*.web-marketing.getpocket.dev
Issued by Amazon
About this certificate
This digital certificate with serial number 04:14:e1:16:ad:c5:d7:2c:66:52:fb:d6:49:54:bf:f6 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.web-marketing.getpocket.dev
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:14:e1:16:ad:c5:d7:2c:66:52:fb:d6:49:54:bf:f6Serial Number (int): 5425323259270838197227220848688283638
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 83:6d:5a:1f:54:f4:c6:38:14:f6:0e:44:69:1a:36:8d:83:ef:93:9e
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): fa:6c:0c:2c:e2:6c:27:71:57:6f:98:5b:1f:5a:32:1d:40:60:76:9a
Fingerprint (sha256): 11:64:e3:d7:8f:a2:49:f2:c4:4c:43:ef:92:17:ff:89:b9:4b:cb:78:09:c8:e1:41:54:8f:97:b0:29:1f:a8:fd
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.web-marketing.getpocket.dev
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.web-marketing.getpocket.dev
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.web-marketing.getpocket.dev
Other certificates including the domain name getpocket.dev
(limited to 100 certificates)
firefox-newtab-proxy.getpocket.dev
blog-staging.getpocket.dev
acme.getpocket.dev
web-client.getpocket.dev
acme.getpocket.dev
mozilla-auth-proxy.getpocket.dev
cdktf-backup.getpocket.dev
blog.getpocket.dev
*.admin.getpocket.dev
dotcom-gateway-dev.getpocket.dev
dotcom-gateway-dev.getpocket.dev
collection-api.getpocket.dev
team.getpocket.dev
*.webapp.getpocket.dev
new-tab-assets.getpocket.dev
*.webapp.getpocket.dev
*.mlflow-private.getpocket.dev
apigtest.getpocket.dev
*.webapp.getpocket.dev
admin.getpocket.dev
*.web-marketing.getpocket.dev
web-discover.getpocket.dev
recommendation-api.getpocket.dev
backstage.getpocket.dev
direct.daniel-client-api.getpocket.dev
cdktf-unleash.getpocket.dev
auth.getpocket.dev
recommendation-api.getpocket.dev
blog-staging.getpocket.dev
team.getpocket.dev
*.mlflow-dev1.getpocket.dev
admin.getpocket.dev
blog.getpocket.dev
spocs.getpocket.dev
cdktf.getpocket.dev
*.getpocket.dev
text.getpocket.dev
direct.client-api.getpocket.dev
cdktf-backup.getpocket.dev
direct.client-api.getpocket.dev
auth.getpocket.dev
web-marketing.getpocket.dev
client-api.getpocket.dev
acme.getpocket.dev
blog.getpocket.dev
*.feature.getpocket.dev
acme.getpocket.dev
*.web-discover.getpocket.dev
apig-test.getpocket.dev
recit.getpocket.dev
collection-api.getpocket.dev
backstage.getpocket.dev
blog.getpocket.dev
blog-staging.getpocket.dev
cdktf.getpocket.dev
cdktf.getpocket.dev
*.web-client.getpocket.dev
web-client.getpocket.dev
mozilla-auth-proxy.getpocket.dev
image-api.getpocket.dev
curation-admin-tools.getpocket.dev
*.web-discover.getpocket.dev
client-api.getpocket.dev
acme.getpocket.dev
exampleapi.getpocket.dev
web-discover.getpocket.dev
list-api.getpocket.dev
cdktf-unleash.getpocket.dev
recit.getpocket.dev
blog.getpocket.dev
direct.client-api.getpocket.dev
acme.getpocket.dev
*.feature.getpocket.dev
*.mlflow-private.getpocket.dev
*.admin.getpocket.dev
team.getpocket.dev
acme.getpocket.dev
user-list-search.getpocket.dev
exampleapi.getpocket.dev
acme.getpocket.dev
user-list-search.getpocket.dev
blog.getpocket.dev
acme-good.getpocket.dev
acme.getpocket.dev
text.getpocket.dev
blog.getpocket.dev
web-ui.getpocket.dev
apig-test.getpocket.dev
admin-api.getpocket.dev
companion-proxy.getpocket.dev
blog-staging.getpocket.dev
recit.getpocket.dev
recit.getpocket.dev
*.feature.getpocket.dev
mozilla-auth-proxy.getpocket.dev
firefox-android-home-recommendations.getpocket.dev
*.web-client.getpocket.dev
recit.getpocket.dev
blog.getpocket.dev
direct.firefox-android-home-recommendations.getpocket.dev
blog-staging.getpocket.dev
acme.getpocket.dev
web-client.getpocket.dev
acme.getpocket.dev
mozilla-auth-proxy.getpocket.dev
cdktf-backup.getpocket.dev
blog.getpocket.dev
*.admin.getpocket.dev
dotcom-gateway-dev.getpocket.dev
dotcom-gateway-dev.getpocket.dev
collection-api.getpocket.dev
team.getpocket.dev
*.webapp.getpocket.dev
new-tab-assets.getpocket.dev
*.webapp.getpocket.dev
*.mlflow-private.getpocket.dev
apigtest.getpocket.dev
*.webapp.getpocket.dev
admin.getpocket.dev
*.web-marketing.getpocket.dev
web-discover.getpocket.dev
recommendation-api.getpocket.dev
backstage.getpocket.dev
direct.daniel-client-api.getpocket.dev
cdktf-unleash.getpocket.dev
auth.getpocket.dev
recommendation-api.getpocket.dev
blog-staging.getpocket.dev
team.getpocket.dev
*.mlflow-dev1.getpocket.dev
admin.getpocket.dev
blog.getpocket.dev
spocs.getpocket.dev
cdktf.getpocket.dev
*.getpocket.dev
text.getpocket.dev
direct.client-api.getpocket.dev
cdktf-backup.getpocket.dev
direct.client-api.getpocket.dev
auth.getpocket.dev
web-marketing.getpocket.dev
client-api.getpocket.dev
acme.getpocket.dev
blog.getpocket.dev
*.feature.getpocket.dev
acme.getpocket.dev
*.web-discover.getpocket.dev
apig-test.getpocket.dev
recit.getpocket.dev
collection-api.getpocket.dev
backstage.getpocket.dev
blog.getpocket.dev
blog-staging.getpocket.dev
cdktf.getpocket.dev
cdktf.getpocket.dev
*.web-client.getpocket.dev
web-client.getpocket.dev
mozilla-auth-proxy.getpocket.dev
image-api.getpocket.dev
curation-admin-tools.getpocket.dev
*.web-discover.getpocket.dev
client-api.getpocket.dev
acme.getpocket.dev
exampleapi.getpocket.dev
web-discover.getpocket.dev
list-api.getpocket.dev
cdktf-unleash.getpocket.dev
recit.getpocket.dev
blog.getpocket.dev
direct.client-api.getpocket.dev
acme.getpocket.dev
*.feature.getpocket.dev
*.mlflow-private.getpocket.dev
*.admin.getpocket.dev
team.getpocket.dev
acme.getpocket.dev
user-list-search.getpocket.dev
exampleapi.getpocket.dev
acme.getpocket.dev
user-list-search.getpocket.dev
blog.getpocket.dev
acme-good.getpocket.dev
acme.getpocket.dev
text.getpocket.dev
blog.getpocket.dev
web-ui.getpocket.dev
apig-test.getpocket.dev
admin-api.getpocket.dev
companion-proxy.getpocket.dev
blog-staging.getpocket.dev
recit.getpocket.dev
recit.getpocket.dev
*.feature.getpocket.dev
mozilla-auth-proxy.getpocket.dev
firefox-android-home-recommendations.getpocket.dev
*.web-client.getpocket.dev
recit.getpocket.dev
blog.getpocket.dev
direct.firefox-android-home-recommendations.getpocket.dev
Certificate
The complete raw certificate details for *.web-marketing.getpocket.dev in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8DCCBNigAwIBAgIQBBThFq3F1yxmUvvWSVS/9jANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMTA5MTUwMDAwMDBaFw0yMjEwMTQy MzU5NTlaMCgxJjAkBgNVBAMMHSoud2ViLW1hcmtldGluZy5nZXRwb2NrZXQuZGV2 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAF4CWnJD6p1PKog87+j 3It6drUDIVD7xD1KYwLfDFKv/FrHn5kCQiRERfivFRq6OwZcODW/fEV4lYnsWPWr mhykWhL3n0SCT+HAw9fyEESkyywk7EwSCIE44ZEOs8lJ676OdCLK7vrVP2O2mZyK NEaKEIis7q8uxqtLUeSrEbT5EGaaYfRww9fSINYEh5OzACI4HREdGKQzZELWR2ki fx6g1lMIymqyFRjlaYGB3BfWCJyzMbFHBvqHNnXFGufx/iPMhrYusUX1kKAGRzo9 diVUexYvOWFGBo0rdNA2ykVqgEmAamcv9XttK+/aJFdfUhP5e4UIjL858gQqGi1T DwIDAQABo4IC9jCCAvIwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAw HQYDVR0OBBYEFINtWh9U9MY4FPYORGkaNo2D75OeMCgGA1UdEQQhMB+CHSoud2Vi LW1hcmtldGluZy5nZXRwb2NrZXQuZGV2MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDov L2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3JsMBMGA1UdIAQMMAow CAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29j c3Auc2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0 LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADCC AX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYAKXm+8J45OSHwVnOfY6V35b5XfZxg Cvj5TV0mXCVdx4QAAAF76AgR1wAABAMARzBFAiBMmOQihi5izMI2fgUOSOV09aQL ab1e1tck2q9s58tA0QIhAPEarQcr38F5Biu0Nmg6/wJOHUX9gKdqacxwcoVbFNhr AHYAUaOw9f0BeZxWbbg3eI8MpHrMGyfL956IQpoN/tSLBeUAAAF76AgR4wAABAMA RzBFAiAtFJq3WpUkdNPfYh/60attZASEwDDVDzlWiX8dgkvUuwIhALbDYL3SZlSY 3MnMkOLE8ThD1y4YcGk2nxmC5RaCdxABAHYA36Veq2iCTx9sre64X04+WurNohKk al6OOxLAIERcKnMAAAF76AgRugAABAMARzBFAiANofl75HIKOnC0QXpMneMAWHHm rT5GP4Uzzfse1w9e+AIhAJn/gN/I6BmgvSzN6Ss5uW7XwPHZTXDI3m9YERkXh+H2 MA0GCSqGSIb3DQEBCwUAA4IBAQCrVz7Woec2Rpdn6TjRyO0z9I+ckwXYBklef7j7 AN+sTxc7C2s2J3RpWgGFfP7bIvqhhwz2UOJeL2Jl5n6ud/8SlJeZN6V5UQqTXBkx t/MbCIG24Sb6iw8EUUjHcUKN2dKcrsuvIfvDWmY2Thks8JagN7x+mqax0ShYcmdO hUFlMvVtuLG6C5y//hFsQzbrjIdvDcMPLlCxmeev8YwJh5ud15IP2EowC7tGPJvt /9mHu/keJ6AAJ2EhgOOFh+g+ez1X18FgwbS4NSgdw4TeJqIuC/xzPaSUiP8RDAid w0ivwHoijHbDxKVsKOzyeuvSXHStd/8BQImy2JjpEyOrcq1M -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAF4CWnJD6p1PKog87+j 3It6drUDIVD7xD1KYwLfDFKv/FrHn5kCQiRERfivFRq6OwZcODW/fEV4lYnsWPWr mhykWhL3n0SCT+HAw9fyEESkyywk7EwSCIE44ZEOs8lJ676OdCLK7vrVP2O2mZyK NEaKEIis7q8uxqtLUeSrEbT5EGaaYfRww9fSINYEh5OzACI4HREdGKQzZELWR2ki fx6g1lMIymqyFRjlaYGB3BfWCJyzMbFHBvqHNnXFGufx/iPMhrYusUX1kKAGRzo9 diVUexYvOWFGBo0rdNA2ykVqgEmAamcv9XttK+/aJFdfUhP5e4UIjL858gQqGi1T DwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5425323259270838197227220848688283638 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.web-marketing.getpocket.dev' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21208759572745436046527497757063851439961033712094826078620316740213458750391507649226513132618572468589807340560649920475197605749348485734073992986314655940631132732392423823831983906721361173652614892091257659380686164302148506804058674670795448103331099733815485930269197400240040219084788945497336502978257225823748776321605473048140076823190190023517429802321946454792558087109474562502505245016157061716445367355717456078733699392247195032402337388295910983114387609589540406983747728573963088720645180759956705857651275608962984430588884512814866952369999863780323238126307253547547546431819812159460429615887 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 836d5a1f54f4c63814f60e44691a368d83ef939e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.web-marketing.getpocket.dev' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 01680076002979bef09e393921f056739f63a577e5be577d9c600af8f94d5d265c255dc7840000017be80811d7000004030047304502204c98e422862e62ccc2367e050e48e574f5a40b69bd5ed6d724daaf6ce7cb40d1022100f11aad072bdfc179062bb436683aff024e1d45fd80a76a69cc7072855b14d86b00760051a3b0f5fd01799c566db837788f0ca47acc1b27cbf79e88429a0dfed48b05e50000017be80811e3000004030047304502202d149ab75a952474d3df621ffad1ab6d640484c030d50f3956897f1d824bd4bb022100b6c360bdd2665498dcc9cc90e2c4f13843d72e187069369f1982e51682771001007600dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a730000017be80811ba000004030047304502200da1f97be4720a3a70b4417a4c9de3005871e6ad3e463f8533cdfb1ed70f5ef802210099ff80dfc8e819a0bd2ccde92b39b96ed7c0f1d94d70c8de6f5811191787e1f6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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