ap-northeast-2.mini-connected.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0e:b2:b0:38:ff:74:f4:da:4d:f2:fb:4d:5b:6a:e7:5a was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ap-northeast-2.mini-connected.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:b2:b0:38:ff:74:f4:da:4d:f2:fb:4d:5b:6a:e7:5aSerial Number (int): 19536995001735434215276392911362254682
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 69:30:60:a6:15:27:e9:6f:fd:65:f3:dd:7b:64:b8:89:f0:10:e7:63
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 59:68:71:c9:17:52:98:62:6b:b4:32:e2:2d:ae:41:21:8e:1f:97:85
Fingerprint (sha256): 12:de:bc:bc:e2:ae:79:c0:9c:f4:8f:85:ab:20:bc:e0:b9:e4:45:52:6b:7e:b0:74:ba:ea:5a:bb:5f:3f:2f:36
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate ap-northeast-2.mini-connected.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ap-northeast-2.mini-connected.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ap-northeast-2.mini-connected.com
*.ap-northeast-2.mini-connected.com
ap-northeast-2.bmw-connected.com
*.ap-northeast-2.bmw-connected.com
*.ap-northeast-2.mini-connected.com
ap-northeast-2.bmw-connected.com
*.ap-northeast-2.bmw-connected.com
Other certificates including the domain name mini-connected.com
(limited to 100 certificates)
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
www.bmw.de
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
mini-connected.com
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
www-origin-proda1.bmw.com
b3.shared.global.fastly.net
www.bmw.de
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
*.mini-connected.com
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
mini-connected.com
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
www.mini-connected.com
dns-vetting1j.map.fastly.net
ap-northeast-2.mini-connected.com
www.mini.com
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
mini-connected.com
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
*.mini-connected.com
www.bmw.de
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
www.mini-connected.com
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
mini-connected.com
www.mini-connected.com
www.mini-connected.com
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
www.bmw.de
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
mini-connected.com
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
www-origin-proda1.bmw.com
b3.shared.global.fastly.net
www.bmw.de
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
*.mini-connected.com
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
mini-connected.com
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
www.mini-connected.com
dns-vetting1j.map.fastly.net
ap-northeast-2.mini-connected.com
www.mini.com
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
mini-connected.com
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
*.mini-connected.com
www.bmw.de
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
www.mini-connected.com
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
mini-connected.com
www.mini-connected.com
www.mini-connected.com
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
dns-vetting1j.map.fastly.net
b3.shared.global.fastly.net
b3.shared.global.fastly.net
Certificate
The complete raw certificate details for ap-northeast-2.mini-connected.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIQDrKwOP909NpN8vtNW2rnWjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA2MjcwMDAwMDBaFw0yMDA3Mjcx MjAwMDBaMCwxKjAoBgNVBAMTIWFwLW5vcnRoZWFzdC0yLm1pbmktY29ubmVjdGVk LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALjcelwCWjlhGQV7 Na9YCU9EDMBtYhwwpTVQhfT+m7CRTQc7ixLVGhKO0cpQx2MEnA+Zv9Z4BFv5jT7q zoh6ye3cSsjcvD4BZ5xAtATFE+bmt62licJrJeQ3luQkIyB3YX7RH/Ob5UJNH2aS TqFz2Frd63UlIeDLIoRhFrb1EnR/2I8Mpp4B/+oWqT3HZbI6JOnibjGgn6gQbZCa jaQusyb0UMrWh7L2rWJBTeXSs7ZYUr7AMsANp3IIO/2VhBl3wnYeKNLkWJIhUMVZ W3UydkBplBzW1gRJ1dIH8bCbxUnY+xHppLUZmty6RmuNsYYd8luag3EObs2xhN01 1eNoPC8CAwEAAaOCAggwggIEMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb +T3QMB0GA1UdDgQWBBRpMGCmFSfpb/1l8917ZLiJ8BDnYzCBmQYDVR0RBIGRMIGO giFhcC1ub3J0aGVhc3QtMi5taW5pLWNvbm5lY3RlZC5jb22CIyouYXAtbm9ydGhl YXN0LTIubWluaS1jb25uZWN0ZWQuY29tgiBhcC1ub3J0aGVhc3QtMi5ibXctY29u bmVjdGVkLmNvbYIiKi5hcC1ub3J0aGVhc3QtMi5ibXctY29ubmVjdGVkLmNvbTAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsG A1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29t L3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYI KwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6 b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9u dHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMB Af8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCgv5lXLlc5SA520/hkv7/ppMxHruZ9 pva/7qF5ALPJsfmcSlx8WZ9YHgQem14yvLYEABeZc13IfOy6nnuC7RuNXyox/rGG 6q8LI/Iq//OGU3eCuESbWWRDdgrEeIV5zXf5FeowSY8dQqlNZp1KoIpfViDLCGo9 nwFq6vHT+s8pw9gkz912LGH2kKunKrYlO0eU6LxvlwBtR6iTg9PX5rIgpmUyt1WV IPVXTKgEZOf2/2gyXGGpXt1Eh2tEYa0ryZWNvVjzKndBVtj2dpwlqtNej5BYRTHR eazLQeJFHsojNoGozxwzo6B9ns0hmxEKiotCz3dM90gYPhHckj9hIV6y -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNx6XAJaOWEZBXs1r1gJ T0QMwG1iHDClNVCF9P6bsJFNBzuLEtUaEo7RylDHYwScD5m/1ngEW/mNPurOiHrJ 7dxKyNy8PgFnnEC0BMUT5ua3raWJwmsl5DeW5CQjIHdhftEf85vlQk0fZpJOoXPY Wt3rdSUh4MsihGEWtvUSdH/YjwymngH/6hapPcdlsjok6eJuMaCfqBBtkJqNpC6z JvRQytaHsvatYkFN5dKztlhSvsAywA2ncgg7/ZWEGXfCdh4o0uRYkiFQxVlbdTJ2 QGmUHNbWBEnV0gfxsJvFSdj7EemktRma3LpGa42xhh3yW5qDcQ5uzbGE3TXV42g8 LwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19536995001735434215276392911362254682 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-27 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ap-northeast-2.mini-connected.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23336569851125338511688900227773833768874588939188538606627070015812109314979497133752354023128209690804522624510440497315346893557457217230872826580668511552731987533712124753577575649711810381445624267971745134045555159226766746312635589659418644578016056995155807952271051320785614502400229669476874974983563738977903137443864515495781501769569586153266935831308102603286569531996681419858547687505052217442632734287228284039678024346666488019620163734530939874924198402589298726418111225150560120174913976215728565928851992078584161809003508215843673290391963277353564286357637355988196524278137984317501265689647 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 693060a61527e96ffd65f3dd7b64b889f010e763 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (145 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ap-northeast-2.mini-connected.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ap-northeast-2.mini-connected.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ap-northeast-2.bmw-connected.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ap-northeast-2.bmw-connected.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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