dallasnews.com
Certificate
The complete raw certificate details for dallasnews.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgIQDnRp6XEsn9mfJVFjsxI7tzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA3MTMwMDAwMDBaFw0yMDA4MTMx MjAwMDBaMBkxFzAVBgNVBAMTDmRhbGxhc25ld3MuY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAwqYvcZTvoz5SV5n0oyXcEBcdVu0RctO+DBL1cBZk RgcQ42UzL3XWJxwt2UDBzqpbNw6lq1Z5FNshcoS/4s68GToYkyl5oeqoEFFMCmGL AGjz7F20D8euJ9tUUZROb9RGtEbivtZh0ol1YQ45JyKJsdgHlD6TOobb/8RIR7l7 wJrxvqABua1kgoRpaeP2HsKK5csinp2Reb/1iqy8B8MvLvntvMtqY7DhnjoeCgwX 7Bkd6vpMDM3KKjIw+v4FB7aQe4YWj6i8tQz54l+hvDgtMzBIpjKvg5qJuXOooWzY +JwNSQ8Z1rTaWCc0n+v7RLTjz5XhB5zqKiuaK5PPT4TEuwIDAQABo4IB4TCCAd0w HwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFG2dZWDt Ol6bAyCdRYQcIFwEybL3MHMGA1UdEQRsMGqCDmRhbGxhc25ld3MuY29tghAqLmRh bGxhc25ld3MuY29tgg1ndWlkZWxpdmUuY29tgg8qLmd1aWRlbGl2ZS5jb22CEHNw b3J0c2RheWRmdy5jb22CFHd3dy5zcG9ydHNkYXlkZncuY29tMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAw oC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3Js MCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcBAQRp MGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNv bTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20v c2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJ KoZIhvcNAQELBQADggEBAHWQ4CMrTKe4eiM4wXewz5jz/tFmE/lW/f9WwuA+xBOA NeDWC339k4QCOKHcN92C6qnnAXtX83oku7dMte2CYW6lvsAs8CQz4eA2HoPV2Xre fbWkBhCOJXHCvJe63seSQXd0An8Vwm1RXd7LZ3vYIbU6r/2XouOZ8c/HGCD6wrKS SiW4AjNdQGv0zPb6AXmeY46Qdyy0RrMQN1W18pH5/QnG4fhKOkzmZg4pfa+MwZZw uTByEJH6fWRlQYB2eDsk9XNFFoocz/z6LRsTx6PuepIH3L2NxGWIy7N15lW6aPrt RE8QN7U2kPvv3Clm0ENF33QB77jZYI9GM0u+K8BgrQ4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwqYvcZTvoz5SV5n0oyXc EBcdVu0RctO+DBL1cBZkRgcQ42UzL3XWJxwt2UDBzqpbNw6lq1Z5FNshcoS/4s68 GToYkyl5oeqoEFFMCmGLAGjz7F20D8euJ9tUUZROb9RGtEbivtZh0ol1YQ45JyKJ sdgHlD6TOobb/8RIR7l7wJrxvqABua1kgoRpaeP2HsKK5csinp2Reb/1iqy8B8Mv LvntvMtqY7DhnjoeCgwX7Bkd6vpMDM3KKjIw+v4FB7aQe4YWj6i8tQz54l+hvDgt MzBIpjKvg5qJuXOooWzY+JwNSQ8Z1rTaWCc0n+v7RLTjz5XhB5zqKiuaK5PPT4TE uwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19213646524774865191104948408205589431 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dallasnews.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24572180202377699124548049558342525311339330225778049548783961782170689572400788051932563705368319208758509029010615409350338422185312247446064027851600215722490165340818432670390492954620039801437080414935414223856926111305370337140732482636661417959032640002130163270727608275546061049252420425039437437351133215197128652074653696585904165384149803424002401939590932563497713057715521890826111658573034051017111619790793357035119279543041099078159497066987807345891208384105488785731282605438272695123073317104548417310322198346799885000299951166025900334834620285740193160518045849816905577011260311855903346574523 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6d9d6560ed3a5e9b03209d45841c205c04c9b2f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dallasnews.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dallasnews.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guidelive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.guidelive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sportsdaydfw.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sportsdaydfw.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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