*.activate.hbonow.com
Issued by Amazon
About this certificate
This digital certificate with serial number 06:bf:4c:5b:41:37:06:9e:78:ee:48:ec:e0:b1:41:64 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.activate.hbonow.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:bf:4c:5b:41:37:06:9e:78:ee:48:ec:e0:b1:41:64Serial Number (int): 8968645367765361455443785611088052580
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 87:1e:35:b2:df:db:74:9e:30:d0:f2:c5:08:1b:42:11:a0:c6:ec:e0
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 3c:11:89:01:ed:a5:ca:12:89:fe:92:b4:ff:60:1b:0b:d5:bd:4a:95
Fingerprint (sha256): 13:6c:86:50:74:e2:53:11:2a:c3:73:cc:8f:90:4d:6d:e4:c6:fc:39:35:8a:99:47:cc:4e:58:9f:bc:e5:7b:70
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.activate.hbonow.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.activate.hbonow.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.activate.hbonow.com
activate.hbonow.com
activate.hbonow.com
Other certificates including the domain name hbonow.com
(limited to 100 certificates)
play.hbonow.com
play.hbonow.com
dns-vetting1j.map.fastly.net
link.hbonow.com
link.hbonow.com
restart.hbonow.com
dns-vetting1k.map.fastly.net
dns-vetting1j.map.fastly.net
restart.hbonow.com
hbonow.com
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
order.hbonow.com
dns-vetting1j.map.fastly.net
alb-redirector-production-us-east-1.api.hbo.com
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
dns-vetting1k.map.fastly.net
dns-vetting1k.map.fastly.net
subscribe.hbonow.com
dns-vetting1k.map.fastly.net
dns-vetting1k.map.fastly.net
dns-vetting1j.map.fastly.net
smetrics.hbonow.com
*.hbonow.com
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
hbo.map.fastly.net
link.hbonow.com
hbonow.com
dns-vetting1j.map.fastly.net
link.hbonow.com
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
play.hbonow.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
order.hbonow.com
subscribe.hbonow.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
dns-vetting1k.map.fastly.net
dns-vetting1j.map.fastly.net
hbo.map.fastly.net
*.activate.hbonow.com
hbo.map.fastly.net
dns-vetting1j.map.fastly.net
*.hbonow.com
hbo.map.fastly.net
hbo.map.fastly.net
hbonow.com
dns-vetting1j.map.fastly.net
smetrics.hbonow.com
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
ablink.mail.hbomax.com
hbo.map.fastly.net
dns-vetting1k.map.fastly.net
signup.hbo.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
link.hbonow.com
link.hbonow.com
hbo.map.fastly.net
activate.hbonow.com
hbo.map.fastly.net
play.hbonow.com
dns-vetting1j.map.fastly.net
hbonow.com
link.hbonow.com
student.hbonow.com
subscribe.hbonow.com
hbo.map.fastly.net
activate.hbonow.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
play.hbonow.com
hbonow.com
link.hbonow.com
subscribe.hbonow.com
newsletter.assets.hbonow.com
subscribe.hbonow.com
play.hbonow.com
hbo.map.fastly.net
hbo.map.fastly.net
hbo.map.fastly.net
hbo.map.fastly.net
subscribe.hbonow.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
hbo.map.fastly.net
subscribe.hbonow.com
hbo.map.fastly.net
dns-vetting1j.map.fastly.net
smetrics.hbonow.com
order.hbonow.com
play.hbonow.com
dns-vetting1j.map.fastly.net
link.hbonow.com
link.hbonow.com
restart.hbonow.com
dns-vetting1k.map.fastly.net
dns-vetting1j.map.fastly.net
restart.hbonow.com
hbonow.com
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
order.hbonow.com
dns-vetting1j.map.fastly.net
alb-redirector-production-us-east-1.api.hbo.com
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
dns-vetting1k.map.fastly.net
dns-vetting1k.map.fastly.net
subscribe.hbonow.com
dns-vetting1k.map.fastly.net
dns-vetting1k.map.fastly.net
dns-vetting1j.map.fastly.net
smetrics.hbonow.com
*.hbonow.com
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
hbo.map.fastly.net
link.hbonow.com
hbonow.com
dns-vetting1j.map.fastly.net
link.hbonow.com
dns-vetting1j.map.fastly.net
dns-vetting1j.map.fastly.net
play.hbonow.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
order.hbonow.com
subscribe.hbonow.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
dns-vetting1k.map.fastly.net
dns-vetting1j.map.fastly.net
hbo.map.fastly.net
*.activate.hbonow.com
hbo.map.fastly.net
dns-vetting1j.map.fastly.net
*.hbonow.com
hbo.map.fastly.net
hbo.map.fastly.net
hbonow.com
dns-vetting1j.map.fastly.net
smetrics.hbonow.com
dns-vetting1j.map.fastly.net
dns-vetting1k.map.fastly.net
ablink.mail.hbomax.com
hbo.map.fastly.net
dns-vetting1k.map.fastly.net
signup.hbo.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
link.hbonow.com
link.hbonow.com
hbo.map.fastly.net
activate.hbonow.com
hbo.map.fastly.net
play.hbonow.com
dns-vetting1j.map.fastly.net
hbonow.com
link.hbonow.com
student.hbonow.com
subscribe.hbonow.com
hbo.map.fastly.net
activate.hbonow.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
play.hbonow.com
hbonow.com
link.hbonow.com
subscribe.hbonow.com
newsletter.assets.hbonow.com
subscribe.hbonow.com
play.hbonow.com
hbo.map.fastly.net
hbo.map.fastly.net
hbo.map.fastly.net
hbo.map.fastly.net
subscribe.hbonow.com
dns-vetting1k.map.fastly.net
hbo.map.fastly.net
hbo.map.fastly.net
subscribe.hbonow.com
hbo.map.fastly.net
dns-vetting1j.map.fastly.net
smetrics.hbonow.com
order.hbonow.com
Certificate
The complete raw certificate details for *.activate.hbonow.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIElTCCA32gAwIBAgIQBr9MW0E3Bp547kjs4LFBZDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xODA3MDkwMDAwMDBaFw0xOTA4MDkx MjAwMDBaMCAxHjAcBgNVBAMMFSouYWN0aXZhdGUuaGJvbm93LmNvbTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAMTop4p/iligrGq7H1PouPjR6zMzucHU Iy3e6QJQbp6oFhJpMck9b9EH3esFkld/MSzcgOKm93vLkBdj+uT2wP9uOEBv1oz+ 0NQ7oi20vIGdiTUjLQLAWRkS49j5HjvOws2cWboRkXHUXV3gg2R8ZM1zLWh/IBDQ VM4t9747NX2yXuw7qigBKsd50XQrMaM+GTaXCLCGFKpAOKBtEWPNgMSBCCleMrVm TQ7LLp9p14ci3gMbz/XxravgCMfXV8HpmmEGtyYM+ZvUOZ12QRTnFQGwDnQot1jR do7b02WUJ1smgHoKdK9q8A452Jsqbk70iw7H1VRerm7WbFG7hvupodcCAwEAAaOC AaMwggGfMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQW BBSHHjWy39t0njDQ8sUIG0IRoMbs4DA1BgNVHREELjAsghUqLmFjdGl2YXRlLmhi b25vdy5jb22CE2FjdGl2YXRlLmhib25vdy5jb20wDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipo dHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0g BBkwFzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggr BgEFBQcwAYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsG AQUFBzAChipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5j cnQwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0B AQsFAAOCAQEAp744n39qFLHzW287h80LtYcI6HoiMfrwb2l6kkM17wAAgbt1RJeW pngPXRrPjIeVO3EF5E/O27CXoTRyFnjhbC7hVTEMXXLz+LkLeYeYCD8ULTmwsais 8k73JE1xoe3VSpUugcgX7goGnPsDDN7BIWvYv44S8sQ7z+iFp+StRYOi2wCBQrqe ePUKIeA1e+uK92QRA0Ddc13/KjB8vpMLN5OzMs+HpKAtppR4gbqBtkS3oV1dDGdj mvCuYoR53jTl8zK29FCAD5+tMTqSuoQhYujCqLVsjCPh1JHlOyYIN2sz2oqYH2fA UOL6hsQE5iGydXhsknVl/w0TzhW3FLCLOA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOinin+KWKCsarsfU+i4 +NHrMzO5wdQjLd7pAlBunqgWEmkxyT1v0Qfd6wWSV38xLNyA4qb3e8uQF2P65PbA /244QG/WjP7Q1DuiLbS8gZ2JNSMtAsBZGRLj2PkeO87CzZxZuhGRcdRdXeCDZHxk zXMtaH8gENBUzi33vjs1fbJe7DuqKAEqx3nRdCsxoz4ZNpcIsIYUqkA4oG0RY82A xIEIKV4ytWZNDssun2nXhyLeAxvP9fGtq+AIx9dXwemaYQa3Jgz5m9Q5nXZBFOcV AbAOdCi3WNF2jtvTZZQnWyaAegp0r2rwDjnYmypuTvSLDsfVVF6ubtZsUbuG+6mh 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8968645367765361455443785611088052580 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-09 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.activate.hbonow.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24857433962029796981401295034258001373794657759225315000315050883913510076115153018243662798412081262168498544441416852320273026510508354331965484213193607185386381051834090219383925754018068039412550005068275735441250702460387126154462494723277300602820375205318335002574509522702676112926990712691125096541430911883156858206208191105991619288910561412500898106838627087666368953921664996957174664787177522498098867482930673429639685125845877585870277564152905398636866161063363699123481461468108378725151409700829640823124251010462915199802350720460335006570019664095950056743715076746795263872642621104169287262679 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 871e35b2dfdb749e30d0f2c5081b4211a0c6ece0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.activate.hbonow.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'activate.hbonow.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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