*.okta-custom.prod.se-platform.lfscnp.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 02:30:a9:4e:76:07:67:03:2d:64:09:9d:84:27:28:44 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.okta-custom.prod.se-platform.lfscnp.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:30:a9:4e:76:07:67:03:2d:64:09:9d:84:27:28:44Serial Number (int): 2911120184327376818911795436100986948
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: e9:11:4a:f3:96:88:1b:4c:79:62:3b:f1:fd:6d:7a:ee:62:fb:e2:34
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 86:24:3b:50:8a:17:6e:47:22:c0:e1:b9:7d:1a:b6:2c:f4:bb:86:1f
Fingerprint (sha256): 13:73:7b:bb:4e:f0:be:ea:da:b6:c9:d4:e3:14:d1:e1:02:a2:b9:1c:6f:db:cc:be:43:cf:d3:d9:7d:21:38:c7
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.okta-custom.prod.se-platform.lfscnp.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.okta-custom.prod.se-platform.lfscnp.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.okta-custom.prod.se-platform.lfscnp.com
Other certificates including the domain name lfscnp.com
(limited to 100 certificates)
lpay-fraud-mock-test-stub.test.lpay-np.lfscnp.com
37degress.digitalweb.lfscnp.com
lpay-monolith-admin-dev.dev.lpayapp-sandbox.lfscnp.com
ach-details.originations-np.lfscnp.com
go-api-chaos-eng-dev.002.mytest2.sandbox.lfscnp.com
consumer-fraud-service.sandbox.o10s.lfscnp.com
service-accounts-test.new.01.test.eapi-np.lfscnp.com
imperva.com
ecs-demo-cnp-dev.002.mytest2.sandbox.lfscnp.com
lpay-app-originations-dev-au.dev.lpayapp-sandbox.lfscnp.com
pl-service.01.prod.eapi-pci.lfscnp.com
dnb-test2.001.development.odds-np.lfscnp.com
genoapay-api-test.np.o10s.lfscnp.com
70e8843709e812f7ca0d9.prod.merchant-integration-bnpl.lfscnp.com
appsec-helloworld-dev.security-sandbox.lfscnp.com
motorapp-prod.001.production.odds.lfscnp.com
customer-master-prod.datalake-prod.lfscnp.com
genoapay.admin.dx-prod.lfscnp.com
039004c7f9672353f72.001.development.datalake-sandbox.lfscnp.com
kong-service-test.test.se-platform-np.lfscnp.com
test.001.testapp.sandbox.lfscnp.com
0d8ba5758bf1f14a2776681d43b3f8a53.01.test.eapi-pcinp.lfscnp.com
pin-change-service-test.01.test.eapi-pcinp.lfscnp.com
auth.dev.se-platform-np.lfscnp.com
test.001.testapp.sandbox.lfscnp.com
buildkite-webhook-datadog-event-dev.01.dev.eapi-np.lfscnp.com
62df4d98fe86184a5c9f8e006e715bd8.collections-sandbox.lfscnp.com
imperva.com
staging.wetcms.digitalweb-np.lfscnp.com
notification-service-test.01.test.eapi-pcinp.lfscnp.com
lpay-service-equifax-dev4-au.dev.lpayapp-dev4.lfscnp.com
customer-support-service-dev.sandbox.eapi.lfscnp.com
cnp-ecs-demo-dev.002.mytest2.sandbox.lfscnp.com
cards-visioncics-adapter-dev.01.dev.eapi-pcinp.lfscnp.com
react-ts-admin-test.test.sandbox.lfscnp.com
imperva.com
latitudefinancial-co-nz.digitalweb-np.lfscnp.com
*.okta-custom.dev.se-platform-np.lfscnp.com
responsysassets.prod.digitalweb.lfscnp.com
imperva.com
imperva.com
evolve-dev2.001.development.odds-np.lfscnp.com
6e1ef36f1003de406a7b68ef.001.development.data-cde-np.lfscnp.com
coreapi-dev2.001.development.odds-np.lfscnp.com
accounts-link-unlinked.001.production.eapi.lfscnp.com
staging.lowratemastercard-com-au.digitalweb-np.lfscnp.com
cf-mobile-config.mobile.lfscnp.com
lpay-service-consumer-dev2.dev.lpayapp-dev2.lfscnp.com
odds-authentications.test.odds-np.lfscnp.com
vision-haproxy-prod.dx-cde-prod.lfscnp.com
vision-adapter-dev.new.01.dev.eapi-pcinp.lfscnp.com
7d5265b7789f253ebc3.001.development.datalake-sandbox.lfscnp.com
doc-upload.originations-np.lfscnp.com
staging.latitudefinancial.digitalweb-np.lfscnp.com
oscar.nonprod.digitalservicing-np.lfscnp.com
soft-quote-proxy-test.np.o10s.lfscnp.com
apply-mock-response-dev.merchant-services-sandbox.lfscnp.com
*.staging.gomastercard.com.digitalweb-np.lfscnp.com
034ac86c3ec7e392b5acf71a0f55b8fb750.dev.lpayapp-dev1.lfscnp.com
cnp-socket-mode-slackbot-starter-test.test.sandbox.lfscnp.com
staging.umiloans.digitalweb-np.lfscnp.com
*.staging.28degreescard.digitalweb-np.lfscnp.com
consumer-risk-service-dev.sandbox.o10s.lfscnp.com
coreapi-prod.001.production.odds.lfscnp.com
appsec-dojo-prod.security.lfscnp.com
instinct-prod.dx-cde-prod.lfscnp.com
cnp-access-manager-prod.prod.auth.lfscnp.com
*.okta-custom.prod.se-platform.lfscnp.com
appsecd-github-webhook-test.security-test.lfscnp.com
imperva.com
12b20401b771de810734b8938349.001.development.odds-np.lfscnp.com
staging.buyersedge.digitalweb-np.lfscnp.com
service-products.01.prod.eapi.lfscnp.com
account-linking-v2-prod.new.01.prod.eapi-pci.lfscnp.com
api.lfscnp.com
lpay-service-account-dev.dev.lpayapp-sandbox.lfscnp.com
temenos-service-poc-dev.sandbox.eapi.lfscnp.com
imperva.com
customer-master-dev.datalake-sandbox.lfscnp.com
servicing-customer-master-dev.sandbox.eapi.lfscnp.com
lpay-service-dowjones-sandbox.sandbox.lpay-sandbox.lfscnp.com
*.37degress.digitalweb-np.lfscnp.com
collections-pcc-service-test.collections-nonprod.lfscnp.com
collections-pcc-service-dev.collections-nonprod.lfscnp.com
applybuy-vision-bridge.prod.merchant-wallet.lfscnp.com
wetcms.prod.digitalweb.lfscnp.com
appsec-web-ui-prod.security-sandbox.lfscnp.com
lpay-app-originations-dev2-au.dev.lpayapp-dev2.lfscnp.com
poi-service-prod.prod.o10s.lfscnp.com
appsec-github-dev.security-sandbox.lfscnp.com
832c9417d0aaa792294e4dd7d3c698a.new.01.prod.eapi-pci.lfscnp.com
tcs-bancs-service-prod.new.01.prod.eapi.lfscnp.com
documents-service-dev.01.dev.eapi-pcinp.lfscnp.com
nz-apply-merchant-redirect.originations-np.lfscnp.com
lpay-service-mail-api-dev.dev.lpayapp-sandbox.lfscnp.com
www.tmpkong.apigateway-sandbox.lfscnp.com
13790fed5a068feda1caf0e50145.001.development.odds-np.lfscnp.com
lpay-app-originations-test-nz.test.lpay-np.lfscnp.com
lfs-ui.digitalservicing-np.lfscnp.com
8e062ea304a968893b3fc8edd7e4.001.development.odds-np.lfscnp.com
37degress.digitalweb.lfscnp.com
lpay-monolith-admin-dev.dev.lpayapp-sandbox.lfscnp.com
ach-details.originations-np.lfscnp.com
go-api-chaos-eng-dev.002.mytest2.sandbox.lfscnp.com
consumer-fraud-service.sandbox.o10s.lfscnp.com
service-accounts-test.new.01.test.eapi-np.lfscnp.com
imperva.com
ecs-demo-cnp-dev.002.mytest2.sandbox.lfscnp.com
lpay-app-originations-dev-au.dev.lpayapp-sandbox.lfscnp.com
pl-service.01.prod.eapi-pci.lfscnp.com
dnb-test2.001.development.odds-np.lfscnp.com
genoapay-api-test.np.o10s.lfscnp.com
70e8843709e812f7ca0d9.prod.merchant-integration-bnpl.lfscnp.com
appsec-helloworld-dev.security-sandbox.lfscnp.com
motorapp-prod.001.production.odds.lfscnp.com
customer-master-prod.datalake-prod.lfscnp.com
genoapay.admin.dx-prod.lfscnp.com
039004c7f9672353f72.001.development.datalake-sandbox.lfscnp.com
kong-service-test.test.se-platform-np.lfscnp.com
test.001.testapp.sandbox.lfscnp.com
0d8ba5758bf1f14a2776681d43b3f8a53.01.test.eapi-pcinp.lfscnp.com
pin-change-service-test.01.test.eapi-pcinp.lfscnp.com
auth.dev.se-platform-np.lfscnp.com
test.001.testapp.sandbox.lfscnp.com
buildkite-webhook-datadog-event-dev.01.dev.eapi-np.lfscnp.com
62df4d98fe86184a5c9f8e006e715bd8.collections-sandbox.lfscnp.com
imperva.com
staging.wetcms.digitalweb-np.lfscnp.com
notification-service-test.01.test.eapi-pcinp.lfscnp.com
lpay-service-equifax-dev4-au.dev.lpayapp-dev4.lfscnp.com
customer-support-service-dev.sandbox.eapi.lfscnp.com
cnp-ecs-demo-dev.002.mytest2.sandbox.lfscnp.com
cards-visioncics-adapter-dev.01.dev.eapi-pcinp.lfscnp.com
react-ts-admin-test.test.sandbox.lfscnp.com
imperva.com
latitudefinancial-co-nz.digitalweb-np.lfscnp.com
*.okta-custom.dev.se-platform-np.lfscnp.com
responsysassets.prod.digitalweb.lfscnp.com
imperva.com
imperva.com
evolve-dev2.001.development.odds-np.lfscnp.com
6e1ef36f1003de406a7b68ef.001.development.data-cde-np.lfscnp.com
coreapi-dev2.001.development.odds-np.lfscnp.com
accounts-link-unlinked.001.production.eapi.lfscnp.com
staging.lowratemastercard-com-au.digitalweb-np.lfscnp.com
cf-mobile-config.mobile.lfscnp.com
lpay-service-consumer-dev2.dev.lpayapp-dev2.lfscnp.com
odds-authentications.test.odds-np.lfscnp.com
vision-haproxy-prod.dx-cde-prod.lfscnp.com
vision-adapter-dev.new.01.dev.eapi-pcinp.lfscnp.com
7d5265b7789f253ebc3.001.development.datalake-sandbox.lfscnp.com
doc-upload.originations-np.lfscnp.com
staging.latitudefinancial.digitalweb-np.lfscnp.com
oscar.nonprod.digitalservicing-np.lfscnp.com
soft-quote-proxy-test.np.o10s.lfscnp.com
apply-mock-response-dev.merchant-services-sandbox.lfscnp.com
*.staging.gomastercard.com.digitalweb-np.lfscnp.com
034ac86c3ec7e392b5acf71a0f55b8fb750.dev.lpayapp-dev1.lfscnp.com
cnp-socket-mode-slackbot-starter-test.test.sandbox.lfscnp.com
staging.umiloans.digitalweb-np.lfscnp.com
*.staging.28degreescard.digitalweb-np.lfscnp.com
consumer-risk-service-dev.sandbox.o10s.lfscnp.com
coreapi-prod.001.production.odds.lfscnp.com
appsec-dojo-prod.security.lfscnp.com
instinct-prod.dx-cde-prod.lfscnp.com
cnp-access-manager-prod.prod.auth.lfscnp.com
*.okta-custom.prod.se-platform.lfscnp.com
appsecd-github-webhook-test.security-test.lfscnp.com
imperva.com
12b20401b771de810734b8938349.001.development.odds-np.lfscnp.com
staging.buyersedge.digitalweb-np.lfscnp.com
service-products.01.prod.eapi.lfscnp.com
account-linking-v2-prod.new.01.prod.eapi-pci.lfscnp.com
api.lfscnp.com
lpay-service-account-dev.dev.lpayapp-sandbox.lfscnp.com
temenos-service-poc-dev.sandbox.eapi.lfscnp.com
imperva.com
customer-master-dev.datalake-sandbox.lfscnp.com
servicing-customer-master-dev.sandbox.eapi.lfscnp.com
lpay-service-dowjones-sandbox.sandbox.lpay-sandbox.lfscnp.com
*.37degress.digitalweb-np.lfscnp.com
collections-pcc-service-test.collections-nonprod.lfscnp.com
collections-pcc-service-dev.collections-nonprod.lfscnp.com
applybuy-vision-bridge.prod.merchant-wallet.lfscnp.com
wetcms.prod.digitalweb.lfscnp.com
appsec-web-ui-prod.security-sandbox.lfscnp.com
lpay-app-originations-dev2-au.dev.lpayapp-dev2.lfscnp.com
poi-service-prod.prod.o10s.lfscnp.com
appsec-github-dev.security-sandbox.lfscnp.com
832c9417d0aaa792294e4dd7d3c698a.new.01.prod.eapi-pci.lfscnp.com
tcs-bancs-service-prod.new.01.prod.eapi.lfscnp.com
documents-service-dev.01.dev.eapi-pcinp.lfscnp.com
nz-apply-merchant-redirect.originations-np.lfscnp.com
lpay-service-mail-api-dev.dev.lpayapp-sandbox.lfscnp.com
www.tmpkong.apigateway-sandbox.lfscnp.com
13790fed5a068feda1caf0e50145.001.development.odds-np.lfscnp.com
lpay-app-originations-test-nz.test.lpay-np.lfscnp.com
lfs-ui.digitalservicing-np.lfscnp.com
8e062ea304a968893b3fc8edd7e4.001.development.odds-np.lfscnp.com
Certificate
The complete raw certificate details for *.okta-custom.prod.se-platform.lfscnp.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEkTCCA3mgAwIBAgIQAjCpTnYHZwMtZAmdhCcoRDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIxNzAwMDAwMFoXDTI1MDExNTIzNTk1OVowNDEy MDAGA1UEAwwpKi5va3RhLWN1c3RvbS5wcm9kLnNlLXBsYXRmb3JtLmxmc2NucC5j b20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3kNlgK9dzfOiGvuzH A5/NGgvAFYWI2RzvqR5Qp9bfmasmSUJs9zZ/yj8DOxe4TylmbZDc0E+f88/xuDN/ 5f1NTv2YstZIwJWAX92ZS4u9pHYt8v9oBtE4+g4bLOidLnQ0H3dStSEUIVQdnQQz hpQJ8NSlJQ5rHGIz6GwwDtv4SOf156UedCxfXXg9HOGLDNg/bN8ICC8ee5q+4CFZ Bs/uKTyjpK17cgtzFVLZAEI3ejqDqGpqVft9jsnOksmMJtEM8zKX3NU+SrE1jwiw 4ijjJWHvFIA9m6WcIykkQcIHatN6kQ4Du4x256rVpebS5iyvgfbUKSJKxETMdzwr r8PTAgMBAAGjggGVMIIBkTAfBgNVHSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC 4jAdBgNVHQ4EFgQU6RFK85aIG0x5Yjvx/W167mL74jQwNAYDVR0RBC0wK4IpKi5v a3RhLWN1c3RvbS5wcm9kLnNlLXBsYXRmb3JtLmxmc2NucC5jb20wEwYDVR0gBAww CjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFt YXpvbnRydXN0LmNvbS9yMm0wMi5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUF BzABhiFodHRwOi8vb2NzcC5yMm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUH MAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAM BgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBJ5nkPWiW/E+NgE3tTYVgeuU8XCbnObjMSQuX+nIRv/gsgErS3JEMNRFky JRP1ZUlyOWus2S7ZijW69OhFskKCG5mMU/oo8WY9CNLeTfF7eB7loT9E3Rkg14/O y5CSJET/+tV5K3g+N//koQZ13YQT1RTegEO0gs0vEIcbrM3SCH4cSG8lDzcnoN3Z jN1k6oy5E2NKNtZYjCCi3NBIn6AomgoczD+zEOcBxT+QyEYXph8h1YWkuNuhQaR6 YeykNAL313kKZQVbcftC/LjiMx6KaKTrMLNwLEOshAy8AARwIZF3pITnMjUs7Rph PDfKAHTbqGp7VDjpIHjP8UvA1zFF -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5DZYCvXc3zohr7sxwOf zRoLwBWFiNkc76keUKfW35mrJklCbPc2f8o/AzsXuE8pZm2Q3NBPn/PP8bgzf+X9 TU79mLLWSMCVgF/dmUuLvaR2LfL/aAbROPoOGyzonS50NB93UrUhFCFUHZ0EM4aU CfDUpSUOaxxiM+hsMA7b+Ejn9eelHnQsX114PRzhiwzYP2zfCAgvHnuavuAhWQbP 7ik8o6Ste3ILcxVS2QBCN3o6g6hqalX7fY7JzpLJjCbRDPMyl9zVPkqxNY8IsOIo 4yVh7xSAPZulnCMpJEHCB2rTepEOA7uMdueq1aXm0uYsr4H21CkiSsREzHc8K6/D 0wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2911120184327376818911795436100986948 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.okta-custom.prod.se-platform.lfscnp.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23173037573837867246940603682921695451281585957075976243220288087330450896013826991013899168211158180561046843654816699568364048028680599643306275478591465733317393969707994403473212029702771926545017116921755041247318203613955304903887835728833997391918586494610575407639796030471647738020785663171198089949732261847817199407403721160537899781219689990731701795467524426942274944530404490878217138684869361742362812593128814206948913697388311856592900906917578484921541881138097027856724003252389850949665168187422088347014443360217260597840552287831152219365159597111167271458650532561369303871105689890262432596947 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e9114af396881b4c79623bf1fd6d7aee62fbe234 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (45 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.okta-custom.prod.se-platform.lfscnp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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