odc.officeapps.live.com
- Microsoft Corporation -
Issued by Microsoft Azure TLS Issuing CA 02
About this certificate
This digital certificate with serial number 33:00:d0:42:f7:57:70:0e:35:be:34:5b:1d:00:00:00:d0:42:f7 was issued on by Microsoft Corporation.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Microsoft Corporation
Organization:
Microsoft Corporation
State / Province:
WA
Locality: Redmond
Country: US
Locality: Redmond
Country: US
Microsoft Corporation
Organization:
Microsoft Corporation
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 33:00:d0:42:f7:57:70:0e:35:be:34:5b:1d:00:00:00:d0:42:f7Serial Number (int): 1137408872870699828868752764020651909880759031
Serial Number lenght: 150 bits, 19 octets
SubjectKeyId: 0c:11:a3:f1:34:54:8d:12:26:6c:04:18:8d:bf:70:7b:95:43:c3:8d
AuthorityKeyId: 00:ab:91:fc:21:62:26:97:9a:a8:79:1b:61:41:90:60:a9:62:67:fd
Fingerprint (sha1): 7a:3f:75:b9:30:29:c6:8f:32:d4:a2:1b:a8:f6:9d:df:08:a7:66:90
Fingerprint (sha256): 13:46:c0:60:00:19:98:c1:0b:9a:49:22:30:58:b4:77:44:32:4e:cc:3a:51:d6:e3:b7:47:af:39:8a:63:33:d7
Issuing Certificate URL: http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2002%20-%20xsign.crt
Revocation information
OCSP Server: http://oneocsp.microsoft.com/ocspCRL Distribution Point: http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2002.crl
Check the revocation status for certificate odc.officeapps.live.com
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for odc.officeapps.live.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
12 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
odc.officeapps.live.com
*.officeapps.live.com
*.odcsm.officeapps.live.com
odcsm.officeapps.live.com
*.odc.officeapps.live.com
discovery.api.office.net
odc-df.officeapps.live.com
*.odc-df.officeapps.live.com
odc-eu.officeapps.live.com
hrd.office.com
*.hrd.office.com
hrd.svc.cloud.microsoft
*.hrd.svc.cloud.microsoft
*.officeapps.live.com
*.odcsm.officeapps.live.com
odcsm.officeapps.live.com
*.odc.officeapps.live.com
discovery.api.office.net
odc-df.officeapps.live.com
*.odc-df.officeapps.live.com
odc-eu.officeapps.live.com
hrd.office.com
*.hrd.office.com
hrd.svc.cloud.microsoft
*.hrd.svc.cloud.microsoft
Other certificates including the domain name live.com
(limited to 100 certificates)
client.hip.live.com
config.edog.officeapps.live.com
outlook-fd-0009.live.com
sa5gl.wpc.edgecastcdn.net
ssl.chinanetcenter.com
officeapps.live.com
odc.edog.officeapps.live.com
blu196.mail.live.com
reporting.fss.live.com
sdx.microsoft.com
*.gateway.messenger.live.com
mrodevicemgr.edog.officeapps.live.com
storage.live.com
settings.familysafety.microsoft.com
sa9gl.wpc.edgecastcdn.net
login.live.com
outlook.com
images.partner.windowsphone.com
graph.windows.net
odc.officeapps.live.com
account.microsoft.com
teamsopenaisvc.prod.teams.live.com
*.ra.live.com
hololens-surfacehub-prod.auth.partner.hip.live.com
groups.prod.teams.live.com
ssw.live.com
ssl.chinanetcenter.com
wordwrs.edog.officeapps.live.com
present.edog.officeapps.live.com
ssl.chinanetcenter.com
ssl.chinanetcenter.com
fpt.microsoft.com
config.edog.officeapps.live.com
graph.windows.net
chatsvcagg.teams.microsoft.com
graph.windows.net
store.office.com
graph.windows.net
outlook-fd-0007.live.com
storage.live.com
outlook.com
fpt.microsoft.com
pptcts.officeapps.live.com
outlook-fd-0009.live.com
client.hip.live.com
uci.edog.officeapps.live.com
outlook.com
graph.windows.net
support.office.com
designerapp.edog.officeapps.live.com
mail.live.com
graph.windows.net
wordwrs.edog.officeapps.live.com
*.domains.live.com
sa167gl.wpc.edgecastcdn.net
sa54gl.wpc.edgecastcdn.net
middletier.prod.teams.live.com
pptmobius.officeapps.live.com
*.vo.msecnd.net
virtualearth.at
excelcs.officeapps.live.com
sendersupport.olc.protection.outlook.com
login.live-int.com
middletier.nonprod.teams.live.com
wordcs.edog.officeapps.live.com
graph.windows.net
g.msn.com
imgw.live.com
graph.windows.net
login.live-int.com
groups.prod.teams.live.com
outlook.live.com
*.maps.live.com
c2rsetup.edog.officeapps.live.com
profile-df.live.com
storage.live.com
shim.hip.live.com
outlook-fd-0009.live.com
account.live.com
www.multimap.com
graph.windows.net
client.hip.live.com
*.storage.msn.com
notifsvc.nonprod.teams.live.com
outlook.com
groups.prod.teams.live.com
ocws.officeapps.live.com
designerapp.officeapps.live.com
graph.windows.net
login.live.com
sa146gl.wpc.edgecastcdn.net
support.office.com
pptwrs.officeapps.live.com
config.officeapps.live.com
login.live.com
authsvc.nonprod.teams.live.com
outlook.com
mail.live.com
sa54gl.wpc.edgecastcdn.net
uci.officeapps.live.com
config.edog.officeapps.live.com
outlook-fd-0009.live.com
sa5gl.wpc.edgecastcdn.net
ssl.chinanetcenter.com
officeapps.live.com
odc.edog.officeapps.live.com
blu196.mail.live.com
reporting.fss.live.com
sdx.microsoft.com
*.gateway.messenger.live.com
mrodevicemgr.edog.officeapps.live.com
storage.live.com
settings.familysafety.microsoft.com
sa9gl.wpc.edgecastcdn.net
login.live.com
outlook.com
images.partner.windowsphone.com
graph.windows.net
odc.officeapps.live.com
account.microsoft.com
teamsopenaisvc.prod.teams.live.com
*.ra.live.com
hololens-surfacehub-prod.auth.partner.hip.live.com
groups.prod.teams.live.com
ssw.live.com
ssl.chinanetcenter.com
wordwrs.edog.officeapps.live.com
present.edog.officeapps.live.com
ssl.chinanetcenter.com
ssl.chinanetcenter.com
fpt.microsoft.com
config.edog.officeapps.live.com
graph.windows.net
chatsvcagg.teams.microsoft.com
graph.windows.net
store.office.com
graph.windows.net
outlook-fd-0007.live.com
storage.live.com
outlook.com
fpt.microsoft.com
pptcts.officeapps.live.com
outlook-fd-0009.live.com
client.hip.live.com
uci.edog.officeapps.live.com
outlook.com
graph.windows.net
support.office.com
designerapp.edog.officeapps.live.com
mail.live.com
graph.windows.net
wordwrs.edog.officeapps.live.com
*.domains.live.com
sa167gl.wpc.edgecastcdn.net
sa54gl.wpc.edgecastcdn.net
middletier.prod.teams.live.com
pptmobius.officeapps.live.com
*.vo.msecnd.net
virtualearth.at
excelcs.officeapps.live.com
sendersupport.olc.protection.outlook.com
login.live-int.com
middletier.nonprod.teams.live.com
wordcs.edog.officeapps.live.com
graph.windows.net
g.msn.com
imgw.live.com
graph.windows.net
login.live-int.com
groups.prod.teams.live.com
outlook.live.com
*.maps.live.com
c2rsetup.edog.officeapps.live.com
profile-df.live.com
storage.live.com
shim.hip.live.com
outlook-fd-0009.live.com
account.live.com
www.multimap.com
graph.windows.net
client.hip.live.com
*.storage.msn.com
notifsvc.nonprod.teams.live.com
outlook.com
groups.prod.teams.live.com
ocws.officeapps.live.com
designerapp.officeapps.live.com
graph.windows.net
login.live.com
sa146gl.wpc.edgecastcdn.net
support.office.com
pptwrs.officeapps.live.com
config.officeapps.live.com
login.live.com
authsvc.nonprod.teams.live.com
outlook.com
mail.live.com
sa54gl.wpc.edgecastcdn.net
uci.officeapps.live.com
Certificate
The complete raw certificate details for odc.officeapps.live.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJmzCCB4OgAwIBAgITMwDQQvdXcA41vjRbHQAAANBC9zANBgkqhkiG9w0BAQwF ADBZMQswCQYDVQQGEwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9u MSowKAYDVQQDEyFNaWNyb3NvZnQgQXp1cmUgVExTIElzc3VpbmcgQ0EgMDIwHhcN MjMwOTI2MDU0OTI0WhcNMjQwNjI3MjM1OTU5WjBuMQswCQYDVQQGEwJVUzELMAkG A1UECBMCV0ExEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBD b3Jwb3JhdGlvbjEgMB4GA1UEAxMXb2RjLm9mZmljZWFwcHMubGl2ZS5jb20wggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnbW/dl57r2g+dhkAOBvWUiCFH 19+d0SjKgm1vh/qp6bhhgWwXwc9BNiYJgE5A8QkaxLJP7SDzDSsoxszateDsLRp/ +sRO/3QMBU72qgYsxHJczHNnsi96vQZKzxTfDRLrDSDUmy/zvse148zA9QyohpZD Sn6JFv0zQhHiVlnHk2W9vm3KvDs28ia/xmOgtVW3IvmZUH8OLghNrNo8XiLCIu9+ OnIKslJQ8aT1Fer/jvYUnvROP0qXmfiiYEz/Fn7lnOXkx/3R8JRPwtqnay/ef2mJ 09VEa1SWposSyLJFXlks8xLqf+Oj48oJQ5nVR4Y7PTxfykpSd8ey/xX7HI8xAgMB AAGjggVFMIIFQTCCAYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHcAdv+IPwq2+5VR wmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGK0BIwBAAABAMASDBGAiEA1yBriET2 K7XiBpJf4UmwXxYyeTqDsyFTYbqoV6mZFWoCIQCYCKP2ZuxMArvG6KNyMxwnK/k3 vz2wxYsoOcwV+iehvwB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/ur AAABitASL+AAAAQDAEcwRQIgOJdA3gH4on60+m7gbVcwVzwXQ4/20o9nElN0c2v3 WsgCIQDdFZ/GpvqrlVkNQMa6jT3rWrJBIZtdKzRFxl+rJWc4eQB3AEiw42vapkc0 D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABitASL9AAAAQDAEgwRgIhAO56OBfz hE/oohUXjXZK88RBSC6oxqd++KfR+mhSyft5AiEA3xT+/79s5V/g5FMQpV3KFKVK NLh3oSYCk/4jMSRwsZ4wJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcDAjAKBggr BgEFBQcDATA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3FQiHvdcbgefrRoKBnS6O 0AyH8NodXYKE5WmC86c+AgFkAgEmMIGuBggrBgEFBQcBAQSBoTCBnjBtBggrBgEF BQcwAoZhaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0cy9NaWNy b3NvZnQlMjBBenVyZSUyMFRMUyUyMElzc3VpbmclMjBDQSUyMDAyJTIwLSUyMHhz aWduLmNydDAtBggrBgEFBQcwAYYhaHR0cDovL29uZW9jc3AubWljcm9zb2Z0LmNv bS9vY3NwMB0GA1UdDgQWBBQMEaPxNFSNEiZsBBiNv3B7lUPDjTAOBgNVHQ8BAf8E BAMCBaAwggFWBgNVHREEggFNMIIBSYIXb2RjLm9mZmljZWFwcHMubGl2ZS5jb22C FSoub2ZmaWNlYXBwcy5saXZlLmNvbYIbKi5vZGNzbS5vZmZpY2VhcHBzLmxpdmUu Y29tghlvZGNzbS5vZmZpY2VhcHBzLmxpdmUuY29tghkqLm9kYy5vZmZpY2VhcHBz LmxpdmUuY29tghhkaXNjb3ZlcnkuYXBpLm9mZmljZS5uZXSCGm9kYy1kZi5vZmZp Y2VhcHBzLmxpdmUuY29tghwqLm9kYy1kZi5vZmZpY2VhcHBzLmxpdmUuY29tghpv ZGMtZXUub2ZmaWNlYXBwcy5saXZlLmNvbYIOaHJkLm9mZmljZS5jb22CECouaHJk Lm9mZmljZS5jb22CF2hyZC5zdmMuY2xvdWQubWljcm9zb2Z0ghkqLmhyZC5zdmMu Y2xvdWQubWljcm9zb2Z0MAwGA1UdEwEB/wQCMAAwZAYDVR0fBF0wWzBZoFegVYZT aHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jcmwvTWljcm9zb2Z0JTIw QXp1cmUlMjBUTFMlMjBJc3N1aW5nJTIwQ0ElMjAwMi5jcmwwZgYDVR0gBF8wXTBR BgwrBgEEAYI3TIN9AQEwQTA/BggrBgEFBQcCARYzaHR0cDovL3d3dy5taWNyb3Nv ZnQuY29tL3BraW9wcy9Eb2NzL1JlcG9zaXRvcnkuaHRtMAgGBmeBDAECAjAfBgNV HSMEGDAWgBQAq5H8IWIml5qoeRthQZBgqWJn/TAdBgNVHSUEFjAUBggrBgEFBQcD AgYIKwYBBQUHAwEwDQYJKoZIhvcNAQEMBQADggIBAJyOIqaV/2GDwfowqbC/8aT5 d1j2G8HSgJe94tCWZDuKXH54AXDAckj3b/oFtFDqAnQ/HikK/QcBc9EbAWCwT6t2 +Iu4HWI2vqzCVdHd+0G6ZDCMWdofSUwggp2T5sB3Gmiu3VfFRgAaG/9o04/nDoBm /re991aze3wnUOEgrFSxNE/mNiWCvczgE2x1TSB5AWGfAksbysnZ14i1V+USh6Ce 9JnxZi96Lh9kx/uLDET+JH91lzpbaA4gA+vjV3qzxZW9/IBK5uMKvB3zWkeiBGbd g6X3PDcvsytbl20R/hdVYLkpYsOs9LCdtCWxJyPGIxXhl8HRXk2d7OBMuWF63gqu f5hnc7aciyya1Batc3kH5FNTCSkueWOm6WkLfpLg913jJzzSwbBlSf+gXLoqkrkP VdFkCi33Mq2FM8zihKFSnUe5zPXENQBovrL3yaXduU0rmW+U8dm0SDbbkFEo19Wl Ntii6YXa8p5ZYm8zLbuQUhSApHkiAKHIaQu/4N1SP1/d0XoGOe9M95PQMcP0Wn47 ozmd7dSJaVPuFirNbG9xqP1jFaCPLzXWT9Fwrp5PzE9T2EeDhj6ovICnZ5Htf69r uibpFi/ypfO7s3KuyDa0xrZLpidzU1WFi1czUbYWFMTvAqf2787POaADMccW5d10 YXyzrXRIlI2HTySZsu7h -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp21v3Zee69oPnYZADgb1 lIghR9ffndEoyoJtb4f6qem4YYFsF8HPQTYmCYBOQPEJGsSyT+0g8w0rKMbM2rXg 7C0af/rETv90DAVO9qoGLMRyXMxzZ7Iver0GSs8U3w0S6w0g1Jsv877HtePMwPUM qIaWQ0p+iRb9M0IR4lZZx5Nlvb5tyrw7NvImv8ZjoLVVtyL5mVB/Di4ITazaPF4i wiLvfjpyCrJSUPGk9RXq/472FJ70Tj9Kl5n4omBM/xZ+5Zzl5Mf90fCUT8Lap2sv 3n9pidPVRGtUlqaLEsiyRV5ZLPMS6n/jo+PKCUOZ1UeGOz08X8pKUnfHsv8V+xyP MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1137408872870699828868752764020651909880759031 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Azure TLS Issuing CA 02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-26 05:49:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'odc.officeapps.live.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21135762313011666943922134344603962470117315339613137180457043225324179116247415689080307437891684269189351378676624179153758911524904704916541705051155366441343544661379186512125342045621774861728000722303641544844842946764761300495412457914135354330428977041010494231307943810132213540377880264694075743836725816378828009390698419921557200213175281291587184274833050891923961606392187840053409122942551151515417676933977468592825134264862085042740289500524754934140216733302023813952633837665238543839014483549544591453337164114344171359200142683996759320938931270388805214025863769517516583228450799550102234763057 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.15690651.3798470.4214446.239628.16526621.93.4272873.6083518 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 38 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (161 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2002%20-%20xsign.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://oneocsp.microsoft.com/ocsp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0c11a3f134548d12266c04188dbf707b9543c38d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (333 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'odc.officeapps.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.officeapps.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odcsm.officeapps.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'odcsm.officeapps.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odc.officeapps.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'discovery.api.office.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'odc-df.officeapps.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.odc-df.officeapps.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'odc-eu.officeapps.live.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hrd.office.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hrd.office.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hrd.svc.cloud.microsoft' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hrd.svc.cloud.microsoft' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2002.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.76.509.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.microsoft.com/pkiops/Docs/Repository.htm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 00ab91fc216226979aa8791b61419060a96267fd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 009c8e22a695ff6183c1fa30a9b0bff1a4f97758f61bc1d28097bde2d096643b8a5c7e780170c07248f76ffa05b450ea02743f1e290afd070173d11b0160b04fab76f88bb81d6236beacc255d1ddfb41ba64308c59da1f494c20829d93e6c0771a68aedd57c546001a1bff68d38fe70e8066feb7bdf756b37b7c2750e120ac54b1344fe6362582bdcce0136c754d207901619f024b1bcac9d9d788b557e51287a09ef499f1662f7a2e1f64c7fb8b0c44fe247f75973a5b680e2003ebe3577ab3c595bdfc804ae6e30abc1df35a47a20466dd83a5f73c372fb32b5b976d11fe175560b92962c3acf4b09db425b12723c62315e197c1d15e4d9dece04cb9617ade0aae7f986773b69c8b2c9ad416ad737907e4535309292e7963a6e9690b7e92e0f75de3273cd2c1b06549ffa05cba2a92b90f55d1640a2df732ad8533cce284a1529d47b9ccf5c4350068beb2f7c9a5ddb94d2b996f94f1d9b44836db905128d7d5a536d8a2e985daf29e59626f332dbb90521480a4792200a1c8690bbfe0dd523f5fddd17a0639ef4cf793d031c3f45a7e3ba3399dedd4896953ee162acd6c6f71a8fd6315a08f2f35d64fd170ae9e4fcc4f53d84783863ea8bc80a76791ed7faf6bba26e9162ff2a5f3bbb372aec836b4c6b64ba627735355858b573351b61614c4ef02a7f6efcecf39a00331c716e5dd74617cb3ad7448948d874f2499b2eee1