cnp-access-manager-prod.prod.auth.lfscnp.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:ae:fb:5c:81:b4:c6:3e:aa:57:36:48:9c:6a:31:52 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cnp-access-manager-prod.prod.auth.lfscnp.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:ae:fb:5c:81:b4:c6:3e:aa:57:36:48:9c:6a:31:52Serial Number (int): 19517749808317459208633301442925048146
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 93:74:f6:fa:96:ca:ac:17:a4:03:f1:20:3f:6a:c0:23:2d:7e:40:aa
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 53:e9:d8:f4:8b:06:31:53:49:90:6d:20:77:42:8f:35:53:11:6a:1e
Fingerprint (sha256): 12:79:58:0e:43:09:65:3f:1e:a5:ca:ad:66:14:47:83:1f:dd:eb:ce:e4:00:01:d5:8a:47:d9:d4:0d:ac:de:eb
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate cnp-access-manager-prod.prod.auth.lfscnp.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cnp-access-manager-prod.prod.auth.lfscnp.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cnp-access-manager-prod.prod.auth.lfscnp.com
Other certificates including the domain name lfscnp.com
(limited to 100 certificates)
lpay-fraud-mock-test-stub.test.lpay-np.lfscnp.com
37degress.digitalweb.lfscnp.com
lpay-monolith-admin-dev.dev.lpayapp-sandbox.lfscnp.com
ach-details.originations-np.lfscnp.com
go-api-chaos-eng-dev.002.mytest2.sandbox.lfscnp.com
consumer-fraud-service.sandbox.o10s.lfscnp.com
service-accounts-test.new.01.test.eapi-np.lfscnp.com
imperva.com
ecs-demo-cnp-dev.002.mytest2.sandbox.lfscnp.com
lpay-app-originations-dev-au.dev.lpayapp-sandbox.lfscnp.com
pl-service.01.prod.eapi-pci.lfscnp.com
dnb-test2.001.development.odds-np.lfscnp.com
genoapay-api-test.np.o10s.lfscnp.com
70e8843709e812f7ca0d9.prod.merchant-integration-bnpl.lfscnp.com
appsec-helloworld-dev.security-sandbox.lfscnp.com
motorapp-prod.001.production.odds.lfscnp.com
customer-master-prod.datalake-prod.lfscnp.com
genoapay.admin.dx-prod.lfscnp.com
039004c7f9672353f72.001.development.datalake-sandbox.lfscnp.com
kong-service-test.test.se-platform-np.lfscnp.com
test.001.testapp.sandbox.lfscnp.com
0d8ba5758bf1f14a2776681d43b3f8a53.01.test.eapi-pcinp.lfscnp.com
pin-change-service-test.01.test.eapi-pcinp.lfscnp.com
auth.dev.se-platform-np.lfscnp.com
test.001.testapp.sandbox.lfscnp.com
buildkite-webhook-datadog-event-dev.01.dev.eapi-np.lfscnp.com
62df4d98fe86184a5c9f8e006e715bd8.collections-sandbox.lfscnp.com
imperva.com
staging.wetcms.digitalweb-np.lfscnp.com
notification-service-test.01.test.eapi-pcinp.lfscnp.com
lpay-service-equifax-dev4-au.dev.lpayapp-dev4.lfscnp.com
customer-support-service-dev.sandbox.eapi.lfscnp.com
cnp-ecs-demo-dev.002.mytest2.sandbox.lfscnp.com
cards-visioncics-adapter-dev.01.dev.eapi-pcinp.lfscnp.com
react-ts-admin-test.test.sandbox.lfscnp.com
imperva.com
latitudefinancial-co-nz.digitalweb-np.lfscnp.com
*.okta-custom.dev.se-platform-np.lfscnp.com
responsysassets.prod.digitalweb.lfscnp.com
imperva.com
imperva.com
evolve-dev2.001.development.odds-np.lfscnp.com
6e1ef36f1003de406a7b68ef.001.development.data-cde-np.lfscnp.com
coreapi-dev2.001.development.odds-np.lfscnp.com
accounts-link-unlinked.001.production.eapi.lfscnp.com
staging.lowratemastercard-com-au.digitalweb-np.lfscnp.com
cf-mobile-config.mobile.lfscnp.com
lpay-service-consumer-dev2.dev.lpayapp-dev2.lfscnp.com
odds-authentications.test.odds-np.lfscnp.com
vision-haproxy-prod.dx-cde-prod.lfscnp.com
vision-adapter-dev.new.01.dev.eapi-pcinp.lfscnp.com
7d5265b7789f253ebc3.001.development.datalake-sandbox.lfscnp.com
doc-upload.originations-np.lfscnp.com
staging.latitudefinancial.digitalweb-np.lfscnp.com
oscar.nonprod.digitalservicing-np.lfscnp.com
soft-quote-proxy-test.np.o10s.lfscnp.com
apply-mock-response-dev.merchant-services-sandbox.lfscnp.com
*.staging.gomastercard.com.digitalweb-np.lfscnp.com
034ac86c3ec7e392b5acf71a0f55b8fb750.dev.lpayapp-dev1.lfscnp.com
cnp-socket-mode-slackbot-starter-test.test.sandbox.lfscnp.com
staging.umiloans.digitalweb-np.lfscnp.com
*.staging.28degreescard.digitalweb-np.lfscnp.com
consumer-risk-service-dev.sandbox.o10s.lfscnp.com
coreapi-prod.001.production.odds.lfscnp.com
appsec-dojo-prod.security.lfscnp.com
instinct-prod.dx-cde-prod.lfscnp.com
cnp-access-manager-prod.prod.auth.lfscnp.com
*.okta-custom.prod.se-platform.lfscnp.com
appsecd-github-webhook-test.security-test.lfscnp.com
imperva.com
12b20401b771de810734b8938349.001.development.odds-np.lfscnp.com
staging.buyersedge.digitalweb-np.lfscnp.com
service-products.01.prod.eapi.lfscnp.com
account-linking-v2-prod.new.01.prod.eapi-pci.lfscnp.com
api.lfscnp.com
lpay-service-account-dev.dev.lpayapp-sandbox.lfscnp.com
temenos-service-poc-dev.sandbox.eapi.lfscnp.com
imperva.com
customer-master-dev.datalake-sandbox.lfscnp.com
servicing-customer-master-dev.sandbox.eapi.lfscnp.com
lpay-service-dowjones-sandbox.sandbox.lpay-sandbox.lfscnp.com
*.37degress.digitalweb-np.lfscnp.com
collections-pcc-service-test.collections-nonprod.lfscnp.com
collections-pcc-service-dev.collections-nonprod.lfscnp.com
applybuy-vision-bridge.prod.merchant-wallet.lfscnp.com
wetcms.prod.digitalweb.lfscnp.com
appsec-web-ui-prod.security-sandbox.lfscnp.com
lpay-app-originations-dev2-au.dev.lpayapp-dev2.lfscnp.com
poi-service-prod.prod.o10s.lfscnp.com
appsec-github-dev.security-sandbox.lfscnp.com
832c9417d0aaa792294e4dd7d3c698a.new.01.prod.eapi-pci.lfscnp.com
tcs-bancs-service-prod.new.01.prod.eapi.lfscnp.com
documents-service-dev.01.dev.eapi-pcinp.lfscnp.com
nz-apply-merchant-redirect.originations-np.lfscnp.com
lpay-service-mail-api-dev.dev.lpayapp-sandbox.lfscnp.com
www.tmpkong.apigateway-sandbox.lfscnp.com
13790fed5a068feda1caf0e50145.001.development.odds-np.lfscnp.com
lpay-app-originations-test-nz.test.lpay-np.lfscnp.com
lfs-ui.digitalservicing-np.lfscnp.com
8e062ea304a968893b3fc8edd7e4.001.development.odds-np.lfscnp.com
37degress.digitalweb.lfscnp.com
lpay-monolith-admin-dev.dev.lpayapp-sandbox.lfscnp.com
ach-details.originations-np.lfscnp.com
go-api-chaos-eng-dev.002.mytest2.sandbox.lfscnp.com
consumer-fraud-service.sandbox.o10s.lfscnp.com
service-accounts-test.new.01.test.eapi-np.lfscnp.com
imperva.com
ecs-demo-cnp-dev.002.mytest2.sandbox.lfscnp.com
lpay-app-originations-dev-au.dev.lpayapp-sandbox.lfscnp.com
pl-service.01.prod.eapi-pci.lfscnp.com
dnb-test2.001.development.odds-np.lfscnp.com
genoapay-api-test.np.o10s.lfscnp.com
70e8843709e812f7ca0d9.prod.merchant-integration-bnpl.lfscnp.com
appsec-helloworld-dev.security-sandbox.lfscnp.com
motorapp-prod.001.production.odds.lfscnp.com
customer-master-prod.datalake-prod.lfscnp.com
genoapay.admin.dx-prod.lfscnp.com
039004c7f9672353f72.001.development.datalake-sandbox.lfscnp.com
kong-service-test.test.se-platform-np.lfscnp.com
test.001.testapp.sandbox.lfscnp.com
0d8ba5758bf1f14a2776681d43b3f8a53.01.test.eapi-pcinp.lfscnp.com
pin-change-service-test.01.test.eapi-pcinp.lfscnp.com
auth.dev.se-platform-np.lfscnp.com
test.001.testapp.sandbox.lfscnp.com
buildkite-webhook-datadog-event-dev.01.dev.eapi-np.lfscnp.com
62df4d98fe86184a5c9f8e006e715bd8.collections-sandbox.lfscnp.com
imperva.com
staging.wetcms.digitalweb-np.lfscnp.com
notification-service-test.01.test.eapi-pcinp.lfscnp.com
lpay-service-equifax-dev4-au.dev.lpayapp-dev4.lfscnp.com
customer-support-service-dev.sandbox.eapi.lfscnp.com
cnp-ecs-demo-dev.002.mytest2.sandbox.lfscnp.com
cards-visioncics-adapter-dev.01.dev.eapi-pcinp.lfscnp.com
react-ts-admin-test.test.sandbox.lfscnp.com
imperva.com
latitudefinancial-co-nz.digitalweb-np.lfscnp.com
*.okta-custom.dev.se-platform-np.lfscnp.com
responsysassets.prod.digitalweb.lfscnp.com
imperva.com
imperva.com
evolve-dev2.001.development.odds-np.lfscnp.com
6e1ef36f1003de406a7b68ef.001.development.data-cde-np.lfscnp.com
coreapi-dev2.001.development.odds-np.lfscnp.com
accounts-link-unlinked.001.production.eapi.lfscnp.com
staging.lowratemastercard-com-au.digitalweb-np.lfscnp.com
cf-mobile-config.mobile.lfscnp.com
lpay-service-consumer-dev2.dev.lpayapp-dev2.lfscnp.com
odds-authentications.test.odds-np.lfscnp.com
vision-haproxy-prod.dx-cde-prod.lfscnp.com
vision-adapter-dev.new.01.dev.eapi-pcinp.lfscnp.com
7d5265b7789f253ebc3.001.development.datalake-sandbox.lfscnp.com
doc-upload.originations-np.lfscnp.com
staging.latitudefinancial.digitalweb-np.lfscnp.com
oscar.nonprod.digitalservicing-np.lfscnp.com
soft-quote-proxy-test.np.o10s.lfscnp.com
apply-mock-response-dev.merchant-services-sandbox.lfscnp.com
*.staging.gomastercard.com.digitalweb-np.lfscnp.com
034ac86c3ec7e392b5acf71a0f55b8fb750.dev.lpayapp-dev1.lfscnp.com
cnp-socket-mode-slackbot-starter-test.test.sandbox.lfscnp.com
staging.umiloans.digitalweb-np.lfscnp.com
*.staging.28degreescard.digitalweb-np.lfscnp.com
consumer-risk-service-dev.sandbox.o10s.lfscnp.com
coreapi-prod.001.production.odds.lfscnp.com
appsec-dojo-prod.security.lfscnp.com
instinct-prod.dx-cde-prod.lfscnp.com
cnp-access-manager-prod.prod.auth.lfscnp.com
*.okta-custom.prod.se-platform.lfscnp.com
appsecd-github-webhook-test.security-test.lfscnp.com
imperva.com
12b20401b771de810734b8938349.001.development.odds-np.lfscnp.com
staging.buyersedge.digitalweb-np.lfscnp.com
service-products.01.prod.eapi.lfscnp.com
account-linking-v2-prod.new.01.prod.eapi-pci.lfscnp.com
api.lfscnp.com
lpay-service-account-dev.dev.lpayapp-sandbox.lfscnp.com
temenos-service-poc-dev.sandbox.eapi.lfscnp.com
imperva.com
customer-master-dev.datalake-sandbox.lfscnp.com
servicing-customer-master-dev.sandbox.eapi.lfscnp.com
lpay-service-dowjones-sandbox.sandbox.lpay-sandbox.lfscnp.com
*.37degress.digitalweb-np.lfscnp.com
collections-pcc-service-test.collections-nonprod.lfscnp.com
collections-pcc-service-dev.collections-nonprod.lfscnp.com
applybuy-vision-bridge.prod.merchant-wallet.lfscnp.com
wetcms.prod.digitalweb.lfscnp.com
appsec-web-ui-prod.security-sandbox.lfscnp.com
lpay-app-originations-dev2-au.dev.lpayapp-dev2.lfscnp.com
poi-service-prod.prod.o10s.lfscnp.com
appsec-github-dev.security-sandbox.lfscnp.com
832c9417d0aaa792294e4dd7d3c698a.new.01.prod.eapi-pci.lfscnp.com
tcs-bancs-service-prod.new.01.prod.eapi.lfscnp.com
documents-service-dev.01.dev.eapi-pcinp.lfscnp.com
nz-apply-merchant-redirect.originations-np.lfscnp.com
lpay-service-mail-api-dev.dev.lpayapp-sandbox.lfscnp.com
www.tmpkong.apigateway-sandbox.lfscnp.com
13790fed5a068feda1caf0e50145.001.development.odds-np.lfscnp.com
lpay-app-originations-test-nz.test.lpay-np.lfscnp.com
lfs-ui.digitalservicing-np.lfscnp.com
8e062ea304a968893b3fc8edd7e4.001.development.odds-np.lfscnp.com
Certificate
The complete raw certificate details for cnp-access-manager-prod.prod.auth.lfscnp.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIErjCCA5agAwIBAgIQDq77XIG0xj6qVzZInGoxUjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTExMTEwMDAwMDBaFw0yMDEyMTEx MjAwMDBaMDcxNTAzBgNVBAMTLGNucC1hY2Nlc3MtbWFuYWdlci1wcm9kLnByb2Qu YXV0aC5sZnNjbnAuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA wOkLCCBqonZwKtUMI2yejDUT57Oo9j/b7KrGp5Mc8FjtcpAMnWNXazIlAnwZ16fF KfJhJJH2xbYoX5dVKHErmin8WA9kfQKVR8MKluFEpJAvyLmbLpWkko1kpF8ZHDIS J/G+JODH3lq23xzNvjCWYmf4USEnA59DdMyxRLZH5AwzWQ62its+GAwcIlmgWfUD tb6ICK5+BJ8Erzkwwjamr2OSL7bQNAtkpAK+8q7NctwlYfqfAiGkLhqKtd/ChRQh cMDCSC1U2av9R5Ff9vhDxteTx6/e+wM3KiQ4ANoWPrR2wvjljqF3+puUXZz9IChW 2PZtD2Dr9jNsv/3rFQ9JhwIDAQABo4IBpTCCAaEwHwYDVR0jBBgwFoAUWaRmBlKg e5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFJN09vqWyqwXpAPxID9qwCMtfkCqMDcG A1UdEQQwMC6CLGNucC1hY2Nlc3MtbWFuYWdlci1wcm9kLnByb2QuYXV0aC5sZnNj bnAuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250 cnVzdC5jb20vc2NhMWIuY3JsMCAGA1UdIAQZMBcwCwYJYIZIAYb9bAECMAgGBmeB DAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNj YTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2Ex Yi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYB BAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAJ0rOYDuvrfHfAsLIWSB JZ2HevlKHg5659EVKnB5D776L7C4E3t2PgbjRXVisRxeMtkKXb+psEiVQdWUhLaq 6dIX7rmyblfC4BffRR1wKvJsFsZFfdZ8caBPeVUer4XPVbJCXV4GruU7lE+NpH14 3957LhEhfTrNK/Usir7iu+PKVDuNXUlhdJHjwKC7yPka1Rp24k+/GKuoF+Zuztz0 GU1P2OM/C+UH3OMV27ojrslycl1pMF+PDUx2z+JRKNyXTU7MmyS/qmBgokBdTABF bF2f8c6XArtsAjZ4qWzY3J2YqBc9QLlo/YYlA3FEudjCEhZVeD0TciVr3WlGwDU+ z+s= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOkLCCBqonZwKtUMI2ye jDUT57Oo9j/b7KrGp5Mc8FjtcpAMnWNXazIlAnwZ16fFKfJhJJH2xbYoX5dVKHEr min8WA9kfQKVR8MKluFEpJAvyLmbLpWkko1kpF8ZHDISJ/G+JODH3lq23xzNvjCW Ymf4USEnA59DdMyxRLZH5AwzWQ62its+GAwcIlmgWfUDtb6ICK5+BJ8Erzkwwjam r2OSL7bQNAtkpAK+8q7NctwlYfqfAiGkLhqKtd/ChRQhcMDCSC1U2av9R5Ff9vhD xteTx6/e+wM3KiQ4ANoWPrR2wvjljqF3+puUXZz9IChW2PZtD2Dr9jNsv/3rFQ9J hwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19517749808317459208633301442925048146 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-11 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cnp-access-manager-prod.prod.auth.lfscnp.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24352672385565764009414047678216769836001917936445292112131452362590682551173226380269675621511052160218567921583025256258171407558607133727208096314618869838888538488333552335060663726108957975667166198224450012033553550606351142360223814935214026858674696846906984988560176101379939006781330842956707136165978712532042120213297940669448732882552660197395930450916419323913361350805572235390175667841698520834578472066605316164964880943835221419175694878771046462320133901392570147318441439976594399188640993858700626028237427790647552510968495024959616518972379657107017802243099681451959624519896520022410694445447 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9374f6fa96caac17a403f1203f6ac0232d7e40aa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cnp-access-manager-prod.prod.auth.lfscnp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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