SPO-BF-MS-AAD.svc.ms
- Microsoft Deutschland MCIO GmbH -
Issued by D-TRUST SSL Class 3 CA 1 2009
About this certificate
This digital certificate with serial number 19:12:2f:62:83:98:ed:b6:ac:2b:06:c4:d8:ce:92:b8 was issued on by D-Trust GmbH.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Microsoft Deutschland MCIO GmbH
Company registration number:
CSM018039636
Organization: Microsoft Deutschland MCIO GmbH
Organization unit: Office
Organization: Microsoft Deutschland MCIO GmbH
Organization unit: Office
State / Province:
Bayern
Locality: Muenchen
Country: DE
Locality: Muenchen
Country: DE
D-Trust GmbH
Organization:
D-Trust GmbH
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 19:12:2f:62:83:98:ed:b6:ac:2b:06:c4:d8:ce:92:b8Serial Number (int): 33325122316415237328071241328650785464
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 9a:7a:f8:f4:91:e8:ed:c1:2d:fd:6c:f6:35:c3:a8:94:fe:81:cc:f7
AuthorityKeyId: 50:19:32:94:9a:c4:b5:04:4d:56:d0:c0:83:21:d5:35:55:b0:b1:7a
Fingerprint (sha1): cf:9a:c2:94:4a:a6:07:c8:75:f6:8c:cd:75:80:5f:2c:45:9c:89:78
Fingerprint (sha256): 11:8f:b4:c5:37:8b:76:9a:69:ca:e9:e2:f8:50:d7:a0:06:13:f5:da:0b:1c:86:e1:e5:23:e8:4a:e0:ef:9e:48
Issuing Certificate URL: http://www.d-trust.net/cgi-bin/D-TRUST_SSL_Class_3_CA_1_2009.crt
Issuing Certificate URL: ldap://directory.d-trust.net/CN=D-TRUST%20SSL%20Class%203%20CA%201%202009,O=D-Trust%20GmbH,C=DE?cACertificate?base?
Revocation information
OCSP Server: http://ssl-c3-ca1-2009.ocsp.d-trust.netCRL Distribution Point: ldap://directory.d-trust.net/CN=D-TRUST%20SSL%20Class%203%20CA%201%202009,O=D-Trust%20GmbH,C=DE?certificaterevocationlist
CRL Distribution Point: http://crl.d-trust.net/crl/d-trust_ssl_class_3_ca_1_2009.der.crl
CRL Distribution Point: http://cdn.d-trust-cloudcrl.net/crl/d-trust_ssl_class_3_ca_1_2009.crl
Check the revocation status for certificate SPO-BF-MS-AAD.svc.ms
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for SPO-BF-MS-AAD.svc.ms
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
SPO-BF-MS-AAD.svc.ms
Other certificates including the domain name svc.ms
(limited to 100 certificates)
*.notifyd.svc.ms
servicefabric.pushns.svc.ms
*.badgers.svc.ms
*.mediap.svc.ms
*.hwp.svc.ms
SPO-BF-MS-AAD.svc.ms
*.pushng.svc.ms
*.hwp.svc.ms
usdodeast0-notifyg.svc.ms
sdesti.prod.servicecerts.svc.ms
*.mediap.svc.ms
*.pushb.svc.ms
*.hwp.svc.ms
usdodeast0-notifyg.svc.ms
*.pushfp.svc.ms
gcc-notify-sphomep.svc.ms
gcc-managementcert-sphomep.svc.ms
*.pushnp.svc.ms
*.badgerp.svc.ms
usdodeast0-mediag.svc.ms
usgovvirginia0-notifyg.svc.ms
*.badgerb.svc.ms
*.hwp.svc.ms
test.test.usgovvirginia0-mediap.svc.ms
*.pushng.svc.ms
sti.sphomep.svc.ms
*.pushnb.svc.ms
cma.pushs.svc.ms
SPO-DOD-AS-STI.notifyp.svc.ms
servicefabric.pushng.svc.ms
*.pushng.svc.ms
sdeazureauth.prod.servicecerts.svc.ms
api.tpst.svc.ms
*.badgerg.svc.ms
onedrive.com
usgovvirginia0-notifyg.svc.ms
servicefabric.pushfb.svc.ms
usgovvirginia0-notifyp.svc.ms
usgovvirginia0-notifyg.svc.ms
*.kmgcc.svc.ms
servicefabric.pushfp.svc.ms
*.pushfb.svc.ms
*.svc.ms
api.tpsprod.svc.ms
svc.ms
servicefabric.pushfp.svc.ms
*.pushfd.svc.ms
germanynortheast0-notifyp.svc.ms
germanynortheast0-notifyp.svc.ms
*.notifyp.svc.ms
*.badgerp.svc.ms
servicefabric.pushnb.svc.ms
servicefabric.pushfb.svc.ms
servicefabric.photostreamt.svc.ms
*.pushnp.svc.ms
*.badgers.svc.ms
*.pushnp.svc.ms
api.tpsedog.svc.ms
usgovvirginia0-notifyg.svc.ms
*.connectort.svc.ms
sdesti.prod.servicecerts.svc.ms
api.tpsprod.svc.ms
*.hwp.svc.ms
*.badgerb.svc.ms
spo-completenessprod-cma.servicecerts.svc.ms
sdegenevacert.prod.servicecerts.svc.ms
*.mediad.svc.ms
servicefabric.photostreamd.svc.ms
servicefabric.pushnb.svc.ms
SPO-PF-MS-MC-mediag.svc.ms
spo-completenessedog-cma.servicecerts.svc.ms
*.pushfb.svc.ms
*.badgerg.svc.ms
*.completenesss.svc.ms
SPO-BF-MS-AAD.svc.ms
gcc-sti-sphomep.svc.ms
SPO-BF-AS-CMA.svc.ms
usgovvirginia0-notifyg.svc.ms
managementcert.sphomep.svc.ms
onedrive.com
sti.sphomed.svc.ms
*.badgerb.svc.ms
gcc-griffinruntime-sphomep.svc.ms
spo-sscprod.cma.servicecerts.svc.ms
servicefabric.pushns.svc.ms
SPO-TB-STI-notifyg.svc.ms
usgovvirginia0-mediap.svc.ms
*.connectorp.svc.ms
*.pushng.svc.ms
usdodeast0-notifyg.svc.ms
api.tpsedog.svc.ms
spo-sscprod.cma.servicecerts.svc.ms
*.photostreamd.svc.ms
*.connectorp.svc.ms
api.tpsspdf.svc.ms
servicefabric.pushnb.svc.ms
kbstate.sphomeg.svc.ms
*.pushng.svc.ms
kbstate.sphomep.svc.ms
odspsscsiphonedog.servicecerts.svc.ms
servicefabric.pushns.svc.ms
*.badgers.svc.ms
*.mediap.svc.ms
*.hwp.svc.ms
SPO-BF-MS-AAD.svc.ms
*.pushng.svc.ms
*.hwp.svc.ms
usdodeast0-notifyg.svc.ms
sdesti.prod.servicecerts.svc.ms
*.mediap.svc.ms
*.pushb.svc.ms
*.hwp.svc.ms
usdodeast0-notifyg.svc.ms
*.pushfp.svc.ms
gcc-notify-sphomep.svc.ms
gcc-managementcert-sphomep.svc.ms
*.pushnp.svc.ms
*.badgerp.svc.ms
usdodeast0-mediag.svc.ms
usgovvirginia0-notifyg.svc.ms
*.badgerb.svc.ms
*.hwp.svc.ms
test.test.usgovvirginia0-mediap.svc.ms
*.pushng.svc.ms
sti.sphomep.svc.ms
*.pushnb.svc.ms
cma.pushs.svc.ms
SPO-DOD-AS-STI.notifyp.svc.ms
servicefabric.pushng.svc.ms
*.pushng.svc.ms
sdeazureauth.prod.servicecerts.svc.ms
api.tpst.svc.ms
*.badgerg.svc.ms
onedrive.com
usgovvirginia0-notifyg.svc.ms
servicefabric.pushfb.svc.ms
usgovvirginia0-notifyp.svc.ms
usgovvirginia0-notifyg.svc.ms
*.kmgcc.svc.ms
servicefabric.pushfp.svc.ms
*.pushfb.svc.ms
*.svc.ms
api.tpsprod.svc.ms
svc.ms
servicefabric.pushfp.svc.ms
*.pushfd.svc.ms
germanynortheast0-notifyp.svc.ms
germanynortheast0-notifyp.svc.ms
*.notifyp.svc.ms
*.badgerp.svc.ms
servicefabric.pushnb.svc.ms
servicefabric.pushfb.svc.ms
servicefabric.photostreamt.svc.ms
*.pushnp.svc.ms
*.badgers.svc.ms
*.pushnp.svc.ms
api.tpsedog.svc.ms
usgovvirginia0-notifyg.svc.ms
*.connectort.svc.ms
sdesti.prod.servicecerts.svc.ms
api.tpsprod.svc.ms
*.hwp.svc.ms
*.badgerb.svc.ms
spo-completenessprod-cma.servicecerts.svc.ms
sdegenevacert.prod.servicecerts.svc.ms
*.mediad.svc.ms
servicefabric.photostreamd.svc.ms
servicefabric.pushnb.svc.ms
SPO-PF-MS-MC-mediag.svc.ms
spo-completenessedog-cma.servicecerts.svc.ms
*.pushfb.svc.ms
*.badgerg.svc.ms
*.completenesss.svc.ms
SPO-BF-MS-AAD.svc.ms
gcc-sti-sphomep.svc.ms
SPO-BF-AS-CMA.svc.ms
usgovvirginia0-notifyg.svc.ms
managementcert.sphomep.svc.ms
onedrive.com
sti.sphomed.svc.ms
*.badgerb.svc.ms
gcc-griffinruntime-sphomep.svc.ms
spo-sscprod.cma.servicecerts.svc.ms
servicefabric.pushns.svc.ms
SPO-TB-STI-notifyg.svc.ms
usgovvirginia0-mediap.svc.ms
*.connectorp.svc.ms
*.pushng.svc.ms
usdodeast0-notifyg.svc.ms
api.tpsedog.svc.ms
spo-sscprod.cma.servicecerts.svc.ms
*.photostreamd.svc.ms
*.connectorp.svc.ms
api.tpsspdf.svc.ms
servicefabric.pushnb.svc.ms
kbstate.sphomeg.svc.ms
*.pushng.svc.ms
kbstate.sphomep.svc.ms
odspsscsiphonedog.servicecerts.svc.ms
Certificate
The complete raw certificate details for SPO-BF-MS-AAD.svc.ms in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIQGRIvYoOY7basKwbE2M6SuDANBgkqhkiG9w0BAQsFADBM MQswCQYDVQQGEwJERTEVMBMGA1UECgwMRC1UcnVzdCBHbWJIMSYwJAYDVQQDDB1E LVRSVVNUIFNTTCBDbGFzcyAzIENBIDEgMjAwOTAeFw0yMDAxMTQyMzM4NDJaFw0y MjAxMTQyMzM4NDBaMIGiMRUwEwYDVQQFEwxDU00wMTgwMzk2MzYxCzAJBgNVBAYT AkRFMQ8wDQYDVQQIEwZCYXllcm4xETAPBgNVBAcTCE11ZW5jaGVuMQ8wDQYDVQQL EwZPZmZpY2UxKDAmBgNVBAoTH01pY3Jvc29mdCBEZXV0c2NobGFuZCBNQ0lPIEdt YkgxHTAbBgNVBAMTFFNQTy1CRi1NUy1BQUQuc3ZjLm1zMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAz2nG/Go7Mk6Kpdp/5THKvxC2TsWAvY3aJE83sYhp N5n5UmYZHYljhUkzXD0ju/+EUNG50UmUMVFSz3/7CRec3m1frBtotTP+PtvHnx5b vlLnn9KvL0WpfDKVu5nMwrTo8A8tc6rUfrlB/NnZquqJuKXiQLKTVjCXF3PZ9Yqb eoxdCmcZGMTKgv/i3rg159B/5ngxjJQTmrSWsFRtaPUZ+kuldd/MLgJlzTF6Vcy5 XyQD7DEp/66WEL36+OEu5J33UrhEg5Zf/YKvmE9dtEzvXbTnhFvDsUtm0JVcHl5n 7LSDnq+CN0g+3xaLCd4+ZBUE3Iar7dxudTVW9xZNv9IS1wIDAQABo4IDgDCCA3ww ggEWBggrBgEFBQcBAQSCAQgwggEEMDMGCCsGAQUFBzABhidodHRwOi8vc3NsLWMz LWNhMS0yMDA5Lm9jc3AuZC10cnVzdC5uZXQwTAYIKwYBBQUHMAKGQGh0dHA6Ly93 d3cuZC10cnVzdC5uZXQvY2dpLWJpbi9ELVRSVVNUX1NTTF9DbGFzc18zX0NBXzFf MjAwOS5jcnQwfwYIKwYBBQUHMAKGc2xkYXA6Ly9kaXJlY3RvcnkuZC10cnVzdC5u ZXQvQ049RC1UUlVTVCUyMFNTTCUyMENsYXNzJTIwMyUyMENBJTIwMSUyMDIwMDks Tz1ELVRydXN0JTIwR21iSCxDPURFP2NBQ2VydGlmaWNhdGU/YmFzZT8wZQYDVR0g BF4wXDBaBgsrBgEEAaU0AoFIATBLMEkGCCsGAQUFBwIBFj1odHRwOi8vd3d3LmQt dHJ1c3QubmV0L2ludGVybmV0L2ZpbGVzL0QtVFJVU1RfQ1NNX1BLSV9DUFMucGRm MBMGCisGAQQB1nkCBAMBAf8EAgUAMDMGA1UdEgQsMCqBEGluZm9AZC10cnVzdC5u ZXSGFmh0dHA6Ly93d3cuZC10cnVzdC5uZXQwggEdBgNVHR8EggEUMIIBEDCCAQyg ggEIoIIBBIZ5bGRhcDovL2RpcmVjdG9yeS5kLXRydXN0Lm5ldC9DTj1ELVRSVVNU JTIwU1NMJTIwQ2xhc3MlMjAzJTIwQ0ElMjAxJTIwMjAwOSxPPUQtVHJ1c3QlMjBH bWJILEM9REU/Y2VydGlmaWNhdGVyZXZvY2F0aW9ubGlzdIZAaHR0cDovL2NybC5k LXRydXN0Lm5ldC9jcmwvZC10cnVzdF9zc2xfY2xhc3NfM19jYV8xXzIwMDkuZGVy LmNybIZFaHR0cDovL2Nkbi5kLXRydXN0LWNsb3VkY3JsLm5ldC9jcmwvZC10cnVz dF9zc2xfY2xhc3NfM19jYV8xXzIwMDkuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjAfBgNVHREEGDAWghRTUE8tQkYtTVMtQUFELnN2Yy5tczAfBgNV HSMEGDAWgBRQGTKUmsS1BE1W0MCDIdU1VbCxejAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0OBBYEFJp6+PSR6O3BLf1s9jXDqJT+gcz3MA0GCSqGSIb3DQEBCwUAA4IBAQBj dLkEQDuoI7wokEDeDJdr6BE6WAbdippb1fjDDUShmOdGox7hP6J5jZ4PKWsrM3KO C8GjhcKkV4amsv2/5q8XabB8mDy/U+mvAiSsaWkjDFD7xciqK1QAtwVp4Nl5ghmr 3b70uOICRY7ukaups2B8sd7MKAAilJQXW7I+09k956ZqmvFqcrNXD+rZzsVyBBlK 1mPPJsqcwoVpTZ+VdN1VbTlRSdU3OQAO5PLLkcc5jGKMGfxsq2dZ3M3ndDd9L0w0 0J/oxfTI7mDdlHSm2Rj/qTDH0XCLWM1+vsTqnnvGIYAMHlqox6ghxyB5ypWzffxZ qtpnvbb9ywXwAU3mEtF4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz2nG/Go7Mk6Kpdp/5THK vxC2TsWAvY3aJE83sYhpN5n5UmYZHYljhUkzXD0ju/+EUNG50UmUMVFSz3/7CRec 3m1frBtotTP+PtvHnx5bvlLnn9KvL0WpfDKVu5nMwrTo8A8tc6rUfrlB/NnZquqJ uKXiQLKTVjCXF3PZ9YqbeoxdCmcZGMTKgv/i3rg159B/5ngxjJQTmrSWsFRtaPUZ +kuldd/MLgJlzTF6Vcy5XyQD7DEp/66WEL36+OEu5J33UrhEg5Zf/YKvmE9dtEzv XbTnhFvDsUtm0JVcHl5n7LSDnq+CN0g+3xaLCd4+ZBUE3Iar7dxudTVW9xZNv9IS 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 33325122316415237328071241328650785464 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'D-Trust GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'D-TRUST SSL Class 3 CA 1 2009' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-14 23:38:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-14 23:38:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CSM018039636' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Muenchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Office' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Deutschland MCIO GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SPO-BF-MS-AAD.svc.ms' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26183489853259926323291538979879383661918006477935693270438758546499686357776922446596710089235427640970832011845908289003056409223645334340956364434868872600061535405500540920618215855261237909783476613445308486114620203256882324232216594020120110507148903118855008375324123020778861790305039744144871920893270350680676305429613711609195677746046530216213839078126695433520565629553440599481610415164264967994221125505299735375029627659035441010517464607576912757375407738410906939178474703905120593125994849015004338740052611190519374543979124921234505669406518129105730104696625609185310602186076937174802641326807 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (264 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ssl-c3-ca1-2009.ocsp.d-trust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.d-trust.net/cgi-bin/D-TRUST_SSL_Class_3_CA_1_2009.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.d-trust.net/CN=D-TRUST%20SSL%20Class%203%20CA%201%202009,O=D-Trust%20GmbH,C=DE?cACertificate?base?' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4788.2.200.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.d-trust.net/internet/files/D-TRUST_CSM_PKI_CPS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:1|false] IA5String '[email protected]' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.d-trust.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (276 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.d-trust.net/CN=D-TRUST%20SSL%20Class%203%20CA%201%202009,O=D-Trust%20GmbH,C=DE?certificaterevocationlist' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.d-trust.net/crl/d-trust_ssl_class_3_ca_1_2009.der.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdn.d-trust-cloudcrl.net/crl/d-trust_ssl_class_3_ca_1_2009.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'SPO-BF-MS-AAD.svc.ms' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 501932949ac4b5044d56d0c08321d53555b0b17a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9a7af8f491e8edc12dfd6cf635c3a894fe81ccf7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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