*.toronto.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0d:a0:69:98:82:67:a2:25:85:c6:a8:75:79:d6:fd:bd was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.toronto.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:a0:69:98:82:67:a2:25:85:c6:a8:75:79:d6:fd:bdSerial Number (int): 18112873178616900713622698500321377725
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 25:83:5a:95:20:70:57:6d:9c:5d:65:ad:95:7b:a7:14:93:3f:f1:a4
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): e0:80:96:65:3f:e7:48:49:a4:d7:28:f4:fa:37:88:c1:6d:39:bc:ce
Fingerprint (sha256): 17:45:4a:aa:a4:55:d2:4d:fb:be:b3:be:c0:09:94:2f:57:7f:7d:4c:7a:b6:48:53:99:d5:62:13:22:1b:3b:34
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.toronto.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.toronto.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.toronto.com
toronto.com
toronto.com
Other certificates including the domain name toronto.com
(limited to 100 certificates)
toronto.com
eastyorkbeach.toronto.com
kalamazooshopping.mlive.com
local.flamboroughreview.com
local.theameryfreepress.com
local.panolawatchman.com
local.yourdailyjournal.com
local.thefirsthundredmiles.com
admin.adforge.com
s.toronto.com
toronto.com
local.thegazette.com
communityvotes.com
eastern-courier.origami.neighbourly.co.nz
local.bensonnews-sun.com
local.mexicoledger.com
local.summitdaily.com
local.alexcityoutlook.com
local.pilotweb.aero
communityvotes.com
conroe.communityimpact.com
*.toronto.com
nor-west-news.origami.neighbourly.co.nz
smetrics.toronto.com
local.southwesternontario.ca
markham.yorkregion.com
communityvotes.com
local.dglobe.com
western-leader.origami.neighbourly.co.nz
local.newportnewstimes.com
local.clintonnc.com
portperry.durhamregion.com
local.bridemagazine.co.uk
local.willcoxrangenews.com
tomball.communityimpact.com
local.lutontoday.co.uk
admin.adforge.com
local.ottawasun.com
local.tabertimes.com
local.delrionewsherald.com
toronto.com
newhomes.yorkregion.com
local.northjersey.com
local.hertsad.co.uk
local.clevelandcountyherald.com
local.bemidjipioneer.com
local.cambstimes.co.uk
whangarei-leader.origami.neighbourly.co.nz
local.northamptonchron.co.uk
local.wisbechstandard.co.uk
local.moodycountyenterprise.com
local.pontiacdailyleader.com
local.thefirsthundredmiles.com
parrysoundnorth.parrysound.com
local.eastlondonadvertiser.co.uk
local.theshaunavonstandard.com
communityvotes.com
local.thetfordandbrandontimes.co.uk
local.uintacountyherald.com
local.calgaryherald.com
communityvotes.com
citycentreparkdale.toronto.com
local.guymondailyherald.com
communityvotes.com
local.dglobe.com
secure-metroland.adperfect.com
local.spenboroughguardian.co.uk
local.saltwire.com
communityvotes.com
toronto.com
toronto.com
*.toronto.com
impactousa.wanderful.ownlocal.com
s.toronto.com
minto.southwesternontario.ca
whangarei-leader.origami.neighbourly.co.nz
local.thetfordandbrandontimes.co.uk
local.tahoedailytribune.com
secure-metroland.adperfect.com
local.fraserburghherald.co.uk
communityvotes.com
admin.adforge.com
local.torringtontelegram.com
local.fdlreporter.com
local.gettysburgtimes.com
local.theledger.com
muskegonshopping.mlive.com
mm.local.kentonline.co.uk
fk.local.kentonline.co.uk
muskokan.muskokaregion.com
local.thesiuslawnews.com
local.wenatcheeworld.com
mylocal.journal-news.com
shopping.cleveland.com
local.surreylife.co.uk
northern-news.origami.neighbourly.co.nz
local.cairnspost.com.au
hugo.presspubs.com
local.ijn.com
communityvotes.com
eastyorkbeach.toronto.com
kalamazooshopping.mlive.com
local.flamboroughreview.com
local.theameryfreepress.com
local.panolawatchman.com
local.yourdailyjournal.com
local.thefirsthundredmiles.com
admin.adforge.com
s.toronto.com
toronto.com
local.thegazette.com
communityvotes.com
eastern-courier.origami.neighbourly.co.nz
local.bensonnews-sun.com
local.mexicoledger.com
local.summitdaily.com
local.alexcityoutlook.com
local.pilotweb.aero
communityvotes.com
conroe.communityimpact.com
*.toronto.com
nor-west-news.origami.neighbourly.co.nz
smetrics.toronto.com
local.southwesternontario.ca
markham.yorkregion.com
communityvotes.com
local.dglobe.com
western-leader.origami.neighbourly.co.nz
local.newportnewstimes.com
local.clintonnc.com
portperry.durhamregion.com
local.bridemagazine.co.uk
local.willcoxrangenews.com
tomball.communityimpact.com
local.lutontoday.co.uk
admin.adforge.com
local.ottawasun.com
local.tabertimes.com
local.delrionewsherald.com
toronto.com
newhomes.yorkregion.com
local.northjersey.com
local.hertsad.co.uk
local.clevelandcountyherald.com
local.bemidjipioneer.com
local.cambstimes.co.uk
whangarei-leader.origami.neighbourly.co.nz
local.northamptonchron.co.uk
local.wisbechstandard.co.uk
local.moodycountyenterprise.com
local.pontiacdailyleader.com
local.thefirsthundredmiles.com
parrysoundnorth.parrysound.com
local.eastlondonadvertiser.co.uk
local.theshaunavonstandard.com
communityvotes.com
local.thetfordandbrandontimes.co.uk
local.uintacountyherald.com
local.calgaryherald.com
communityvotes.com
citycentreparkdale.toronto.com
local.guymondailyherald.com
communityvotes.com
local.dglobe.com
secure-metroland.adperfect.com
local.spenboroughguardian.co.uk
local.saltwire.com
communityvotes.com
toronto.com
toronto.com
*.toronto.com
impactousa.wanderful.ownlocal.com
s.toronto.com
minto.southwesternontario.ca
whangarei-leader.origami.neighbourly.co.nz
local.thetfordandbrandontimes.co.uk
local.tahoedailytribune.com
secure-metroland.adperfect.com
local.fraserburghherald.co.uk
communityvotes.com
admin.adforge.com
local.torringtontelegram.com
local.fdlreporter.com
local.gettysburgtimes.com
local.theledger.com
muskegonshopping.mlive.com
mm.local.kentonline.co.uk
fk.local.kentonline.co.uk
muskokan.muskokaregion.com
local.thesiuslawnews.com
local.wenatcheeworld.com
mylocal.journal-news.com
shopping.cleveland.com
local.surreylife.co.uk
northern-news.origami.neighbourly.co.nz
local.cairnspost.com.au
hugo.presspubs.com
local.ijn.com
communityvotes.com
Certificate
The complete raw certificate details for *.toronto.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEaDCCA1CgAwIBAgIQDaBpmIJnoiWFxqh1edb9vTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xODAyMTMwMDAwMDBaFw0xOTAzMTMx MjAwMDBaMBgxFjAUBgNVBAMMDSoudG9yb250by5jb20wggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQCsEYw8P7/BwIHLN+YRBqYYQmTGNHYmar1NphxZ6fri ltsF1tgqCOx+PHUIJLVn8w31H2CGB2QjyShDPMbL4nAz9l7YthkyW0+5sRVraUwu mNTsvgIvfdmFpoQLzLcVW97OT2L6Uvrl8AKY2JoFQeRYbsU5yJHPtQ6/WU1uyVsJ SNjFh2oLq2LKzlsTLOT+6agoLrCfOXT6jODH5xoPbH8rDgZEWI0RCYgkPIKg+q4f CxdLUYMGNVylz3jC7XkhSSaQ0W8CXbAAlwaCNznkfRxnK46jEHJ6R6KDL6wpGVhR Ab9k2Q5p3VORujeiLgcsr6fzySWP/x4cWgGgxXPsn861AgMBAAGjggF+MIIBejAf BgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQUJYNalSBw V22cXWWtlXunFJM/8aQwJQYDVR0RBB4wHIINKi50b3JvbnRvLmNvbYILdG9yb250 by5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRy dXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYGZ4EM AQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Auc2Nh MWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNjYTFi LmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADANBgkqhkiG 9w0BAQsFAAOCAQEACsX/HEUEw0OIHCmy7greUX4F09ELuqk9SNe85dMEdxewz33x nvb6GU9yQghHVK6VcU1Oh7pGV30y9lR4h2JQzeOe72e+VTFgEAs28FXoN//U8Xua Y0wRwAp8MLOb7jaWDNtKmXPjSA1BbQkF2WS7IYgTm0U8tMwjJq8ZnIf3L+9TEGV/ BAaGnilR+DlMaMfBvehyVKbEkuovwX5VJqB9tdh2RIMSv+AgHKHSC+D908/XmvHW wQC9ja6QLucQYrVWbUxZgQfpXNK3UAadtjIlFZ985nSKZ0zoaGvDKHFqQ4D5sQnz pInrmkGqqqMOhktmLB9IcCkbYWMyrFpm9uM2xg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBGMPD+/wcCByzfmEQam GEJkxjR2Jmq9TaYcWen64pbbBdbYKgjsfjx1CCS1Z/MN9R9ghgdkI8koQzzGy+Jw M/Ze2LYZMltPubEVa2lMLpjU7L4CL33ZhaaEC8y3FVvezk9i+lL65fACmNiaBUHk WG7FOciRz7UOv1lNbslbCUjYxYdqC6tiys5bEyzk/umoKC6wnzl0+ozgx+caD2x/ Kw4GRFiNEQmIJDyCoPquHwsXS1GDBjVcpc94wu15IUkmkNFvAl2wAJcGgjc55H0c ZyuOoxByekeigy+sKRlYUQG/ZNkOad1Tkbo3oi4HLK+n88klj/8eHFoBoMVz7J/O tQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18112873178616900713622698500321377725 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.toronto.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21721641594051708059540974345403319183277052510318810773958591639372843901677478152266522640594227961960522188655568450926555923944045138327809859155623030398396824147837898363380337436839800536058830852239363313009572953519840445645333785735281218255525942123615831907608500831264962067853645529605588132323288973301061136553329556181622040486585607156455723566259247731220349739513775839981260987254808928865708412458781436946661741304318770651388605490269930590282294551990701039338568260015405599397331734791643096943751470213845332903123481502239712124698859860148059126111772997391556419557572639883694228623029 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 25835a952070576d9c5d65ad957ba714933ff1a4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.toronto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'toronto.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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